Removal of W32/VB.LN Worm (IM-Worm.Win32.VB.ln, W32/VB-DGA, WORM_VB.GMM) (Manual)
August 19, 2009 by ƒιяєƒℓソ
Filed under Removal Tips,Tools and Videos
This Worm Copies its files to Windows\System, Windows\INF, Windows, Windows\System32 and Windows\System32\config folder as hidden files or active non-hidden files.
This worm information updated on July 23, 2009.
Other names of W32/VB.LN Worm:
This worm is also known as IM-Worm.Win32.VB.ln, W32/VB-DGA, WORM_VB.GMM.
Removal of W32/AutoRun.NAN Worm (Worm.Win32.AutoRun.nan, Worm:W32/AutoRun.GF) (Manual)
August 19, 2009 by ƒιяєƒℓソ
Filed under Removal Tips,Tools and Videos
This Worm Copies its files to Windows\System32 and Windows\System32\dllcache folder as hidden files or active non-hidden files.
This worm information updated on July 24, 2009.
Other names of W32/AutoRun.NAN Worm:
This worm is also known as Worm.Win32.AutoRun.nan, Worm:W32/AutoRun.GF.
Kaspersky Lab detects new version of Conficker worm (Net-Worm.Win32.Kido.js)
August 16, 2009 by admin
Filed under Security News
Kaspersky Lab, a leading developer of secure content management solutions, announces that a new version of the malicious program Kido (aka Conficker and Downadup) has been detected.
Removal of W32/AutoRun.PYK Worm (Manual)
August 7, 2009 by ƒιяєƒℓソ
Filed under Removal Tips,Tools and Videos
This Worm Copies its files to Windows\System32, dllcache and Current Temp folder and root of windows installed drive as hidden files or active non-hidden files.
This worm information updated on July 13, 2009.
Other names of W32/AutoRun.PYK Worm:
This worm is also known as Worm.Win32.AutoRun.pyk,Troj/Agent-HTK,TSPY_FRETHOG.DL.
The Real Face of KOOBFACE
August 6, 2009 by admin
Filed under Security News
A year after its first discovery, Koobface is still generating a lot of noise, no thanks to its high activity level over the past several weeks. But one year is a long time for a malware to stay alive. Storm didn’t make it out of its first year. Waledac has been around for a while, but it sleeps and wakes up only when it wants to. But Koobface? It has continued to maintain its success and just seems to keep on improving.
Although not as large and widespread compared to Storm or Waledac during their heydays, Koobface is a revolutionary malware in the sense that it is the first Web 2.0 threat to enjoy continuous success, which is significant in a time when social network sites reign supreme.
This is why we see it as important that we understand this threat, because the computing landscape is evolving and user behavior is changing, and with a malware like Koobface threatening the computing landscape, it is a Trend Micro duty stay on top of these threats.
If you want to know more about Koobface, feel free to read our research here: The Real Face of KOOBFACE.
New Version of Fujacks Worm ( W32.Fujacks.CB ) Discovered By Symantec
July 22, 2009 by admin
Filed under Security News
W32.Fujacks.CB is a worm that spreads through removable drives and network shares. It may download files on to the compromised computer.
Note: This threat has been renamed from Trojan.Matem.
Threat Assessment
Wild
- Wild Level: Low
- Number of Infections: 0 – 49
- Number of Sites: 0 – 2
- Geographical Distribution: Low
- Threat Containment: Easy
- Removal: Easy
Damage
- Damage Level: Medium
- Payload: Downloads a remote file on to the compromised computer.
- Modifies Files: Modifies the hosts file.
Distribution
- Distribution Level: Medium
- Target of Infection: Shared drives
Writeup By: Fergal Ladley and Asuka Yamamoto
For More TECHNICAL DETAILS ( Click Here )
How To Remove Win32/Mabezat, Win32/Mabezat.A, Win32/Mabezat.B, Worm.Win32.Mabezat.b
July 5, 2009 by admin
Filed under Removal Tips,Tools and Videos
Overview
This description is for a worm that is capable of spreading through removable devices and network shares.
The characteristics of this worm in regards to file names, folders created etc. will differ from one version to another. Hence, this is a general description.
Three Months Later: Where’s DOWNAD?
July 2, 2009 by admin
Filed under Security News
Exactly three months ago, the whole IT sector was waiting with bated breath for April 1. The latest DOWNAD/Conficker variant–WORM_DOWNAD.KK–was poised to strike. We know that on that day, it would attempt to access 500 of 50,000 websites and download new malicious files. This led to fears–somewhat misplaced–that new, possibly damaging payloads could cause severe problems, not just for systems already affected by DOWNAD but the Internet as a whole. Many sectors assumed the worst.
How to Remove olhrwef.exe (Magania Trojan / Worm) Manually
June 30, 2009 by ƒιяєƒℓソ
Filed under Removal Tips,Tools and Videos
The file olhrwef.exe is a complex virus file.. This file is commonly known as W32/Magania.BDYU Trojan,W32/AutoRun.EPN Worm, W32/OnLineGames.TBMA Trojan, W32/Taterf.B Worm, W32/Magania.AUUB Trojan, W32/Magania.AUDK Trojan, W32/Magania.ASNK Trojan
Koobface Tweets
June 27, 2009 by admin
Filed under Security News
Twitter is a very popular platform for expressing whatever is on a user’s mind, making it a favorite target of malware authors. Trend Micro has published several blog entries that discussed attacks on Twitter. Now, the creators of Koobface included a new component in the malware to target the vast number of Twitter users. They’ve come up with the latest update to the Koobface loader binary and other known Koobface components that target social networking sites like Facebook, MySpace, Hi5, Bebo, Tagged, and Netlog.
