Reported in Codefish. We checked out this Trojan and it’s not very friendly. Here is what the email looks like: Microsoft Security Bulletin MS05-039 Vulnerability in Plug and Play Could Allow Remote Code Execution and Elevation of Privilege (899588) Summary: Who should receive this document: Customers who use Microsoft Windows Impact of Vulnerability: Remote Code
-
-
Free service for scanning suspicious files
Virustotal offers a free service for scanning suspicious files using several antivirus engines. How to use Virustotal scanner. Go to VirusTotal site. On top you’ll find ‘Browse’. Click the browse button and browse to a file, that you want to check. Click Open. Then click the ‘Send’ button next to it. This will scan the
-
Antother note about SpyAxe
Juha-Matti has pointed out an interesting Trojan.Spaxe. The interesting part is that it will display a balloon message, attempting to fake from the Windows Automatic Updates icon on the System Tray, with the following text: Body: Your computer is infected! Windows has detected spyware infection. It is recommended to use special antispyware tools to prevent
-
Trend Micro™ Anti-Spyware for the Web
Trend Micro Anti-Spyware for the Web is a free online tool that checks computers for spyware, and helps remove any infections found. When the detection process is complete, the tool will display a report describing the result including which if any, spyware were detected, and prompt you before the removal process. Symptoms of spyware infections:
-
Rootkits Are Bombarding XP SP2 Systems
More than 20 percent of all malware removed from Windows XP SP2 (Service Pack 2) systems are stealth rootkits, according to senior official in Microsoft Corp.’s security unit. Jason Garms, architect and group program manager in Microsoft’s Anti-Malware Technology Team, said the open-source FU rootkit ranks high on the list of malicious software programs deleted
-
First Vulnerability for Firefox 1.5
Today i have read the news 🙁 New FireFox and First Vulnerability …. When Firefox 1.5 was officially released I wondered when the first security vulnerability would be announced. To be fair, it’s taken longer than I thought it would. Packetstorm Security has released proof of concept code that causes a buffer overflow and denial
-
How to remove WinFixer
WinFixer is a bogus (rogue) anti-spyware and spam-blocking application downloaded mainly from popup ads that would be convincing to the average user. It is also bundled with certain free downloadable applications. The program requires you to buy it for about $30. When bought, it scans the computer and replicates the cookie-handling function of Internet Explorer,
-
New AIM worm
Malware authors just opened their own holiday season. We received couple of reports of a new AIM worm spreading. The worm is simple and doesn’t exploit any vulnerability; instead it relies on social engineering. The user will receive the following AIM message: “This AIM user has sent you a Greetings Card, to open it visit:
-
Hijack Removal “How to”
Any of the products below will remove most hijackers completely, unless it is one which has just started spreading. Spybot S&D [recommended] Ad-aware If you have a hijack that is not fixed by any of these products, you may use these solutions below that I have gathered after helping to fix these same problems countless
-
HijackThis – your first tool for remove homepage hijackers
HijackThis examines certain key areas of the Registry and Hard Drive and lists their contents. These are areas which are used by both legitimate programmers and hijackers. It’s up to you to decide what should be removed. Some items are perfectly fine. You should not remove them. Never remove everything. Doing that could leave you
 |
 |
 |
