July 31, 2009
Trojan.TDSSserv also known as Trojan Backdoor.Tidserv is a trojan horse that may represent security risk for the infected computer. The trojan uses rootkit-specific techniques designed to hide the software presence in the system and also blocks user access to security websites. Once running, this trojan will display a fake security alerts that tells you to [...]
Tags: backdoor, packed, tdss, tidserv, trojan
Posted in 2:Trojan Removal
July 31, 2009
Lsas.Blaster.Keyloger is fake Windows Alert which is secretly installed by trojan. It is a part of rogue application. A rogue software application designed to trick users into buying a fake product by using scare tactics. It will bombard you with pop ups in order to try and scam you out of money. This infection can [...]
Tags: blaster, keylogger, lsas, trojan
Posted in 2:Trojan Removal
July 31, 2009
Trojan.Brisv.A!inf is a detection for the multimedia files infected with Trojan.Brisv.A.
remove Trojan.Brisv.A!inf need to disable System Restore
Trojan.Brisv.A!inf Summary
Virus Name:Trojan.Brisv.A!inf
Detected By:BitDefender antivirus program
Virus Trojan.Brisv.A!inf Detected times:232381times
Trojan.Brisv.A!inf Overall Risk:Medium 732382
Type: Trojan Systems Affected: Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows Vista, Windows XP
Trojan.Brisv.A!inf file size:3623820 bytes Trojan.Brisv.A!infwas first Detected [...]
Tags: !inf, alinf, brisv, trojan
Posted in 2:Trojan Removal
July 31, 2009
Remove Trojan.Win32.Agent.Azsy
Trojan.win32.agent.azsy is a malicious application which is primitive in its size and essence but extremely dangerous for the compromised system when it comes to the possible impact it may produce. Trojan.win32.agent.azsy is written in C++ programming language and has as little as 439Kb in size. Trojan.win32.agent.azsy infiltrates the target host computer via firewall flaws [...]
Tags: agent, azsy, trojan
Posted in 2:Trojan Removal
July 31, 2009
Remove Trojan win32 Taterf
Win32/Taterf is a family of worms that spread via mapped drives in order to steal login and account details for popular online games.
Company Name and Detection Name avast: Win32:Kavos
AVG (GriSoft): PSW.OnlineGames.2.U
Avira: TR/PSW.Magania.auza
BitDefender: Trojan.PWS.Onlinegames.KBSZ
Dr.Web: Trojan.PWS.Gamania.10780
EMSI Software: Trojan.Win32.Inhoo!IK
eSafe (Alladin): Suspicious file
Eset: Win32/PSW.OnLineGames.NMY
Kaspersky: Trojan.Win32.Agent.bwaa
microsoft: worm:win32/taterf.b
Sophos: Mal/EncPk-HI
Symantec: Trojan.Packed.NsAnti
vba32: Trojan.Win32.Agent.bwaa
V-Buster: Trojan.Agent.HNHG
Installation
When executed, Taterf copies itself to [...]
Tags: kavos, onlinegames, psw, taterf, trojan, worm
Posted in 2:Trojan Removal
July 31, 2009
Remove win32 Trojan downloader Renos.BAH
TrojanDownloader:Win32/Renos.BAH [Microsoft] is also known as:
Threat Alias Number of Incidents
Generic Downloader.x [McAfee] 41
Downloader [Symantec] 38
Trojan-Downloader.Win32.CodecPack [Ikarus] 33
Trojan-Dropper.Agent [Ikarus] 11
Downloader.MisleadApp [Symantec] 8
Trojan.Zlob [Symantec] 7
Generic Downloader.ac [McAfee] 6
Possible_DLDER [Trend Micro] 6
Trojan-Downloader.Win32.Renos [Ikarus] 6
Puper [McAfee] 5
Trojan-Downloader.Win32.Agent.aopv [Kaspersky Lab] 5
Trojan-Downloader.Win32.CodecPack.aac [Kaspersky Lab] 5
Trojan.Fakeavalert [Symantec] 4
Trojan-Downloader.Win32.Renos.BA [Ikarus] 4
Trojan Horse [Symantec] 3
Trojan.Zlob [Ikarus] 3
Trojan-Dropper.Win32.Agent.agsb [Kaspersky Lab] 3
Downloader.Trojan [...]
Tags: bah, downloader, renos, trojan
Posted in 2:Trojan Removal
July 31, 2009
Remove Trojan.Pakes , cutwail
Name: Trojan.Pakes
Threat Level: High
Description: Trojan.Pakes downloads various malware including Internet Optimizer, ISTBar, SideFind and Target Saver, which are all products of Integrated Search Technologies (IST).
Type: TT_Downloader, TT_Trojan
Also known as: Trojan.Win32.Pakes.cij, Trojan.Win32.Pakes.kra, trojan.win32.pakes.ldi, Trojan.Win32.Pakes.bzx, TrojanDropper:Win32/Cutwail.gen!I,
Threat analysis: Search ThreatExpert to view reports
Trojan.Win32.Pakes [Ikarus] is known to be created as:
%FontsDir%\3c7780c0.dll
%ProgramFiles%\internet explorer\ijl105.dll
%ProgramFiles%\internet explorer\ijl15.dll
%System%\a.exe
%System%\com\lsass.exe
%System%\com\smss.exe
%System%\dakwx.exe
%System%\digeste.dll
%System%\drivers\hcsablyr.sys
%System%\drivers\outsevwp.sys
%System%\drivers\sespodzv.sys
%System%\drivers\xaxlzacd.sys
%System%\drivers\xwlhztoo.sys
%System%\explorer32.exe
%System%\foova.exe
%System%\isyst32win.exe
%System%\kdcse.exe
%System%\kdozp.exe
%System%\l33t.exe
%System%\msansspc.dll
%System%\msdoswinsyst32.exe
%System%\msiconf.exe
%System%\msmsgs.exe
%System%\msxml71.dll
%System%\oukdfgr.exe
%System%\reader_s.exe
%System%\scrsys16_061230.scr
%System%\setup_ver1.1550.2.exe
%System%\setup_ver1.1550.21.exe
%System%\setupl.exe
%System%\syst32svchost.exe
%System%\system.exe
%System%\updatevd.exe
%System%\updwin32syst.exe
%System%\winsys16_061230.dll
%Temp%\dhl_id8612.exe
%Temp%\explorer32.exe
%Temp%\ieupdates.exe
%Temp%\loader.exe
%Temp%\ntdll64.dll
%Temp%\pinch.exe
%Temp%\u83724.exe
%Temp%\winlogon.exe
%Temp%\wmvcodec_update.exe
%UserProfile%\reader_s.exe
%Windir%\9129837.exe
%Windir%\aczjaczj.exe
%Windir%\fxstaller.exe
%Windir%\ijl105.dll
%Windir%\jbbjrjjr.exe
%Windir%\ommiglef.exe
%Windir%\regsv32.exe
%Windir%\runsql.exe
%Windir%\services.exe
%Windir%\sv.exe
%Windir%\svchost.exe
%Windir%\winlogon.exe
%Windir%\zjiabxag.exe
Notes:
%FontsDir% [...]
Tags: cutwail, gen, pakes, trojan, win32
Posted in 2:Trojan Removal
July 31, 2009
Remove Trojan.Packed.Generic.200
Packed.Generic.200 is a usual detection for malicious files that were packed or encrypted to conceal itself from antivirus and security programs. Once executed, Packed.Generic.200 can further harm the computer by downloading additional threats from a remote server.
Trojan:win32/Alureon.gen!J [Microsoft]
Rootkit.win32.TDSS [Ikarus]
Virus.win32.Fasec [Ikarus]
Packed.win32.Tdss.f [Kaspersky Lab]
Rootkit.win32.TDSS.eyj [Kaspersky Lab]
Trojan.win32.InternetAntivirus [Ikarus]
Packed.win32.Tdss.c [Kaspersky Lab]
DNSChanger.r [McAfee]
Trojan:win32/Alureon.gen [Microsoft]
DNSChanger.f.gen.a [McAfee]
Trojan-Downloader.win32.Renos.AQ [Ikarus]
Mal/TDSS-A [Sophos]
Trojan.TDss. [Ikarus]
Mal/Alureon-C [Sophos]
Mal/FakeVirPk-A [...]
Tags: 200, generic, packed, trojan, win32
Posted in 2:Trojan Removal
July 31, 2009
Remove w32 Trojan downloader IRC Bot also known as Trojan downloader small, Win32/Hooker, Haxspy, FURootkit and CodBot
Summary
Win32/IRCbot is a large family of backdoor Trojans that targets computers running Microsoft Windows. The Trojan drops other malicious software and opens a backdoor on the infected computer to connect to IRC servers. The Trojan can maintain multiple IRC [...]
Tags: bot, irc, trojan, win32
Posted in 2:Trojan Removal
July 31, 2009
W32.Fiala.A is a worm that spreads itself through your removable drives. W32.Fiala.A blocks certain applications from launching, and, as an early birthday gift, W32.Fiala.A may drop Trojans on your PC (think Trojan Horse, Hacktool.Rootkit or Trojan.KillAV).
Thanks, W32.Fiala.A.
Block W32.Fiala.A sites:
wuc8.com
wuc9.com
Get rid of W32.Fiala.A files:
%DriveLetter%\JR.PIF
%DriveLetter%\AUTORUN.INF
%System%\dllcache\linkinfo.dll (a clean file that may already be present)
%System%\mfc1.dll (a legitimate [...]
Tags: a, fiala, trojan, w32, worm
Posted in 2:Trojan Removal