Boot.Mebroot is a common detection method used to identify Master Boot Record that was infected by Trojan.Mebroot. Boot.Mebroot is a detected MBR or first sector of the hard drive that was contracted by rookit Trojan. This part of the drive is generally used for boot strapping operating system to load it after BIOS has done checking necessary hardware and software requirements. If MBR was infected with Boot.Mebroot , the whole operation can be controlled by the Trojan. More
ErrorSweeper was first release in January of 2008 and manage to get back now with a newly designed graphical user interface and probably utilizing a modern approach in distributing itself. This program was already included in the lists of rogue program because of cheating potential customers about the effectiveness of the software. ErrorSweeper will scan computer and display detected threats and system errors that were not really present just to prove its value. More
Trojan.Mebroot is a deadly Trojan that can modify and infect Master Boot Record (MBR) of hard-drive. This Trojan can hide its presence by utilizing a complex rootkit technology. Trojan.Mebroot will infect the Master Boot Record (MBR) of the hard drive where boot-strapping of the operating system occurs. When starting the computer, infected MBR is loaded so as the Trojan that became a part of it. This method makes the harmful Trojan memory-resident. Trojan.Mebroot can now execute its own code that will load specific rootkit-driver and execute other malware that were dropped on the compromised computer. More
Backdoor.Wualess.D is a Trojan that allows remote attacker to obtain unauthorized access on compromised computer. Once inside the system, Backdoor.Wualess.D also creates registry and system service to load itself when Windows is started. It can further harm the affected PC by connecting to a remote server to download and execute more malicious files. More
Trojan.Randsom.C can be dropped by another virus infection or may be acquired by visiting malicious web sites. This Trojan is able to lock desktop of infected computer and asked for a certain fee to unlock it. Trojan.Randsom.C will request payment to be sent electronically. Billing amount may vary depending on victim’s country of origin. More
PrivacyControl is a program that cannot provide system protection and virus removal. Although the program is advertised as legitimate security product, the way it performs once installed is very unlikely. PrivacyControl can be categorically included in the lists of rogue application the way it handles scan and detect method once run. It employs deceiving tactics by providing falsified information on scan results. Furthermore, it generates unreliable pop-up messages stating several threats identified on the system. More
Downloader.Agent is a detection for family of Trojan that will download and execute additional threat onto the infected computer. It can also disable some Windows process such as Task Manager, Folder Options and Internet Explorer homepage settings. Downloader.Agent will take advantage of certain security and software exploit to sneak into target system. More
Trojan.Virantix.B uses rootkit technology to avoid anti-virus detection. It will modify Internet Explorer home page settings and assign an unwanted URL. Trojan.Virantix.B will attempt to end process that belongs to antivirus application. System tool are also disabled by making changes on Windows registry. Next, it will display fake security alert and prompt user to download a copy of rogue security program. More
Trojan.Silentbanker is a dangerous computer Trojan that will steal sensitive information from its victims. Once Trojan.Silentbanker is executed, it can record key presses, take screen shot images, and steal confidential data that are related to online banking. Collected data will be sent to a remote attacker via email or File Transfer Protocol. Trojan.Silentbanker can also drop and execute additional threat. Exploiting Internet browser vulnerabilities is the most common propagation method for this Trojan.
DomPlayer or also known as Adware.DomPlayer is an unwanted program that may download additional application that poses security risks. DomPlayer will be configured to run itself by modifying registry entries on the target computer. The program will embed itself on legitimate executable files that are shared publicly on different file-sharing networks. More