W32.Linkfars propagates by duplicating itself on removable media drives, unsecured shared folders and file-sharing applications. W32.Linkfars will delete the original files so that the infected ones will be executed by the users. Then it will display a Persian message that contains the title “SALAM-DOSTE-MAN.” More
SafeStrip is a misleading security application that can be downloaded and installed on computer without the proper knowledge of the victim. It will promote itself as a legitimate program and may come bundled with other software. When inside the system, SafeStrip virus will alter settings and configure itself to run on its own when Windows is started. This rogue application will identify threats found on PC and suggest to remove it using the full version of SafeStrip.
More
W32.Proyo infects .exe and .scr files on all fixed and remote drives. When infected file is executed, it copies itself on the same folder but with a .dmj extension. W32.Proyo can lower security settings on the compromised system by ending security-related process. This virus will look for .exe and .scr files and embed them with viral code that may result to an increase in size of about 45,056 bytes. More
VBS.Runauto.E propagates by duplicating itself to all drives on the infected computer except floppy drive. VBS.Runauto.E will create an autorun.inf file on each drive to execute itself when the drive is accessed. This worm will modify compromised system’s Internet Explorer title to Hacked by Achitasin & ???? ???. More
OSX.RSPlug.A is a Trojan that disguises as a multimedia plug-in required to play a video. OSX.RSPlug.A will modify DNS settings on the infected computer and run a malicious scripts. This Trojan will target machines that are running in OSX operating system. It may be downloaded on to the system by exploiting browser and social engineering exploits. More
Trojan.Peacomm.D is capable of collecting system information and email contacts from the infected computer. Trojan.Peacomm.D will arrive on the system as packed executable files like sony.exe and halloween.exe. It can reduce security settings on the compromised PC by ending security-related programs. Trojan.Peacomm.D may register the computer as a peer in file-sharing networks and open its files to the public. The backdoor port created by Trojan.Peacomm.D will allow a remote attacker to gain access on the affected computer. More
AntiSpyGuard is a fake anti-spyware and anti-virus application that will trick user to obtain the registered version by displaying fake results that can only be removed with the full version of the program. AntiSpyGuard will also display excessive pop-up alerts and warning messages stating that system is highly infected with various kinds of threat. AntiSpyGuard may enter the system by exploiting software and security vulnerabilities. It can be installed without user’s full knowledge of its fraudulent operation. AntiSpyGuard is considered as a virus that will disguise itself as security product. More
W32.Iretsim propagates by copying itself to removable media devices and can stop security-related processes on the infected computer. W32.Iretsim will drop autorun.inf file on located drives so that it will be loaded once the drive is accessed. More
Trojan.Captchar.A has the capability to gather CAPTCHA data by recording keystrokes on the compromised Windows system. If Trojan.Captchar.A is executed, it will inject a code on a hidden existence of IEXPLORE.EXE. This Trojan will also displays the following message: More
Flu Burung is a virus that can infect Microsoft Word .doc files by duplicating infected file with an executable .scr extension. The original version will be hidden so only the executable copy is visible to user. Flu Burung Virus will also replaced Internet Explorer title to show its presence and block access to security web sites. More