Search
Keyword: PDF_FAREIT
This Trojan attempts to steal sensitive online banking information, such as user names and passwords. This routine risks the exposure of the user's account information, which may then lead to the
Once users access any of the monitored sites, it starts logging keystrokes. It attempts to steal information, such as user names and passwords, used when logging into certain banking or
crack.exe PDF Unlocker v2.0.3.exe PDF password remover (works with all acrobat reader).exe PDF to Word Converter 3.0.exe PDF-XChange Pro.exe Power ISO v4.2 + keygen axxo.exe RapidShare Killer AIO 2010.exe
This Trojan arrives as an attachment to email messages spammed by other malware/grayware or malicious users. It may be unknowingly downloaded by a user while visiting malicious websites. It takes
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It executes the dropped file(s). As a result, malicious
specially-crafted PDF that exploits a certain vulnerability in Adobe Reader and Acrobat . Once successful, it drops an embedded executable file. It then runs the malware and as a result, the malicious routines of the
\iso88591 - non-malicious component file %User Temp%\110830g.pdf - non-malicious PDF opened by the malware to hide its malicious routine %User Temp%\Acrobat.exe - TROJ_DROPPER.QUB (Note: %User Temp% is the
malicious users. Installation This Trojan drops the following files: %User Temp%\Winword.exe - TROJ_DROPPR.ECZ %User Temp%\Adobe.pdf - non-malicious PDF opened by the malware to hide its malicious routine
Routine This Trojan does not have any downloading capability. Information Theft This Trojan does not have any information-stealing capability. NOTES: It opens the dropped non-malicious PDF file in order to
following files: %User Temp%\SVCHOST.EXE - TSPY_BRICKS.A %User Temp%\hi.pdf - non-malicious PDF opened by the malware to hide its malicious routine %Current%\iso88591 - non-malicious component file (Note:
crack.exe PDF Unlocker v2.0.3.exe PDF password remover (works with all acrobat reader).exe PDF to Word Converter 3.0.exe PDF-XChange Pro.exe Power ISO v4.2 + keygen axxo.exe RapidShare Killer AIO 2010.exe
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It deletes itself after execution. Arrival Details This
This backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It executes commands from a remote malicious user,
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It deletes itself after execution. Arrival Details This
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It takes advantage of software vulnerabilities to allow
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This Trojan arrives on a system as a
information %Temp%\NfIpv6.ocx - also detected as BKDR_NFLOG %Temp%\checkup.exe - also detected as BKDR_NFLOG %User Temp%\word.doc - non-malicious DOC file %User Temp%\±ØÒª.pdf - non-malicious PDF file %Temp%
to the following File Transfer Protocol (FTP) sites: ftp.{BLOCKED}h.com sherrif.{BLOCKED}3.com Other Details This spyware opens the following files: %All Users Profile%\Msn\Msn2\pic.pdf - decoy PDF
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This Trojan arrives on a system as a
This Trojan arrives as an attachment to email messages spammed by other malware/grayware or malicious users. It executes the dropped file(s). As a result, malicious routines of the dropped files are