VAN_KEYLOGGER.UMXX
Windows 2000, Windows Server 2003, Windows XP (32-bit, 64-bit), Windows Vista (32-bit, 64-bit), Windows 7 (32-bit, 64-bit)
Threat Type: Others
Destructiveness: No
Encrypted:
In the wild: Yes
OVERVIEW
This is the Trend Micro Virtual Analyzer detection for possibly malicious files. It is a heuristic detection based on well-established characteristics inherent to keyloggers. To keep customers a step ahead from possible keylogger infections, all files found in the system that match established characteristics are immediately detected.
If your Trend Micro Virtual Analyzer detects a file under this detection name, do not execute the file. Delete it immediately especially if it came from an untrusted or an unknown source (e.g., a website of doubtful nature).
However, if you have reason to believe that the detected file is non-malicious, you can submit a sample for analysis. Detailed analysis will be done on submitted samples, and corresponding removal instructions will be provided, if necessary.
SOLUTION
9.700
NOTES:
Sample files for submission must be in ZIP format and should be password-protected. To submit a ZIP file, file compression software such as Winzip must be used. A trial version of Winzip is available at www.winzip.com.
To compress a file, please follow the steps below:
- Right-click on the file and select Add to Zip.
- Enter a file name for the zip file.
- On the Options menu, choose Encrpyt. In the input box, type virus. This serves as the password for the zip file.
- Send the sample through the following channels:
• For Trend Micro Premium customers, please submit a virus support case by clicking here:
https://psc.trendmicro.com/en-us/login.aspx
• For Trend Micro non-Premium customers, please contact your local support network here:
http://esupport.trendmicro.com/srf/srfmain.aspx
Did this description help? Tell us how we did.