Dangerous new Trojan on the loose

Discussion in 'malware problems & news' started by StevieO, Apr 19, 2006.

Thread Status:
Not open for further replies.
  1. StevieO

    StevieO Registered Member

    Feb 2, 2006
    This looks very serious and has the capability to disable your protection too !

    Quote from the webite -

    " Last night, several things came together here in the BOClean lab involving the nemesis of too many people whose systems have been infected, and those who have tried desperately to help them clear the infection. A "bad actor" known as "Virtumonde" which has wreaked havoc on the unsuspecting for a couple of years now has managed to do what CWS ("coolwebsearch") and their phalanx of backdoor authors and "script kiddies" hadn't. They've now gone into "deep rootkit" mode. No longer satisified to attack "user mode" software by "injecting" into other programs in "ring three" they're now subverting "device drivers" which belong to antivirus, antitrojan and other "security software" so as to hide behind a target that most "security software" will not attempt to shut down. "

    etc etc


  2. controler

    controler Guest

    Thank you for the link SteveO

    Guess you gotta be from that era to appreciate posting like that.:)

  3. TNT

    TNT Registered Member

    Sep 4, 2005
    Last edited: Apr 20, 2006
  4. EASTER.2010

    EASTER.2010 Guest

    Excellent heads and up and worthy of surveillance now. They are running out of hiding places and tricks so they're pulling out all the stops that windows can afford them to drop their wares on. Another reason why HIPS are very important to have in place and very much needed these days to intercept those lamers junk designs who are bent on wreaking havoc with the internet and regular machine usage.

    I still say they are on the defensive now and don't enjoy the intrusions they used to employ at will on everyone. They're days in that type of business are now numbered and their success is reduced greatly IMO like never before.
Thread Status:
Not open for further replies.