Login | Live Chat & Podcast at 1:00PM Eastern on Sunday! |
 General Security |
 Search | |
01-Dec-2007, 01:38 PM
#1 | ||||||
 Agent. UZM Trojan  I have this in my AVG Virus Vault, I haven't deleted because I've heard some of thesestrains are difficult to remove manually. Here is an overview.. Trojan Downloader.Agent.UZM A new Trojan Downloader was spammed today. Trojan is attached in zip archive to emails in HTML format with subject "Hot game" and body text that claims some Angelina Jolie or Lara Croft undressing game. xgame.zip attachment contains xgame.exe (20992B) which drops executes and deletes kernel driver C:\WINDOWS\System32\drivers\runtime.sys and downloads another downloader smartdrv.exe. runtime.sys runs injects and hides Iexplore.exe process and downloads another components. xgame.exe is detected as Trojan Downloader.Agent.UZM, smartdrv.exe is detected as Trojan Downloader.Agent.UZN, runtime.sys is detected as Trojan Downloader.Agent.THW and other downloaded components are detected as several variants of Trojan Backdoor.Ntrootkit. November 10, 2007 Any suggestions would be much appreciated  AVG says they offer no tech support unless you pay for it, I guess what I need to know is, is it or isn't it safe to delete? Thanks, hogndog
__________________ Proverbs 3:5 Trust in the LORD with all thine heart; and lean not unto thine own understanding. 3:6 In all thy ways acknowledge him, and he shall direct thy paths. |
| |
01-Dec-2007, 11:14 PM
#3 | ||||||
| |
 |
| |
| Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | |
| Thread Tools | |
| |
| You Are Using:  |
Advertisements do not imply our endorsement of that product or service. All times are GMT -4. The time now is 10:43 PM. Copyright © 1996 - 2011 TechGuy, Inc. All rights reserved. |  |
Thanks Guys! 
Ask a stupid question right, I came here because the sign said you knew your stuff Pfft! 
Facebook
Twitter
TechGuy.tv
TSG Mobile