ThreatFire Research Blog Home
 
 
« Microsoft MS08-001 Reversing
Storm’s premature invitation »

Fake alert for Spyware.CyberLog-X

A new round of the FakeAlert family has been released this past weekend, the same family of rogueware components that Alex Eckelberry of Sunbelt has posted. We are seeing a surge in hits for new components installed as “MultiMedia Software” codecs that result in a barrage of popups identifying “Spyware.CyberLog-X” and “Trojan-Spy.Win32@mx” on the system:

Of course, there was no spyware on these clean lab systems prior to the codec install, and no legitimate video codecs were installed on the machine as a result of running the setup.exe program.

This entry was posted on Monday, January 14th, 2008 at 3:48 pm and is filed under Adware, Rogueware, cybercrime. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

2 Responses to “Fake alert for Spyware.CyberLog-X”

  1. yoshizakura says:
    May 27, 2008 at 10:07 am

    That’s what I have. How do I get rid of it and is it doing any harm while it’s there??

  2. ThreatFire Blogger says:
    July 2, 2008 at 9:34 am

    Hi there yoshizakura-

    Sorry about the delayed response.

    Infection cleanup and supports questions are actively monitored and responded to at our PC Tools community ‘Spyware, Adware and Malware Discussion’ forum:
    http://www.pctools.com/forum/forumdisplay.php?f=5

    Please post infection related comments and questions on that board. Thanks.

Leave a Reply

Click here to cancel reply.
 

  • Blog Archive

    • March 2010
    • February 2010
    • January 2010
    • December 2009
    • November 2009
    • October 2009
    • September 2009
    • August 2009
    • July 2009
    • June 2009
    • May 2009
    • April 2009
    • March 2009
    • February 2009
    • January 2009
    • December 2008
    • November 2008
    • October 2008
    • September 2008
    • August 2008
    • July 2008
    • June 2008
    • May 2008
    • April 2008
    • March 2008
    • February 2008
    • January 2008
    • December 2007
    • November 2007
    • October 2007
    • September 2007
    • August 2007

  • Search This Blog

  • RSS Subscribe Now

    • FakeAv Antivirus XP 2010
    • Troyak-AS De-peered for Good?
    • Click Fraud II

  • Categories

  • About ThreatFire

    ThreatFire™, features innovative real-time behavioral protection technology that provides powerful standalone protection or the perfect complement to traditional signature-based antivirus programs.

    ThreatFire's patent-pending ActiveDefense™ technology offers unsurpassed protection against both known and unknown zero-day viruses, worms, trojans, rootkits, buffer overflows, spyware, adware and other malware.

    Learn more...

  • Blogroll

    • A.M. Infosec
    • AV-Comparatives
    • iAntivirus
    • Mind Streams of Information Security Knowledge
    • Symantec Security Response
    • Tech Thoughts
    • ThreatExpert

  • Links

    • AMTSO
    • AV-Test
    • ICSA Labs
    • PC Tools
    • PC Tools is on Facebook
    • Reconstructer
    • ThreatExpert
    • ThreatFire
    • Uninformed
    • Virus Bulletin
 
Subscribe to:
Posts (Atom) 		Entries (RSS) and Comments (RSS).