Virus Detail

Latest threats.
11-18 Trojan-Downloader. Win32. FraudLoad. vmli Displays False Scans!
11-03 Trojan-Downloader. Win32. VB. dck Connects to Remote Servers!
10-14 Trojan-Downloader. Win32. Mutant. fka Downloads Malicious Files!
10-05 Trojan. Win32. FraudPack. udm Pretends to be Flash View Update!
09-25 Trojan. Win32. Agent2. fsk
09-15 Trojan-Spy. Win32. Zbot. pqd
09-08 Trojan-Downloader. Win32. Agent. bmwp
09-01 Trojan-Spy. Win32. Zbot. mty
08-20 Tax Refund Email Phishing Scam!
07-07 New Microsoft Internet Explorer Vulnerability Discovered!
04-24 Shadow, The Conficker Cyber Worm Update!
03-31 Shadow, The Conficker Cyber Worm!
03-12 Trojan. Click. 24528 Updates Itself!
02-11 Trojan. NtRootKit. 429 Compromises Infected Computer Security!
02-05 BackDoor. Zapinit Infects User32. dll!
01-30 Trojan. DownLoad. 28421 Downloads Malware!
01-27 New Muldrop Variant!
01-22 Win32. HLLW. MyBot Spreads Over Networks!
01-15 Win32. HLLW. Autoruner Exploits Shared Folders!
01-09 Trojan. Starter. 212 Replaces Winlogon File!
01-08 Trojan. PWS. Zombie. 1 Prompts You To Infect!
01-02 Trojan. StartPage. 3072 Hijacks Your Homepage!
12-12 Trojan. Popuper. 13903 Adds BHO!
11-10 Trojan. Muldrop Delivered By P2P Networks!
10-21 Fake Bank of America Security Emails!
09-10 Trojan. Briss Logs Your Information!
09-09 Trojan. Sentinel Uses HTTP!
08-19 Trojan. MulDrop. 5747 Spreads Through Peer-to-Peer!
08-14 Trojan. Proxy. 884 Communicates With Websites!
08-07 Trojan. DownLoader. 12995 Downloads Code!
StopSign™ Outbreak Alerts

Trojan.Starter.212 Replaces Winlogon File!

Trojan.Starter.212



What It Does:

  • Attempts to load malicious code.
  • May create an Alternate Data Stream within the folder.
  • Trojan.Starter.212 is a hacked version of winlogon.exe, which is a legitimate Windows system file.
  • Replaces the legitimate winlogon.exe file on startup so that the malicious version of the file is ran when the computer starts.


    • How It Infects:
    Trojan.Starter.212 has no specific means of infection.

    How To Avoid Infection:
    Do not click any unexpected links in instant messages. Do not download email attachments from unexpected sources. Do not download unknown files or files from unknown sources. Scan all downloaded files with StopSign and ensure that all updates are installed from Microsoft's Windows Update.

    Vulnerable Operating Systems:
    Windows 95/98/Me/NT/2000/XP

    Type:
    Trojan

    Technical Name:
    Trojan.Starter.212

    Aliases:
  • TR/Patched.Q
  • Win32:Trojan-gen. {Other}
  • Win32/PEPatch.Y
  • Trojan.Agent.AVD
  • Trojan.Agent-4376
  • Win32.Patched.q
  • W32/WLHack.C!tr
  • W32/Libload.A
  • Trojan.Win32.Patched.i
  • Trojan.Win32.Patched.q
  • Generic.dx
  • Win32/Agent.NHJ
  • W32/Agent.BMQP
  • W32/Whybo.C.worm
  • Troj/WLHack-C
  • VIPRE.Suspicious
  • Trojan.Pandex!inf
  • Trojan/Patched.q
  • Trojan.Patched.Q


    		•
    Order StopSign today. Call 1-800-493-0035 to start your membership.Scan Now with StopSign!Get Protected Today!

    Chat With a Technician