How TruPrevent Works (II)
This is the second part of the "How TruPrevent Works" article series. Apologies in advance if it seems a bit like shameless self promotion. Code-named…
Botnet controller via web
Today, when I was tracking the server to which a variant of Trj/LdPinch sends information, I have come across, among the files in the server,…
Critical Bugs Discovered In Yahoo Messenger and Microsoft GDI+
Three new vulnerabilites have been make publicly this week. Two for Yahoo Messenger Webcam ActiveX and one for Microsoft GDI+ Yahoo! Messenger Webcam Upload ActiveX…
May spyware list
This month there have been changes in the first two positions. Adware/Lop occupies the first position and 47 detections below, the seconds position is occupied…
The Cimuz uninstaller
Checking a server that installs a variant of Trj/Cimuz, I came across a link that pointed to remover.exe file: After analyzing the code of the…
Mal(ware)formation statistics
While catching up on an old but excellent post by jason geffner on reconstructing import tables I remembered that I've been wanting to study the…
Pirates of the Caribbean: At World's End
No, it’s not about the Disney’s movie that you can see today at cinemas. There has been a massive sending of a message with a file…