GiftCom worm emerges as festive threat
By Matt Whipp
Posted on 22 Dec 2005 at 10:58
Instant messaging security company IMLogic has warned of a festive threat affecting users of AIM, ICQ, MSN, Windows Messenger and Yahoo! IM services.
The IM.GiftCom.All worm sends out a web address to IM clients which, if clicked, will download an executable file, often named gift.com.
If run, the file installs itself as a rootkit into the system which then hides itself from Windows as well as other software, including antivirus software. The virus scans the registry, file system, and Internet cache, makes several networking calls and logs keystrokes on the keyboard. it also tries to shut down antivirus processes and may try and broadcast itself on to other instant message clients.
Companies such as F-Secure and Kaspersky are already developing rootkit detection technologies. You can download a beta of F-Secure's Blackight at the website.
- Michael Dell: Cloud infrastructure is the roads, bridges and highways of the 21st century
- How to check your identity hasn’t been sold to the hackers
- Tim Cook: this is how much TV has changed since the 70s
- Westminster wins the .London battle
- 20 years of PC Pro: from deep pan pizza to virtualisation
- Five reasons why the Apple Watch leaves me cold
- Apple Watch, iPhone 6 and 6 Plus: Tim Cook's Apple back with a bang?
- BT Home Hub 5: how to get maximum speed
- 20 years of PC Pro: one-star reviews (including "the worst tablet we've ever seen")
- 20 years of PC Pro: our best covers
- How to write your company's IT security policy
- The key to choosing a secure password
- Please stop reposting fake Facebook messages
- Is Facebook safe for business?
- Don't rely on Chrome's password vault
- Facebook Graph Search: don't panic
- Gmail drafts and Pastebin: could they evade the email snoops?
- Applying for a job at GCHQ? Here's your plain-text password
- Google two-step verification: a must for business email
- Yes, I write down my passwords