Panda Security’s weekly report on viruses and intruders
September 2008 by Panda
This week’s PandaLabs report includes information about the VirusResponseLab2009 false antivirus and the P2PShared.M worm, as well as a new pharming attack using the Banker.LKC Trojan.
The VirusResponseLab2009 adware is another example of how false antivirus solutions are being used by cyber-criminals for financial gain.
When run, this adware fakes a system scan, telling users that their computers are infected. It also sporadically launches a pop-up warning, from the taskbar, falsely claiming that the computer is being attacked from the Internet, or that the user is vulnerable to password theft.
The real aim of this malicious code is to make users believe they are infected and consequently buy the antivirus solution offered in order to clean their computers of these (non-existent) threats.
P2PShared.M is a worm that spreads through P2P networks. It does this by copying itself to the folders of several P2P applications, under the guise of software programs, which are then downloaded by other users.
The worm creates a copy of itself on the system and modifies the Windows Registry.
This week, PandaLabs has also offered information on the Banker.LKC Trojan, which passes itself off as a video about the new iPhone in order to trick users and launch a pharming attack that could result in the loss of confidential data. More information about this threat here: