Latest malware updated:

• Name: W32.FakeUserInitIO.Trojan
• Family: W32.FakeUser.Trojan
• Type: Trojan
• Origin: Unknown
• Discovered: August 28, 2010
• Size: 8Kb
• Severity: High

Risks:

• Reduces system security level.

Symptoms:

• Registry is modified.

Infection methods:

• Via websites.
• Downloaded by other types of Trojan.

Preventions:

• Do not visit websites which provide software crack, hacking technique and websites with erotic content.

Technical details:

• Overwrites itself as Windows' userinit.exe file to load virus at Windows' startup.
• Creates mutex: MICK_DOWNLOAD_MUTEX to let only one type of Trojan run on a machine.
• Downloads dk.txt from: http://www.d[removed]tdt.net/dk.txt
  This file contains a lot of links to download other Trojans types:
  http://png1.ga[removed]z.net/soft0.exe
  http://png1.ga[removed]z.net/soft1.exe
  ...................................
  http://png1.ga[removed]z.net/soft33.exe

Analyst: Nguyen Van Khiem

Some noticeable malwares updated on the same day:  W32.QhostTroC.Worm, W32.SolvedB.Trojan, W32.Webreg.Worm, W32.BillyMono.Trojan, W32.Citrumy.Trojan, W32.CoremD.Trojan, W32.Deskgun.Trojan, W32.KavoDsom.Trojan...