Login or Register to Ask a Question and Join Our Community


Malware Advisories (RSS)

Troj_vb.fww

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Malware Advisories (RSS) Troj_vb.fww
# 1  
Old 12-30-2007
Troj_vb.fww
This Trojan may be dropped by other malware. It may be downloaded unknowingly by a user when visiting malicious Web sites.
This Trojan creates a registry entry to enable its automatic execution at every system startup.
Once executed, it searches for files with specific extensions. When it finds a match, it drops a copy of itself using the filename of the found file appended with the extension .EXE.
It also modifies the last section of the dropped file in an attempt to avoid easy detection. Furthermore, it creates a folder with an attribute set to Hidden using the file name without extension of the executed copy appended with the string 1 as the folder name.
This Trojan is written in Visual Basic, a high-level programming language.


More...
Login or Register to Ask a Question

Previous Thread | Next Thread
Login or Register to Ask a Question

LEARN ABOUT LINUX

a2ensite

A2ENSITE(8)						      System Manager's Manual						       A2ENSITE(8)

NAME

       a2ensite, a2dissite - enable or disable an apache2 site / virtual host

SYNOPSIS

       a2ensite [site]

       a2dissite [site]

DESCRIPTION

       This manual page documents briefly the a2ensite and a2dissite commands.

       a2ensite is a script that enables the specified site (which contains a <VirtualHost> block) within the apache2 configuration.  It does this
       by creating symlinks within /etc/apache2/sites-enabled.	Likewise, a2dissite disables a site by removing those  symlinks.   It  is  not	an
       error to enable a site which is already enabled, or to disable one which is already disabled.

       The default site is handled specially: The resulting symlink will be called 000-default in order to be loaded first.

EXAMPLES

	      a2dissite default

       Disables the default site.

FILES

       /etc/apache2/sites-available
	      Directory with files giving information on available sites.

       /etc/apache2/sites-enabled
	      Directory with links to the files in sites-available for enabled sites.

SEE ALSO

       apache2ctl(8).

AUTHOR

       This  manual  page  was written by Stefan Fritsch <sf@debian.org> (based on the a2enmod manual page by Daniel Stone <daniel@sfarc.net>) for
       the Debian GNU/Linux distribution.

								    8 June 2007 						       A2ENSITE(8)