Govvy.co.uk

Welcome to Govvy’s Corner.
Subscribe

Archive for the ‘Viruses’

A report on radiation contamination of United Kingdom email spam

September 12, 2008 By: Govvy Category: IT, Spam, Viruses No Comments →

The body of the email contains:

On Internet forums there appeared messages of a powerful explosion at a United Kingdom nuclear power station located in the suburbs of London..
According to witnesses’ statements the explosion happened at about 3 pm on the 9th of September.
In particular, one resident of this town has made a call and had time to inform her relatives that connection in the town was being cut off in order not to let people phone somebody.
She insists that the explosion really took place at the nuclear power station, and that it was a really powerful one, and now the radiation cloud is moving.
This information is being unofficially confirmed in public agents’ private conversations.

Besides, local residents place pictures of the explosion consequences and victims’ bodies in their blogs.

The photo’s attached to this email!
Send this email to your friends!

And the attachment is a WIN32:Trojan-Gen virus, so don’t open it!

braviax.exe malware and a virus in one.

August 21, 2008 By: Govvy Category: IT, Malware, Viruses No Comments →

I read some websites that say braviax is just malware that installs itself on a PC with the red (X) in the system tray and popping up a message to say. Your PC is infected.

Well it was infected with braviax and not only that when following the removal instructions. Removing braviax.exe by shift deletion, then removing a friend of it in a file simply named as BRAVIAX.EXE-0B81BFC9.pf Well, the shit hit the fan. According to the virus scan, running AVG at the time along with Windows Defender and an out of date firewall called Sygate. There were a number of intrusions. 5 one scan, 2 another scan.

I started trying to remove the other stuff, but in two days what ever was left on the PC, a variation of braviax maybe. What it seemed to be doing was first to remove the start menu bar, then all the icons effectively taking away your desktop. The next thing the virus did was erase half the windows registry.

So all I could do and end up with was the task manager program which I could access with ctrl-alt-del string. I could see the processes which all looked innocent but could of possibly been taken over by fakes. I was pretty sure wuauclt.exe was copied over by that virus which does that. Because it was functioning in the processes without asking to update Windows. There was SHeur.cdsc which I don’t know what that did.

So instead of trying to remove any more malware, viruses it’s down to the good old format and start again. How inconvinient for one little braviax.exe and it’s friends.