Win32.Virtob
The Win32.Virtob virus is a malware infection that, along with the Coidung worm, was involved in a scam involving Instant Messaging and fake version's of Microsoft's Genuine Advantage. This tool, discontinued since 2010, allows computer users to check the authenticity of their Microsoft products, especially the Windows operating system and the Office suite. The way the Win32.Virtob virus has infected computer users from around the world is fairly unusual. A large number of malware infections are the result of downloading pirated software. It is no secret that the websites that host these kinds of downloads will often contain malware in their advertisements or within their peer-to-peer networks. Malware analysts have always warned against downloading pirated software, since a common way of hiding viruses and worms is by including an application that supposedly "cracks" the protected software. In reality, these kinds of applications are often used to deliver Trojans or worms onto the victim's computer system. However, the Win32.Virtob virus belongs to a rare category of practices used for the delivery of malware which actually take advantage of some users' fear of pirated software.
In a mode of operation that is very similar to a scam that was perpetrated on AOL's Instant Messaging services in 2007, criminals have started spreading a message through Instant Messaging services urging users to check the authenticity of their Windows operating system. The message contains an executable file disguised as Microsoft's Genuine Advantage software. In reality, this executable file contains the Coidung worm and the Win32.Virtob virus. The worm installs a backdoor onto the victim's computer system which a hacker can use to gain access to the infected computer system. The Win32.Virtob virus is designed to corrupt files and to allow the Coidung worm to spread effectively from one system to another as well as to corrupt the entire infected computer system.
Using the Coidung worm and the Win32.Virtob virus, a hacker disables the infected computer system's firewall, and then creates a security hole through which a hacker can attack the infected computer. These kinds of security holes are commonly known as backdoors. Using a backdoor put into place with the use of the Coidung worm and the Win32.Virtob virus, a criminal can install a remote access tool. Using this kind of malicious application, a hacker can take control of the infected computer system, installing software, deleting files and gaining access to any data within its hard drive.
SpyHunter Detects & Remove Win32.Virtob
File System Details
| # | File Name | MD5 |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|---|
| 1. | file.exe | 87d62f9fa0c769cd36b0e25000aa0469 | 0 |
| 2. | file.exe | 78cc35869214a6258af56206ed51f967 | 0 |
| 3. | file.exe | f31863f55e7587757195931d487ecabf | 0 |
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.