Evisscerator writes: "We recently found a piece of malware now floating out on the internet through Emails that is affecting a large number of network workstations and servers. Known as Trojan.Ransom or Rogue.SmartProtection2012, this piece of malware attempts to send locally stored data to IP address 18.104.22.168 , an address on the hosted network of http://gw-technoline.retn.net/ , located in Amsterdam. The malware was caught my Malwarebytes and AVG 2012. The malware creates an EXE file on your system called AEA595.EXE, also a temporary file called E.TMP in a C:\Documents and Settings\%UserNAME%\Local Settings\Temp folder and another file in the C:\Documents and Settings\All Users\Application Data folder begining with a very long alpha-numeric sequence like \F4...4E\ and a file name of the same designation ending with F4*4E.EXE"
Attend or create a Slashdot 20th anniversary party! DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Check out the new SourceForge HTML5 Internet speed test. ×