Monagrey Trojan - Do not use Unigray to remove MonaRonaDona infection
This new trojan horse attack modifies IE and Windows to freeze many key processes. When searching Google, forums and YouTube videos are prominent links promoting a $40 purchase for a fake AV removal tool called Unigray. Any user infected should instead use AV cleaning tools as this new threat is becoming more readily detected.
Monagrey Trojan Information
QUOTE: Monagrey is a trojan which modifies IE start page and prevents common applications from running. Once they restart, pop-ups begin appearing which claim: “Hi, My name is MonaRonaDona. I am a Virus and I am here to Wreck Your PC. If you observe strange behavior with your PC, like program windows disappearing etc, it's me who is doing all this. I was created as a protest against the Human Rights Violation being observed throughout the world & the very purpose of my existence is to remind & stress the world to respect humanity.”
New virus tries to dupe victims into googling its name
QUOTE: It has been difficult to trace the source of the virus, which calls itself MonaRonaDona, because victims are unaware their machines are infected until they reboot their PCs, Roel Schouwenberg, a senior anti-virus researcher with Kaspersky Lab, told SCMagazineUS.com on Tuesday. Researchers first noted an outbreak last week.
But on further review, Schouwenberg found that entering “MonaRonaDona” into search engines such as Google and Yahoo yields links to web forums and YouTube videos that discuss the malware and claim that an anti-malware solution known as Unigray can remediate the virus.
The web discussions clearly were fabricated by the malware's purveyors, who had banked on victims searching to find out more about the virus, Schouwenberg said. The bogus forums and videos are meant to entice victims to purchase Unigray, which is actually a rogue $40 anti-virus solution that does not work, except to remove MonaRonaDona, Schouwenberg said.