Monagrey Trojan - Do not use Unigray to remove MonaRonaDona infection - Security Protection

Common Tasks

Community

Email Notifications

Personal Links

Security Protection - Harry Waldron (CS)

Security Best Practices, Breaking News, & Updates

Monagrey Trojan - Do not use Unigray to remove MonaRonaDona infection

This new trojan horse attack modifies IE and Windows to freeze many key processes. When searching Google, forums and YouTube videos are prominent links promoting a $40 purchase for a fake AV removal tool called Unigray. Any user infected should instead use AV cleaning tools as this new threat is becoming more readily detected.

Monagrey Trojan Information
http://vil.nai.com/vil/content/v_144216.htm

QUOTE: Monagrey is a trojan which modifies IE start page and prevents common applications from running. Once they restart, pop-ups begin appearing which claim: “Hi, My name is MonaRonaDona. I am a Virus and I am here to Wreck Your PC. If you observe strange behavior with your PC, like program windows disappearing etc, it's me who is doing all this. I was created as a protest against the Human Rights Violation being observed throughout the world & the very purpose of my existence is to remind & stress the world to respect humanity.”

New virus tries to dupe victims into googling its name
http://www.scmagazineus.com/New-virus-tries-to-dupe-victims-into-googling-its-name/article/107612/

QUOTE: It has been difficult to trace the source of the virus, which calls itself MonaRonaDona, because victims are unaware their machines are infected until they reboot their PCs, Roel Schouwenberg, a senior anti-virus researcher with Kaspersky Lab, told SCMagazineUS.com on Tuesday. Researchers first noted an outbreak last week.

But on further review, Schouwenberg found that entering “MonaRonaDona” into search engines such as Google and Yahoo yields links to web forums and YouTube videos that discuss the malware and claim that an anti-malware solution known as Unigray can remediate the virus.

The web discussions clearly were fabricated by the malware's purveyors, who had banked on victims searching to find out more about the virus, Schouwenberg said. The bogus forums and videos are meant to entice victims to purchase Unigray, which is actually a rogue $40 anti-virus solution that does not work, except to remove MonaRonaDona, Schouwenberg said.

Posted: Mar 05 2008, 01:55 PM by Harry Waldron | with no comments

Questions? Contact Susan at Susan-at-msmvps.com. Each post's copyright held by the original author. All rights reserved. Blog site is an independent site not sponsored by Microsoft.
Our servers would like to thank www.ownwebnow.com and www.exchangedefender.com. We wouldn't be here without the generosity of Vlad Mazek and his companies.

Powered by Community Server (Commercial Edition), by Telligent Systems

Theme based on the Paperclip Blog Theme included in Community Server.
Enhanced to a Site-Wide Theme by Interscape Technologies.