Sign in | Help

in

MSMVPS.COM

The Ultimate Destination for Blogs by Current and Former Microsoft Most Valuable Professionals.

This Blog

Home

Syndication

RSS for Posts
Atom
Email Notifications
Go

Recent Posts

Tags

Archives

bits and bytes

Malware posing as WGA validation and notification

New malware recently discovered on at least two help sites.

The file name is wgavn.exe

It creates a service named "Windows Genuine Advantage Validation Notification", as seen in the HijackThis log.

O23 - Service: Windows Genuine Advantage Validation Notification (wgavn) - Unknown owner - C:\WINDOWS\system32\wgavn.exe

Researchers report the malware disabled various security applications and System Restore.

More here

Only published comments... Jun 30 2006, 06:30 AM by Susanh

Filed under: Security , Malware

Leave a Comment

Name: (required)

Website: (optional)

Comments (required)

Remember Me?

Add

Copyright © is the original authors. Blog site is an independent site not sponsored by Microsoft. The Yoda blog server and the Brianna SQL server would like to thank www.ownwebnow.com and www.exchangedefender.com. They wouldn't be here and broadcasting without the generosity of Vlad Mazek and his companies.

Powered by Community Server (Commercial Edition), by Telligent Systems