Published Mar 23, 2009|Updated Sep 15, 2017


Alert level: Severe Detected with Windows Defender Antivirus

Also detected as: W32/Smalltroj.LVYW (Norman) Win32/VMalum.EVBB (CA) Trojan-Proxy.Win32.Small.zl (Kaspersky) Generic.dx (McAfee)

TrojanProxy:Win32/Koobface.gen!A is a component of the Win32/Koobface family. Koobface is a multi-component family of malware used to compromise machines and direct them in various ways at the attacker's will. This could include using the affected machine to distribute additional malware, generate 'pay per click' advertising revenue, steal sensitive data, break captchas, and subvert the affected user's online experience. Its components are varied, but include a worm that spreads by utilizing social networking sites such as Facebook and MySpace.
This particular component appears to be used for redirecting the results of user-initiated searches with several popular search engines, possibly in order to generate 'pay per click' advertising revenue.


Latest news
Show/Hide feedback form