Search Solo Products, Services and others Overview of the Site Design and Build a Career Contact us for customer service and other feedback info SRN Micro Privacy Statement

 


AGENT.GYFI SPAMMED IN THE WILD

Virus Name  : Trojan-Downloader.Win32.Agent.gyfi

Alias             : Troj/Bredo-TM, TrojanDownloader:Win32/Dofoil.O, Trojan-Downloader:W32/Agent.DTTE, Trojan-Downloader.Win32.Dofoil!IK

Virus type    : Trojan

Threat level : Low

Virus details :

                     Trojan-Downloader.Win32.Agent.gyfi is a trojan and it is spammed via e-mail in a ZIP file. ( Example: Ticket.zip )

The infected mail message body is given below.

Hello

FLIGHT NUMBER AA552
ELECTRONIC 3289218
DATE & TIME / MARCH 11, 2012, 10:11 AM
ARRIVING / Jackson
TOTAL PRICE / 135.53 USD

Your bought ticket is attached to the letter as a scan document.
You can print your ticket.

Thank you for your attention.
American Airlines.

The infected message subject will be "Order has been completed" or "Your Order#<random number>"

                  When the infected e-mail attachment Ticket.exe within the ZIP file is executed, it copies to application folder and modifies the registry to load automatically on next startup.

                  It also connects to remote servers and installs several malicious programs in the infected system. The downloaded malware will be adware, keyloggers and fake security products. Agent.gyfi trojan is also known as Troj/Bredo-TM, TrojanDownloader:Win32/Dofoil.O, Trojan-Downloader:W32/Agent.DTTE, Trojan-Downloader.Win32.Dofoil!IK.

How can I protect my system?

                   Solo has incorporated Trojan-Downloader.Win32.Agent.gyfi and its variants in signature file to protect users from this trojan attack. Solo antivirus registered users are already protected from this trojan. Make sure that you have installed registered version of Solo Antivirus to protect your system from all virus threats.

How to remove this worm?

                   Solo antivirus can detect and remove Trojan-Downloader.Win32.Agent.gyfi safely. Use the following link to Download 30 day trial version of Solo antivirus to remove viruses from your computer.

                   Solo anti-virus not only scans for all viruses, it contains a unique System Integrity Checker to protect you from New Internet Worms, Backdoors and malicious VB, Java Scripts. It also effectively removes all existing Internet Worms, File viruses, malicious VB, Java scripts, Trojans, Backdoors, boot sector, partition table and macro viruses.

You can purchase Solo antivirus using the link