Hardware Analysis Community Forums http://www.hardwareanalysis.com/content/topic/70731/ 2008-10-15T18:58:21-05:00 http://www.hardwareanalysis.com/content/topic/70731/ http://media.hardwareanalysis.com/halogo.gif text/html 2008-02-17T06:26:51-05:00 john albrich http://www.hardwareanalysis.com/content/topic/70731/?l=1#0 New virus from China, collects passwords, has potential to collect personal data.<br /> Virus name is &quot;mocmex&quot; per Computer Associates.<br /> <br /> <div class="quote"><br /> <a class="ext" href="/action/r/http://www.sfgate.com/cgi-bin/article.cgi?f=/c/a/2008/02/15/BU47V0VOH.DTL" target="_blank">http://www.sfgate.com/cgi-bin/article.cgi?f=/c/a/2008/02/15/BU47V0VOH.DTL</a><br /> Deborah Gage, Chronicle Staff Writer<br /> Friday, February 15, 2008<br /> <br /> It spreads by hiding itself on <b>photo frames and any other portable storage device*</b> that happens to be plugged into an infected PC. <br /> <br /> ...Computer Associates (says the virus renders ineffective) more than 100 security vendors (and)...security and firewall built into Microsoft Windows. It downloads files from remote locations and hides files, which it names randomly, on any PC it infects, making itself very difficult to remove. <br /> </div><br /> <br /> According to CA, it will re-enable Windows' &quot;auto-run&quot; feature even if it was previously disabled by the user. They further state you're infected the moment you plug an infected device into your computer.<br /> <br /> Note: a file/activity monitoring program such as Filemon/Regmon or similar may help you determine if something unusual is happening when you plug in an external device.<br /> <br /> More info also at:<br /> <a class="ext" href="/action/r/http://www.slashgear.com/china-made-photo-frame-with-hidden-viruses-sold-at-major-retailers-1510296.php" target="_blank">http://www.slashgear.com/china-made-photo-frame-with-hidden-vi...510296.php</a><br /> <br /> <br /> *USB/thumb drives, digital cameras, mp3 players, digital voice recorders, PDAs, etc