GiftCom worm emerges as festive threat

Instant messaging security company IMLogic has warned of a festive threat affecting users of AIM, ICQ, MSN, Windows Messenger and Yahoo! IM services.

The IM.GiftCom.All worm sends out a web address to IM clients which, if clicked, will download an executable file, often named gift.com.

If run, the file installs itself as a rootkit into the system which then hides itself from Windows as well as other software, including antivirus software. The virus scans the registry, file system, and Internet cache, makes several networking calls and logs keystrokes on the keyboard. it also tries to shut down antivirus processes and may try and broadcast itself on to other instant message clients.

Companies such as F-Secure and Kaspersky are already developing rootkit detection technologies. You can download a beta of F-Secure’s Blackight at the website.

Disclaimer: Some pages on this site may include an affiliate link. This does not effect our editorial in any way.

Todays Highlights
How to See Google Search History
how to download photos from google photos