Alias/esTrojan.SymbOS.Skuller.f(kav), SymbOS/Skulls.g(McAfee) | ||||||||||||
Detection Availability
| ||||||||||||
Visible SymptomsMany applications no longer work after infection by this virus; Logo picture changes to the virus pictrue "MetalG"; Can not terminate virus apllicationnamed "MetalG"; When use phone application,a picture of a skull will falshed all screen; | ||||||||||||
Detailed AnalysisSymbOS/Skulls.F!worm - 06-08-04 More Info: It is a Symbian virus, packed in .sis format. Drops the following files or virus to disable the relevant applications in the phone : C:\system\recogs\YYSBootRec.mdl C:\system\recogs\mav_boot.mdl C:\system\recogs\lmlaunch.mdl C:\system\recogs\kl_antivirus.mdl C:\system\recogs\FSRec.mdl C:\system\recogs\flo.mdl C:\system\recogs\AVBoot.mdl C:\system\recogs\$$$.MDL C:\system\programs\lmsmssrv.exe C:\system\Parsers\FSBioMessageParser.dll C:\system\MALAYSIAJOHOR--jb\yuanV3-diy-by-7022207\free$8.RSC C:\system\MALAYSIAJOHOR--jb\yuanV3-diy-by-7022207\free$8.APP C:\system\libs\trnsmngr.dll C:\system\libs\tmhttplayer.dll C:\system\libs\softwarecopier200.dll C:\system\libs\obframework.dll C:\system\libs\lmuserinterface.dll C:\system\libs\lmpro.mbm C:\system\libs\FS\FSServerLauncher.exe C:\system\libs\FS\FSMonitor.dll C:\system\install\comcoder.SIS C:\system\install\autoexecdaemon.SIS C:\system\data\lcsprocctax.cfg C:\system\data\lcspro.cfg C:\system\data\0010155.cfg C:\system\bif\FSBioMessage.bif C:\system\bif\AVBioIcons.mbm C:\system\apps\[YUAN]\[YUAN]_CAPTION.rsC C:\system\apps\[YUAN]\[YUAN].rsc C:\system\apps\[YUAN]\[YUAN].app C:\system\apps\[YUAN]\[YUAN].aif C:\system\apps\[YUAN]\flo.mdl C:\system\apps\SystemExplorer\SystemExplorer_CAPTION.rsC C:\system\apps\SystemExplorer\SystemExplorer.rsc C:\system\apps\SystemExplorer\SystemExplorer.app C:\system\apps\SystemExplorer\SystemExplorer.aif C:\system\apps\SystemExplorer\flo.mdl C:\system\apps\SmartMovie\SmartMovie_CAPTION.rsC C:\system\apps\SmartMovie\SmartMovie.rsc C:\system\apps\SmartMovie\SmartMovie.app C:\system\apps\SmartMovie\SmartMovie.aif C:\system\apps\SmartMovie\flo.mdl C:\system\apps\SmartFileMan\SmartFileMan_CAPTION.rsC C:\system\apps\SmartFileMan\SmartFileMan.rsc C:\system\apps\SmartFileMan\smartfileman.app C:\system\apps\SmartFileMan\SmartFileMan.aif C:\system\apps\SmartFileMan\flo.mdl ... (Note:too many to list all of them) When install,it will diplay the following message: New Antivirus it destroy all virus |
