This particular virus is pretty bad because it is a spam machine, and it collects email contacts as well as facebook contacts AND LOGIN information to both. Once you click the link it takes you to this page:
When you download the executable it downloads and installs itself in the background. Once the file “surprise.exe” is executed, it will then monitor all user activity, by injecting itself to the active browser, such as Internet Explorer or Mozilla Firefox. If the user tries to login into his Facebook account, the malware will record the username and password, to be used to spamming to every friend on the Facebook account. Users can find out by looking at the folder “sent”.
This is a recently released virus with the earliest infections documented Jan 18, 2011 that we can find.
Most free antivirus products will not detect this virus for 10 to 14 days as they generally allow paid subscribers to update first and delay the free versions. We are ready and waiting to assist you in removal of this and all other trojans you may have. Of course we dont stop there we help you patch the holes that allow this type of infection.
Contact us:
Panama City @ 850-387-0103, Marianna @ 850-272-0943
Skype - jasonjohnson0 Online form