DaVinci
Posted: February 13, 2013
Threat Metric
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
| Threat Level: | 9/10 |
|---|---|
| Infected PCs: | 63 |
| First Seen: | February 13, 2013 |
|---|---|
| Last Seen: | May 13, 2023 |
| OS(es) Affected: | Windows |
DaVinci is the popular name for a combination of spyware and worm program that can distribute itself in multiple ways while DaVinci steals personal information from both your PC and your mobile phone. Besides the recommendation that you monitor your phones and removable devices that could be infected by DaVinci, SpywareRemove.com malware researchers also warn that DaVinci has been found to benefit from Flash-specific vulnerabilities that could be used to install DaVinci automatically. Fortunately, this particular security flaw can be remedied by updating Flash, although other infection vectors for DaVinci remain unimpeded. In response to a successful DaVinci infection, you should remove DaVinci, like any sophisticated PC-based threat to your personal privacy, with just-as-powerful anti-spyware applications.
2013's DaVinci: Grounded in Your Internet Habits, Rather Than in Artistic Expression
DaVinci, while it's promoted as a seemingly legal monitoring tool, lately has been used for a series of generalized spyware attacks against hapless PC users. Most of these attacks appear to initiate from drive-by-downloads abusing the known Flash vulnerability CVE-2013-0633, for which Adobe has issued a corrective patch. Contact with sites that host this vulnerability may be launched through spam e-mail, instant messenger spam, hijacked social network accounts or even Trojans that are designed for this purpose.
Some of the major information-stealing features contained in DaVinci include:
- Keylogging, or the ability to record your keyboard input to a text file that's sent to an external location.
- Stealing login-related information for popular instant messenger programs.
- Stealing login-related information that's entered through your web browser.
- Theft of your contact lists and related information from e-mail clients and web service
- Screengrabbing: the capture of screenshots at various intervals without your permission.
Topping DaVinci Off with a Well-Deserved Dunce Cap
DaVinci includes some functions that are intended to prevent DaVinci from being detected or removed – such as a code-injection technique that hides DaVinci's components within unrelated memory processes. Coupled with its drive-by-download methodology of distributing itself, DaVinci is theoretically capable of compromising large amounts of personal information without your ever realizing that DaVinci is there in the first place.
SpywareRemove.com malware experts also warn against DaVinci's worm-based distribution functions, which can infect any WinCE-based mobile devices and any USB thumb drives that come into contact with a DaVinci-infected system. As a potent and well-defended PC threat, DaVinci's removal always should be done with appropriate anti-malware programs whenever they're available. Along with removing DaVinci, you also should consider changing your account passwords and other information that could be stolen during a DaVinci attack and exploited even after DaVinci is no longer on your hard drive.
DaVinci's multi-platform features also are worth noting. Besides Windows and WinCE phones, DaVinci also may install itself on Mac OS X – where DaVinci can be detected as a variant of Morcut.
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.