...this new Firefox threat, which Trend Micro calls TSPY_EBOD.A, is using social engineering to trick users into installing it.
This new piece of malware is actually a click fraud trojan, which injects ads into Google search-result pages. When these ads are clicked, the trojan's authors are receiving a small fee from the advertising network supplying them. ...
...So how do you know if you have this trojan on your system? Any of these signs indicate that you’re infected:
* A running process named smc.exe Edit: Sygate Firewall also uses this process name so this is not a reliable indicator of infection.
* A Firefox plugin named “Adobe Flash Player 0.2″
* Having recently installed a file called install_flash_player.exe or Install_Flash.exe from an unknown source ...
Edited by tork, 30 August 2009 - 08:57 AM.