Virus Malware and Threat News for 20080429
Trojan-Downloader:JS/Psyme.CK - Trojan-Downloader:JS/Psyme.CK at F-Secure
Trojan-Downloader:JS/Psyme.CK exploits vulnerabilities found in the affected system and also redirects to
other sites. It then attempts to download and execute a binary from a specific URL.
...
Trojan-PSW:W32/OnLineGames.SZJ - Trojan-PSW:W32/OnLineGames.SZJ at F-Secure
Trojan-PSW:W32/OnLineGames.SZJ is a DLL component whose function is to steal sensitive account information.
...
Trojan-PSW:W32/OnLineGames.JCT - Trojan-PSW:W32/OnLineGames.JCT at F-Secure
The file detected as Trojan-PSW.Win32.OnLineGames.JCT drops another trojan that is detected as
Trojan-Downloader.Win32.Agent.BLM.
...
Trojan-Downloader:W32/Agent.BUV - Trojan-Downloader:W32/Agent.BUV at F-Secure
Trojan-Downloader:W32/Agent.BUV downloads malicious files from a remote server. It then executes and installs
the downloaded files.
...
Trojan-Downloader:JS/Agent.ANI - Trojan-Downloader:JS/Agent.ANI at F-Secure
Trojan-Downloader:JS/Agent.ANI exploits a vulnerability in a PPStream ActiveX control to download and execute
arbitrary code on the exploited system.
...
Exploit:HTML/IESlice.BK - Exploit:HTML/IESlice.BK at F-Secure
Exploit:HTML/IESlice.BK exploits a vulnerability in an ActiveX control used by Xunlei Thunder 5.7.4.401.
Malicious or compromised websites use the exploit to download and execute arbitrary code.
...
Exploit:JS/RealPlr.T - Exploit:JS/RealPlr.T at F-Secure
Exploit:JS/RealPlr.T is JavaScript usually found on malicious or compromised websites. It is used to silently
install malware onto the website visitor's system.
...
Trojan.Asnoms!inf - Trojan.Asnoms!inf at Norton Symantec
Trojan.Asnoms!inf is a detection for files that have been modified to load other malicious files during system
start up....
Trojan.Qipian - Trojan.Qipian at Norton Symantec
Trojan.Qipian is a Trojan horse that steals information from the compromised computer.
...
Adware.Okcashbackmall - Adware.Okcashbackmall at Norton Symantec
BehaviorAdware.Okcashbackmall is an adware program that may redirect the browser from destination Web sites.
...
PE_MUMAWOW.BG-O - PE_MUMAWOW.BG-O at Trend Micro
This file infector may be dropped by other malware. It may be downloaded unknowingly by a user when visiting
malicious Web site(s).It drops a copy of itself in the Windows folder.It creates a registry entry to enable
its automatic execution at every system startup. It creates a registry key and entries as part of its
installation rou...
PE_MUMAWOW.BG - PE_MUMAWOW.BG at Trend Micro
This file infector is the Trend Micro detection for files infected by the mother file infector, PE_MUMAWOW.
BG-O.This file infector may be downloaded from remote sites by other malware. It may be dropped by other
malware. It may also be downloaded unknowingly by a user when visiting malicious Web sites.It drops the file
XUE.XUE (detec...
TROJ_DROPPER.MAT - TROJ_DROPPER.MAT at Trend Micro
...
Mal/EncPk-BW - Mal/EncPk-BW at Sophos
Mal/EncPk-BW is a program that has been packed with a protection system typically used by malware
authors. ...
Troj/Dwnldr-HCQ - Troj/Dwnldr-HCQ at Sophos
...
Troj/Conhook-AM - Troj/Conhook-AM at Sophos
Troj/Conhook-AM creates the following registry entries:
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\<Random Letters> DLLName
<Random FileName>.dll HKLM\SOFTWARE\Microsoft\Windows
NT\CurrentVersion\Winlogon\Notify\<Rand...
Troj/Xiao-A - Troj/Xiao-A at Sophos
Troj/Xiao-A attempts to steal account ids and passwords .
...
Troj/ZlobDr-I - Troj/ZlobDr-I at Sophos
...
W32/Xiao-A - W32/Xiao-A at Sophos
W32/Xiao-A attempts to steal account ids and passwords .
...
Linux/Binom-Gen - Linux/Binom-Gen at Sophos
...
Mal/EncPk-DL - Mal/EncPk-DL at Sophos
Mal/EncPk-DL is a program packed with a protection system typically used by malware authors.
...
Troj/LinFlA-Gen - Troj/LinFlA-Gen at Sophos
...
0 writebacks [04/30/2008 04:43]
[]
permanent link
|
