Virus Malware and Threat News for 20080629
W32/Nuwar@MM!F6D2E5FF - W32/Nuwar@MM!F6D2E5FF at McAfee
File PropertyProperty ValueFile Namemylove.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32F6D2E5FFMD55379948A761570BF86AD4D4387AA3F8ASHA1D9374E4FC3B545CF0C087EB11F516714A3F79E9AOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dSymantecTrojan.PeacommAvert®
Labs has observed the follo...
W32/Nuwar@MM!80CE7E98 - W32/Nuwar@MM!80CE7E98 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3280CE7E98MD5CA4855CDF33B75D75F46040440F1D314SHA1D1D76A073DC68EF8B0F6761BB5BF18EB2C4CF2D5Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
W32/Nuwar@MM!DB3BDFD5 - W32/Nuwar@MM!DB3BDFD5 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32DB3BDFD5MD5D29C12B99C58C7E725B8A3934844E1B0SHA1A0EF41D9E1FAC0DD0E23567C4335D1F805811537Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dSymantecTrojan.PeacommAvert®
Labs has observed the followi...
W32/Nuwar@MM!C27F380A - W32/Nuwar@MM!C27F380A at McAfee
File PropertyProperty ValueFile Namewinner.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32C27F380AMD5CDDFB15AE1927EA87285C48ADDA01515SHA1F97DBB8D38F03443794A019706A4F99915D3E641Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dSymantecTrojan.PeacommAvert®
Labs has observed the follo...
W32/Nuwar@MM!E8834DE0 - W32/Nuwar@MM!E8834DE0 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32E8834DE0MD5BEAA6E30402069C5F494F07DEF0DBD36SHA1362887B6073CE392D2577D948328C5C5C5B4CA47Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dSymantecTrojan.PeacommAvert®
Labs has observed the followi...
PWS-OnlineGames.as!C2ED50FC - PWS-OnlineGames.as!C2ED50FC at McAfee
File PropertyProperty ValueFile Namemax4.exeMcAfee DetectionPWS-OnlineGames.asLength19,191
bytesCRC32C2ED50FCMD505E00202B69C5E639F5D0267565CFCE3SHA1C272FA296E97E671C886AE811346BE3132ACD4E3Other Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTSPY_ONLINE...
PWS-OnlineGames.as!D69F40D4 - PWS-OnlineGames.as!D69F40D4 at McAfee
File PropertyProperty ValueFile Namemax13.exeMcAfee DetectionPWS-OnlineGames.asLength19,795
bytesCRC32D69F40D4MD511B340F2286DE93680F65B2EBBB88DD7SHA1E27F7C539383B55427834839B1523FDBD81332CAOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)psw.onlinegames.avmpNormanw32/suspicious_u.
genSophosMal/PackerTrend MicroTROJ...
PWS-OnlineGames.p!1980E2E8 - PWS-OnlineGames.p!1980E2E8 at McAfee
File PropertyProperty ValueFile Namemax28.exeMcAfee DetectionPWS-OnlineGames.pLength25,808
bytesCRC321980E2E8MD5ABC386140AFEF41E61EBB6944A2E4401SHA1442E01010AD6E8B0B507AA2AF3D86B26FB24F564Other Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSymantecInfostealer.GampassTrend
MicroCryp_UpackAvert® Labs ha...
PWS-OnlineGames.p!8F1C2153 - PWS-OnlineGames.p!8F1C2153 at McAfee
File PropertyProperty ValueFile Namemax30.exeMcAfee DetectionPWS-OnlineGames.pLength28,168
bytesCRC328F1C2153MD51D97A22475E5B5D6B228DCA37A00C312SHA10DFCCA94CAB7D705ED90B9EADE2CC44028B451C8Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)psw.onlinegames.apuhNormanw32/suspicious_u.
genSymantecInfostealer.GampassTrend...
PWS-OnlineGames.as!8E513A62 - PWS-OnlineGames.as!8E513A62 at McAfee
File PropertyProperty ValueFile Namemax6.exeMcAfee DetectionPWS-OnlineGames.asLength19,511
bytesCRC328E513A62MD523C0BC9684072AF1640773887E65D50CSHA1B1B19208C0E3FF9EF72103BF75F591EC1D9ED719Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)psw.onlinegames.avhnNormanw32/suspicious_u.
genSophosMal/PackerSymantecInfostea...
PWS-OnlineGames.as!5B95CF5F - PWS-OnlineGames.as!5B95CF5F at McAfee
File PropertyProperty ValueFile Namemax16.exeMcAfee DetectionPWS-OnlineGames.asLength19,587
bytesCRC325B95CF5FMD549C91BF213979A13C4D79589FFDC81F5SHA12781FA525F3C570196BE70F77F5AF7EE27D87422Other Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTSPY_ONLIN...
PWS-OnlineGames.as!74EF8986 - PWS-OnlineGames.as!74EF8986 at McAfee
File PropertyProperty ValueFile Namemax17.exeMcAfee DetectionPWS-OnlineGames.asLength19,927
bytesCRC3274EF8986MD550D35D2DC5EC2F349078B02A533BCF94SHA16C2A3EC958BD1B969BC75C31DD7270F557CEC74EOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)psw.onlinegames.avhyNormanw32/suspicious_u.
genSophosMal/PackerSymantecInfoste...
W32/Nuwar@MM!CD11D741 - W32/Nuwar@MM!CD11D741 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32CD11D741MD5885C6E21EE47DFB212A8AD8EFE89157ASHA19F8B0880F6325755FD3A6D0C90ECE4C7F24D1D20Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
W32/Nuwar@MM!361166DB - W32/Nuwar@MM!361166DB at McAfee
File PropertyProperty ValueFile Namewinner.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32361166DBMD57A20A772254910B6EF8A2E18D151FFD6SHA15B5AB962DA227666B9F4E17A81B7788A2EE4BED0Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dSymantecTrojan.PeacommAvert®
Labs has observed the follo...
W32/Nuwar@MM!55B91863 - W32/Nuwar@MM!55B91863 at McAfee
File PropertyProperty ValueFile Namewinner.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3255B91863MD5B7360832402ACBB8E5EA874962BD9CD0SHA1046F59EE40AA5A23328F03CF3092285EE72AF6CBOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dSymantecTrojan.PeacommAvert®
Labs has observed the follo...
W32/Nuwar@MM!79567B4D - W32/Nuwar@MM!79567B4D at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3279567B4DMD5477E43B619A938E81337F3F72087D968SHA1217D489AA5BA7761B6F5041821577537FCEC199DOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
BackDoor-AWQ.b!29C78ABB - BackDoor-AWQ.b!29C78ABB at McAfee
File PropertyProperty ValueFile Name53bbac~1.exeMcAfee DetectionBackDoor-AWQ.bLength1,452,558
bytesCRC3229C78ABBMD553BBAC968875B4C86B8E9514E358B366SHA129B563FCBF9EF7E50C8BF9B2CE6389A711A6731AOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)dropper.generic.uqkMicrosofttrojandropper:
win32/delfdru.gen!aNormanw32/hupi...
W32/Nuwar@MM!D327633F - W32/Nuwar@MM!D327633F at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32D327633FMD5105183E36A198A608B00BC8ED43118EDSHA12719FDF0C0D491F6C421ECE0F4FFE02B7D11A260Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activitie...
W32/Nuwar@MM!849C1414 - W32/Nuwar@MM!849C1414 at McAfee
File PropertyProperty ValueFile Namewinner.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32849C1414MD5283636A7069DA2C88A2F62917F99EC8DSHA1E885C4D5C9F5ACF0FA3B795F67C56DF3F035413BOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dSymantecTrojan.PeacommAvert®
Labs has observed the follo...
Troj/FakeAle-CR - Troj/FakeAle-CR at Sophos
Troj/FakeAle-CR copies itself to the <Windows> folder using random names.
Troj/FakeAle-CR drops the files <System>\spywarewarning.mht
<System>\spywarewarning2.mht These two files can be safely deleted.
Troj/FakeAle...
W32/Looked-EI - W32/Looked-EI at Sophos
W32/Looked-EI infects executable files on the computer. It also attempts to copy itself to network
shares. W32/Looked-EI drops the files <Windows>\dll.dll - detected as
W32/Looked-W. <Windows>\rundl132.exe - detected as W32/Looked-EI
<Windows>\logo1...
Troj/FakeVir-CJ - Troj/FakeVir-CJ at Sophos
...
Troj/Startp-BJ - Troj/Startp-BJ at Sophos
Troj/Startp-BJ is a start page Trojan for the Windows platform. When run
Troj/Startp-BJ changes settings for Microsoft Internet Explorer by setting the following two registry values:
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search Local Page http:
//www2....
Troj/Swizzor-NX - Troj/Swizzor-NX at Sophos
Troj/Swizzor-NX is an adware Trojan for the Windows platform.
Troj/Swizzor-NX is installed by adware supported freeware or shareware applications.
The installer for the potentially unwanted application (PUA) NetPumper is known to install Troj/Swizzor-NX to:
...
W32/Autorun-EZ - W32/Autorun-EZ at Sophos
W32/Autorun-EZ is a worm for the Windows platform. When W32/Autorun-EZ is
installed the following files are created: <Temp>\68468.bat
<Temp>\es vbb 24-3-08.bat 68468.bat is also detected as W32/Autorun-EZ, and es
vbb 24-3-08.bat ...
Troj/Banloa-FL - Troj/Banloa-FL at Sophos
Troj/Banloa-FL is a downloader Trojan for the Windows platform. When run
Troj/Banloa-FL attempts to download files from a remote location to the location:
<Windows>\windowssys.exe - detected as Mal/BanSpy-F. The following registry entry
is set: ...
0 writebacks [06/30/2008 04:51]
[]
permanent link
|
Virus Malware and Threat News for 20080628
Trojan.Ushedix!inf - Trojan.Ushedix!inf at Norton Symantec
Trojan.Ushedix!inf is a detection for the %System%user32.dll file infected by Trojan.Ushedix.
...
Trojan.Ushedix - Trojan.Ushedix at Norton Symantec
Trojan.Ushedix is a Trojan horse that replaces system files and infects the user32.dll file in order to
download potentially malicious files.
...
W32/Nuwar@MM!D14224A0 - W32/Nuwar@MM!D14224A0 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32D14224A0MD5020A10AFBFD3ED7E524E3A667344ADE7SHA1901EB9DCEC0AB5D1C71B54ABCEEA029F2DC0EBC4Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
W32/Nuwar@MM!8641B1EA - W32/Nuwar@MM!8641B1EA at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC328641B1EAMD56B17B30033A34881264D7C9093C6F91CSHA16C8A616E384818735B3675E7AE5A647AF0A2C61BOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
W32/Nuwar@MM!D3B643F6 - W32/Nuwar@MM!D3B643F6 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32D3B643F6MD530404ACB7FCDF48D04990B26D0FDC87ESHA16C6E3915284926DFC06C0377F9D6562165C739B5Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
W32/Nuwar@MM!548A7EB1 - W32/Nuwar@MM!548A7EB1 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32548A7EB1MD5854809E64AB9D0F8D480F93E782EC41BSHA1CA386F2E8C76F341BF9C9A5AFB2D7F6658BAEC96Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activitie...
W32/Nuwar@MM!43193B21 - W32/Nuwar@MM!43193B21 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3243193B21MD50D944B49BDD5EEDFB9AE0CC1B161C313SHA1BC69ECD25785AF9BD1385AEE04359AEB4E92AAFFOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activitie...
W32/Nuwar@MM!C40ABEA6 - W32/Nuwar@MM!C40ABEA6 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32C40ABEA6MD53BB831946F247040D3EAB7051577850BSHA13440B1870115ED651FC9BB82FB70263231EEAA4EOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
W32/Nuwar@MM!D4315465 - W32/Nuwar@MM!D4315465 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32D4315465MD51C9AB82E70693DAE9FF532BF6723251BSHA1C2AEACD1EC2F6249A2952316DCC15B8F8B60F61EOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
W32/Nuwar@MM!F8692ECC - W32/Nuwar@MM!F8692ECC at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32F8692ECCMD5CD70D209A1FED61BEAFA8486F4C75065SHA1EB12BF7491F9A439662AA48FC8A765A1908B10AFOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activitie...
W32/Nuwar@MM!21A16D0D - W32/Nuwar@MM!21A16D0D at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3221A16D0DMD5D7FEC645C9CAA36427C2A972F5F2ADA5SHA118E081C1F600A38F13CBDC86BCF72071D68EEA35Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
W32/Nuwar@MM!63C45B97 - W32/Nuwar@MM!63C45B97 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3263C45B97MD5E8A7BC6B8D0EE3748C99B79DB2B07D0DSHA1935890B83DE37651980E81BE3735C37D7D6717D9Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activitie...
W32/Nuwar@MM!9FA7CE9E - W32/Nuwar@MM!9FA7CE9E at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC329FA7CE9EMD5E24401C57AC3BB085590DB69EFAA4C15SHA1B49B89502D6D3AE62DA185D6A5EFE18DA219C44EOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activitie...
W32/Nuwar@MM!7237CC67 - W32/Nuwar@MM!7237CC67 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC327237CC67MD5E75E9A4A2E0E10AB6CC76F5F49975C17SHA1FFBA34FBC06EE63844090E4007EF640C8F5A50D8Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
W32/Nuwar@MM!4A2794E4 - W32/Nuwar@MM!4A2794E4 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC324A2794E4MD55e7f6ba51cdf28ec0f536fe7b317bf02SHA1D2B83B4DD03BD24371447BB4D3DAD45D2C412D13Avert®
Labs has observed the following system activities:ActivityRisk LevelModifies Memory of Other
ProcessesHighEnumerates running ProcessesMediumCr...
W32/Nuwar@MM!3E046C0B - W32/Nuwar@MM!3E046C0B at McAfee
...
W32/Nuwar@MM!892CBDDA - W32/Nuwar@MM!892CBDDA at McAfee
...
W32/Nuwar@MM!28CFF091 - W32/Nuwar@MM!28CFF091 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3228CFF091MD59B834B318CBA71840D9633D02B430E8ESHA1170D92EDB1F3D910222D10166FC79E1E5AB94046Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
W32/Nuwar@MM!ABC97A09 - W32/Nuwar@MM!ABC97A09 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32ABC97A09MD5A7D136851217E48921FDF4A9C7C72E72SHA1D4188B6097EC1265361AB1CBC8E583D87F8F825AOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
W32/Nuwar@MM!C3E3B059 - W32/Nuwar@MM!C3E3B059 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32C3E3B059MD5427D00CABAAAC84D7621167C4EC602E4SHA105C5E70648AAB9504314BC281A477737FEB78F8DOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activitie...
W32/Nuwar@MM!E6976D7A - W32/Nuwar@MM!E6976D7A at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32E6976D7AMD512F4F976941243F768C8914D200510E1SHA1C0BCF06941B464DA5FD6415F5032720EEB3A21FEOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.generic7.vfhMicrosoftbackdoor:win32/nuwar.
gen!dAvert® Labs has observ...
W32/Nuwar@MM!60DA54AB - W32/Nuwar@MM!60DA54AB at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3260DA54ABMD5AAB1BC9E59F4CF2C513F5710940396ECSHA17A9C96EEC2E44D294D63BC74AD4DEBBAF85F5A47Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
W32/Nuwar@MM!F1746B74 - W32/Nuwar@MM!F1746B74 at McAfee
File PropertyProperty ValueFile Namemssecu~1.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32F1746B74MD5F769A9FD3C0C976EEE5B3B387066831FSHA15F31DBD4DC01AE00D6A9E9C75D9C5ADE436312ABOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.generic7.vdyMicrosoftbackdoor:win32/nuwar.
gen!dAvert® Labs has ob...
W32/Nuwar@MM!23772DD7 - W32/Nuwar@MM!23772DD7 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3223772DD7MD576E2649D0D4F314308BD38BA86D15CFASHA1239F338D5EAC7B4E129314BC83F67EC604FE20B3Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.generic7.vdeMicrosoftbackdoor:win32/nuwar.
gen!dAvert® Labs has obs...
W32/Nuwar@MM!FAD64090 - W32/Nuwar@MM!FAD64090 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32FAD64090MD5A30C48FAD71946B5151EBEF5F8217E8BSHA11090A0771EA34CCA6F002840CA4DE6B95668A418Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activitie...
W32/Nuwar@MM!F44C00EE - W32/Nuwar@MM!F44C00EE at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32F44C00EEMD59F4DF8D3ECE24170122198E67DBA7BF9SHA1269826AAE2E4F5F1E569D8BD9C4288263ADAC7F0Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.generic7.vdqMicrosoftbackdoor:win32/nuwar.
gen!dAvert® Labs has obs...
W32/Nuwar@MM!2426DFC8 - W32/Nuwar@MM!2426DFC8 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC322426DFC8MD5DCC46B1D1D1E8D8CDC499507CF4CA585SHA1BA07F52D9E11FE0C33A55B608A1A5EC1FB2EBC82Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.generic7.vdzMicrosoftbackdoor:win32/nuwar.
gen!dAvert® Labs has observ...
W32/Nuwar@MM!D012F2C3 - W32/Nuwar@MM!D012F2C3 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32D012F2C3MD5896A5DC7C9EFE1FE41D93B81F5093541SHA1C2101DDE468271ED474E2225CDBE36900204B63COther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.generic7.vcnMicrosoftbackdoor:win32/nuwar.
gen!dTrend MicroTROJ_CNTR.IYAv...
W32/Nuwar@MM!B82AAB94 - W32/Nuwar@MM!B82AAB94 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32B82AAB94MD57E7DC03833D71CD807668A03E620A64BSHA14DF6BED18532BA730A1FD8579848E848D6A9D50COther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.generic7.vcgMicrosoftbackdoor:win32/nuwar.
gen!dAvert® Labs has obs...
W32/Nuwar@MM!83257376 - W32/Nuwar@MM!83257376 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3283257376MD5ABFC66845020D058FCA6F188758A9974SHA109A5CA56640A3E1E20A100BF9F1549B4BBA20EBCOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activitie...
W32/Nuwar@MM!871760F6 - W32/Nuwar@MM!871760F6 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32871760F6MD542DC1002761CCAB341788AD8FFE837C3SHA1B66863EF32B688BDB4AD05970E27E38BE986852FOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dNormanw32/dloader.hwpcTrend
MicroTROJ_CNTR.ISAvert® Lab...
Troj/Bancos-BED - Troj/Bancos-BED at Sophos
Troj/Bancos-BED is a Trojan that steals banking information.
...
Troj/Agent-HDT - Troj/Agent-HDT at Sophos
...
Troj/Agent-HDR - Troj/Agent-HDR at Sophos
...
Troj/Dloadr-BNH - Troj/Dloadr-BNH at Sophos
...
Troj/Repl-B - Troj/Repl-B at Sophos
...
Troj/Zlob-ALR - Troj/Zlob-ALR at Sophos
Troj/Zlob-ALR creates the registry value
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer\run
some...
Troj/Zlobun-Gen - Troj/Zlobun-Gen at Sophos
Troj/Zlobun-Gen is a family of Trojans for the Windows platform.Members of Troj/Zlobun-Gen usually claim to be
uninstallers for other applications, though may not remove all of the files and registry entries associated
with those applications.Members of Troj/Zlobun-Gen are typically seen in conjunction with other Zlob Trojans.
...
0 writebacks [06/29/2008 04:44]
[]
permanent link
|
Virus Malware and Threat News for 20080627
Joke.Blusod - Joke.Blusod at Norton Symantec
BehaviorJoke.Blusod is a joke screen-saver program that displays a series of system failure messages on the
computer....
Trojan.Blusod - Trojan.Blusod at Norton Symantec
Trojan.Blusod is a Trojan horse that may download files on to the compromised computer.
...
PestSweeper - PestSweeper at Norton Symantec
BehaviorPestSweeper is a misleading application that may give exaggerated reports of threats on the computer.
...
W32/Nuwar@MM!F684DC6A - W32/Nuwar@MM!F684DC6A at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32F684DC6AMD5f91a0cea9f0ab87f4bc848c29a990775SHA1ED67CCE8DB1C60908CF568F44F3DA0AED2E954DAOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
W32/Nuwar@MM!BC9A6D0A - W32/Nuwar@MM!BC9A6D0A at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32BC9A6D0AMD54b2e8a0f5873ba490bb2adeb56c1a218SHA1C32A8BC83D406885FF4746C3BD2EB60A3095BD28Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
W32/Nuwar@MM!8A7BB98B - W32/Nuwar@MM!8A7BB98B at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC328A7BB98BMD58678261b0d67619dc745fb1292171057SHA1E800FC643720B11B8FCA2D3A14653FBB217AD2CEOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
W32/Nuwar@MM!8A344965 - W32/Nuwar@MM!8A344965 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC328A344965MD551A47DF13F4C79F04F3ECA04CD4C25DESHA16CD71D9D4CED672A316558A423A0E7CA1DA830B6Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.generic7.uvnMicrosoftbackdoor:win32/nuwar.
gen!dAvert® Labs has obs...
W32/Nuwar@MM!97974296 - W32/Nuwar@MM!97974296 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3297974296MD5C70AAB1B03B519D220D914D354D32D92SHA1283C8E5D225388C96FC1FB8D2DBD5AF9D0A00AF9Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.generic7.uvhMicrosoftbackdoor:win32/nuwar.
gen!dAvert® Labs has observ...
W32/Nuwar@MM!57D1F872 - W32/Nuwar@MM!57D1F872 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3257D1F872MD5EFD6DEFA7C5D24454365B7EE30C4ACBDSHA1A08A51CEA6D0A4F63DE6EDF74524F1AFF4D7E555Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activitie...
W32/Nuwar@MM!B2B68915 - W32/Nuwar@MM!B2B68915 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32B2B68915MD573AE606F85DCD2C4E2313B40EDFB4864SHA1C6F8ACEDC72A18B8E44ABF580DDEA3A765E3B1A6Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
W32/Nuwar@MM!99D153CF - W32/Nuwar@MM!99D153CF at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3299D153CFMD54F90FAB9A10BB321F10C8230C95166DBSHA1FB9299E178B650229453D522241C348A2BB52A6AOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activitie...
W32/Nuwar@MM!B231A2F8 - W32/Nuwar@MM!B231A2F8 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32B231A2F8MD5D0D7F81B5A703778410F1529AFC15CC3SHA1A14FB9BA3CB7B0FB6D78B2C714EDA56CDA0EBDBEOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dTrend MicroTROJ_CNTR.GLAvert®
Labs has observed the fol...
W32/Nuwar@MM!8D9D71ED - W32/Nuwar@MM!8D9D71ED at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC328D9D71EDMD59BF3EE0DE33FA432CFC40F87A16442EBSHA1B3614411F0044EE6C342A35E00E300617CE41F78Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
W32/Nuwar@MM!90CA5FD2 - W32/Nuwar@MM!90CA5FD2 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3290CA5FD2MD55b01ae3b5cfaaed8a8efc665fe17cf37SHA19A5D505AE28FEE293AA924F6E049369D32E0D8C3Avert®
Labs has observed the following system activities:ActivityRisk LevelModifies Memory of Other
ProcessesHighEnumerates running ProcessesMediumCr...
W32/Nuwar@MM!2566D669 - W32/Nuwar@MM!2566D669 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC322566D669MD50668F58B634D38B257064362E5E9E0A1SHA1689C45513D710B167B272C80657E2C0B765D2AFFOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.generic7.uszMicrosoftbackdoor:win32/nuwar.
gen!dAvert® Labs has observ...
W32/Nuwar@MM!F59BBCF9 - W32/Nuwar@MM!F59BBCF9 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32F59BBCF9MD58A0EDED7BABB612A4B96D9CA18575525SHA1A2CC68A02D7A1CD826B0EC5B5FC6150E9485DD72Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.generic7.utgMicrosoftbackdoor:win32/nuwar.
gen!dAvert® Labs has obs...
W32/Nuwar@MM!EE88EDF3 - W32/Nuwar@MM!EE88EDF3 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32EE88EDF3MD5783820B2766099A603632881FDE18595SHA1373F41E6BB832CA8CBBF6B201F5D7A1BC37F98CCOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.generic7.uswMicrosoftbackdoor:win32/nuwar.
gen!dAvert® Labs has observ...
W32/Kantak.worm - W32/Kantak.worm at McAfee
Upon execution, the worm copies itself to the following locations: C:\Documents and Settings.exe C:
\files.exe C:\New Folder.exe C:\New Folder(2).exe C:\Pictures.exe C:\Program Files.
exe C:\Songs.exe C:\WINDOWS.exe C:\WINDOWS\KHATARNAK.exe C:\WINDOWS\system32\KHATARNAK.
exeThe worm modi...
TROJ_SMALL.BHY - TROJ_SMALL.BHY at Trend Micro
This Trojan may be downloaded from remote sites by JS_IFRAME.OY. It may also be downloaded from certain remote
sites.It connects to a certain URL to check for an active Internet connection and to download other malicious
files detected as the following:BKDR_RUSTOCK.BJCRYP_XED-3TROJ_PROXY.AAL TROJ_SMALL.KBUTROJ_WIGON.
J...
Mal/Airworm-A - Mal/Airworm-A at Sophos
...
Troj/Bomgen-Fam - Troj/Bomgen-Fam at Sophos
Troj/Bomgen-Fam is a batch file that drops more malware.
...
VBS/AutoRun-FG - VBS/AutoRun-FG at Sophos
VBS/AutoRun-FG is a VBScript worm for the Windows platform. When run
VBS/AutoRun-FG copies itself to: <Root>\<worm script> <Document and
Settings>\<User>\<worm script> VBS/AutoRun-FG also creates the file:
<Root...
Troj/Agent-HDN - Troj/Agent-HDN at Sophos
Troj/Agent-HDN is a Trojan for the Windows platform. When first run,
Troj/Agent-HDN drops a file to <Window>\avtapit.dll, which also detected as Troj/Agent-HDN
then run it. Troj/Agent-HDN has the functionalities to: -download a
file from p...
Troj/Agent-HDP - Troj/Agent-HDP at Sophos
Troj/Agent-HDP is a Trojan for the Windows platform. When first run,
Troj/Agent-HDP copies itself to <Windows>\winuscn32.exe
Troj/Agent-HDP has the functionality to: -download file from preconfigured URL.
The following re...
Troj/Dload-BU - Troj/Dload-BU at Sophos
...
Troj/Dloadr-BNG - Troj/Dloadr-BNG at Sophos
...
Troj/DwnLdr-HEQ - Troj/DwnLdr-HEQ at Sophos
Troj/DwnLdr-HEQ is a downloader Trojan for the Windows platform. When run
Troj/DwnLdr-HEQ attempts to silently downloads code from the internet and run them.
...
W32/Puress-B - W32/Puress-B at Sophos
W32/Puress-B copies itself to <Windows>\system\svchost.exe and
<Windows>\system\dumprep.exe. W32/Puress-B drops the file autorun.inf which is
detected as Mal/AutoInf-A. W32/Puress-B creates the registry values
HKLM\SOFTWARE\Microsoft\Windows...
JS/Dloadr-BNF - JS/Dloadr-BNF at Sophos
...
Troj/FakAlert-A - Troj/FakAlert-A at Sophos
...
Troj/Mdrop-BTN - Troj/Mdrop-BTN at Sophos
Troj/Mdrop-BTN drops and registers <System>\group32.dll which is detected as Mal/LineDLL-B.
...
Troj/Psyme-JH - Troj/Psyme-JH at Sophos
...
W32/Agent-HDQ - W32/Agent-HDQ at Sophos
...
0 writebacks [06/28/2008 04:44]
[]
permanent link
|
Virus Malware and Threat News for 20080626
Worm:W32/Agent.BTZ - Worm:W32/Agent.BTZ at F-Secure
Worm:W32/Agent.BTZ: Worms are computer programs that replicate independently by copying themselves to other
systems....
Trojan.Proscks!inf - Trojan.Proscks!inf at Norton Symantec
Trojan.Proscks!inf is a detection for the files infected with Trojan.Proscks.
...
Trojan.Proscks - Trojan.Proscks at Norton Symantec
Trojan.Proscks is a Trojan horse program that infects files and allows a remote attacker to create a Web proxy
on the compromised computer.
...
Packed.Generic.164 - Packed.Generic.164 at Norton Symantec
Packed.Generic.164 is a heuristic detection for files that may have been obfuscated or encrypted in order to
conceal them from antivirus software.
...
Packed.Generic.165 - Packed.Generic.165 at Norton Symantec
Packed.Generic.165 is a heuristic detection for files that may have been obfuscated or encrypted in order to
conceal them from antivirus software.
...
Packed.Generic.115 - Packed.Generic.115 at Norton Symantec
Packed.Generic.115 is a heuristic detection for files that may have been obfuscated or encrypted in order to
conceal them from antivirus software.
...
Packed.Generic.162 - Packed.Generic.162 at Norton Symantec
Packed.Generic.162 is a heuristic detection for files that may have been obfuscated or encrypted in order to
conceal them from antivirus software.
...
Packed.Generic.161 - Packed.Generic.161 at Norton Symantec
Packed.Generic.161 is a heuristic detection for files that may have been obfuscated or encrypted in order to
conceal them from antivirus software.
...
Packed.Generic.114 - Packed.Generic.114 at Norton Symantec
Packed.Generic.114 is a heuristic detection for files that may have been obfuscated or encrypted in order to
conceal them from antivirus software.
...
Packed.Generic.160 - Packed.Generic.160 at Norton Symantec
Packed.Generic.160 is a heuristic detection for files that may have been obfuscated or encrypted in order to
conceal them from antivirus software.
...
W32/Nuwar@MM!AF594B60 - W32/Nuwar@MM!AF594B60 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32AF594B60MD5B2E5E135A53F01C006246E2F30808479SHA13DE906583FC352C6C9F3730A869FD3431C40C933Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
W32/Nuwar@MM!C16D1D48 - W32/Nuwar@MM!C16D1D48 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32C16D1D48MD55b441950a65b2f8e2858797a1e6f7fb6SHA107BEE38B55873CC5B2A4CA23C37F8D7D98B68E42Avert®
Labs has observed the following system activities:ActivityRisk LevelModifies Memory of Other
ProcessesHighEnumerates running ProcessesMediumCr...
W32/Nuwar@MM!D853FA0C - W32/Nuwar@MM!D853FA0C at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32D853FA0CMD5B0BBEFB4913E5A7943A9BF176FE3A2A6SHA12C9A3EECF3BEC6C9F7DAF9D35EA4A554EFB7FF84Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activitie...
W32/Nuwar@MM!86CE5A16 - W32/Nuwar@MM!86CE5A16 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3286CE5A16MD5065FA1F4BABA97081120E0F6E00989E6SHA170A0BAEFDFEC3BE4673F2A7E6CC0B47DAA945DF0Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activitie...
W32/Nuwar@MM!C43DFD46 - W32/Nuwar@MM!C43DFD46 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32C43DFD46MD559EF78FD8881DB75CAC2F8C1A50AE0F1SHA1C2389717351CC6411C5A8D7716BA9E68CB8AA6ACOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
W32/Nuwar@MM!67BF895D - W32/Nuwar@MM!67BF895D at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3267BF895DMD565D545236D2E9741A03D4070A6F4F53ASHA148C240FFEFF322F8DBE3F08A5E1437AF75D2EE82Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
W32/Nuwar@MM!2AA513D5 - W32/Nuwar@MM!2AA513D5 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC322AA513D5MD56C454AD709AC51099B6F669270CBA37ASHA1D4CDBC883D138E34C226E0258B85D488F033597EOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
W32/Nuwar@MM!0389D9A5 - W32/Nuwar@MM!0389D9A5 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC320389D9A5MD53C950E8E2371189A25D37AAE50BD074DSHA122031B20DEA622CE1E57E112B393AB3BD261972COther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activitie...
W32/Nuwar@MM!0C572880 - W32/Nuwar@MM!0C572880 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC320C572880MD5466EC1FD5289F1ACB426A1BB6F7287BBSHA1ADE0D6B5633CEB653D7F497F012365FA269FDB8DOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
W32/Nuwar@MM!DCB18015 - W32/Nuwar@MM!DCB18015 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32DCB18015MD58A826D609B92FD430D1FF82526830A0ESHA15477022689B134472952056DA1BD740E620D1F66Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.generic7.ukoMicrosoftbackdoor:win32/nuwar.
gen!dTrend MicroTROJ_CNTR.F...
W32/Nuwar@MM!006E9D9A - W32/Nuwar@MM!006E9D9A at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32006E9D9AMD569D360EA2FCB6B06E4BBAAB495D8BB64SHA1F2831B3C1D7DA8D0A5BFD87F2C1A3026584B2CFCOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dTrend MicroTROJ_CNTR.FGAvert®
Labs has observed the follow...
W32/Nuwar@MM!52F8FC4A - W32/Nuwar@MM!52F8FC4A at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3252F8FC4AMD5B1A9C83B21F229F1DE03B6876623AA81SHA1C1E6268B7319D6F511D9E84417A69BD6DD419A19Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
W32/Nuwar@MM!CD19C4DA - W32/Nuwar@MM!CD19C4DA at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32CD19C4DAMD5EBE1ACD0F20037A6E670BF24736D6BA0SHA1F1B1F52E9800267A5702DAE2A3B9CF2C1AE27917Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
W32/Nuwar@MM!79F840D7 - W32/Nuwar@MM!79F840D7 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3279F840D7MD538669136D2E928F3E4B728A7C4FCBCECSHA11BB376284B2DF559C1E06AF4BC37CF270235F1A4Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activitie...
BackDoor-DKA!F6CCBBE9 - BackDoor-DKA!F6CCBBE9 at McAfee
File PropertyProperty ValueFile Namemostex~1.exeMcAfee DetectionBackDoor-DKALength18,482
bytesCRC32F6CCBBE9MD57452146CBCCB2AEA08ADF095AA08D620SHA1A38820A82AA2A931615BC4BF6F1490EF1790977FOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.generic6.uuhMicrosoftbackdoor:win32/popwin.
bNormanw32/smalldoor.avkbP...
W32/Nuwar@MM!EC260150 - W32/Nuwar@MM!EC260150 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32EC260150MD558E9AA2810FB472130C629B602C69BD7SHA109D03D9BF4D4D350DC02FE6A1E8507470825CDCFOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activitie...
W32/Nuwar@MM!3A9487E2 - W32/Nuwar@MM!3A9487E2 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC323A9487E2MD5DB50EFA2AD4F3E0271A8ED348B1020B5SHA1E89617C561DA8DBD68B0085E81518EDC286F4F84Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
W32/Nuwar@MM!2481ECDC - W32/Nuwar@MM!2481ECDC at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC322481ECDCMD54CBC8827BE044AA50B997E687182A8BBSHA19C034F2FE1B03C5D6E6F54EE1B69150D0ACBD16BOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
W32/Nuwar@MM!5D8D8C87 - W32/Nuwar@MM!5D8D8C87 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC325D8D8C87MD5F893AC11429860DEB8A932824708C9A9SHA1A8ADF29573837BCED90A5991502D2261793BEB79Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
BackDoor-AWQ!480EDB99 - BackDoor-AWQ!480EDB99 at McAfee
File PropertyProperty ValueFile Namescvhost.exeMcAfee DetectionNew Malware.dqLength396,980
bytesCRC32480EDB99MD526de4a3b5616d177a44d61c8fe2e6e5aSHA1A591F41D94DA178E2579A2834E0AD463488523A9Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)backdoor.hupigonMicrosoftvirtool:win32/delfinject.
gen!lNormanhupigon.gen139Sym...
BackDoor-AWQ.b!290DE68A - BackDoor-AWQ.b!290DE68A at McAfee
File PropertyProperty ValueFile Name135.exeMcAfee DetectionBackDoor-AWQ.bLength376,077
bytesCRC32290DE68AMD5F9DAD7F68F8DAD2718001119C15E4D88SHA132303422EB4EDC1323B4FA923657195196180A14Other Common
Detection AliasesCompany NameDetection NameNormanhupigon.gen126SymantecBackdoor.GraybirdAvert® Labs has
observed the following system a...
W32/Nuwar@MM!E0CAAED5 - W32/Nuwar@MM!E0CAAED5 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32E0CAAED5MD5CEE21BE1813114CF6A336B088B74E358SHA19570880AA4656DA64D27C79083E1784AB1FF3517Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
W32/Nuwar@MM!98FC6CA8 - W32/Nuwar@MM!98FC6CA8 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3298FC6CA8MD55824FBE4CFD921178B767A7F1E4DAAFBSHA1E19B9C6A6E410A9FCB9430CF0A13EAA37E0E5994Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activitie...
W32/Nuwar@MM!FB231FCD - W32/Nuwar@MM!FB231FCD at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32FB231FCDMD5800ddd75aab2dce5a309e6bfeef5f6b8SHA16CDB967F95C9C26B5FA958674888137A78BC403FAvert®
Labs has observed the following system activities:ActivityRisk LevelModifies Memory of Other
ProcessesHighEnumerates running ProcessesMediumCr...
W32/Nuwar@MM!ADB011D5 - W32/Nuwar@MM!ADB011D5 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32ADB011D5MD599017B78F6D8DE9B6B0906FE0B796834SHA19E9D357E29A70930800F539ACD6B02DBA42FE560Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
W32/Nuwar@MM!75C0818A - W32/Nuwar@MM!75C0818A at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3275C0818AMD54865D9761F7A50D0159668AE988EA3ABSHA140BFC239738700E027F69874C58FB50E8BB04CACOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities:A...
W32/Nuwar@MM!FB85ED47 - W32/Nuwar@MM!FB85ED47 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32FB85ED47MD511A8D0D170AB09A65B3541718E6A6EA8SHA1FB3C971E00B307B7B1D0AC696DF1D0B73A6A5647Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activitie...
W32/Nuwar@MM!BC52191C - W32/Nuwar@MM!BC52191C at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32BC52191CMD5a0179f36b6c22a74937e662fcf311229SHA1A5B045DF20ACEFB40802F71067CBAE82656BC59FAvert®
Labs has observed the following system activities:ActivityRisk LevelModifies Memory of Other
ProcessesHighEnumerates running ProcessesMediu...
PWS-OnlineGames.ad!56A02027 - PWS-OnlineGames.ad!56A02027 at McAfee
File PropertyProperty ValueFile Namezxexev~1.exeMcAfee DetectionPWS-OnlineGames.adLength19,783
bytesCRC3256A02027MD587EE89C880DC09552C0E00767E0D02FCSHA1D7600310C11A32B466E615D4295ACAF86B44EA5COther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)psw.onlinegames.autyNormanw32/suspicious_u.
genSophosMal/PackerSymantecInfo...
PWS-OnlineGames.ad!8B28FC59 - PWS-OnlineGames.ad!8B28FC59 at McAfee
File PropertyProperty ValueFile Namedh2exe~1.exeMcAfee DetectionPWS-OnlineGames.adLength22,467
bytesCRC328B28FC59MD570FE3770E75CCB6CD491269A4081CCE3SHA16A39F9E1B39D494F23904BFE8E2E527E1856CF32Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)psw.onlinegames.autyNormanw32/suspicious_u.
genSophosMal/PackerSymantecInfo...
JS_IFRAME.OY - JS_IFRAME.OY at Trend Micro
...
HTML_IFRAME.OZ - HTML_IFRAME.OZ at Trend Micro
...
Troj/FakeVir-CH - Troj/FakeVir-CH at Sophos
...
Troj/FakeVir-CI - Troj/FakeVir-CI at Sophos
Troj/FakeVir-CI is a Trojan for the Windows platform. When run
Troj/FakeVir-CI gives fake reports of malware being present on the system and includes functionality to
download code from the internet.
...
Troj/Hupigo-AU - Troj/Hupigo-AU at Sophos
Troj/Hupigo-AU is a backdoor Trojan for the Windows platform. When run
Troj/Hupigo-AU copies itself to <System>\IEXPLQRE.exe and creates the file <System>\SVKP.SYS. The
file SVKP.SYS is not malicious and is registered as a system service with registry entries created under:
...
Troj/Agent-HDL - Troj/Agent-HDL at Sophos
...
Troj/Agent-HDM - Troj/Agent-HDM at Sophos
...
Troj/Bckdr-QOC - Troj/Bckdr-QOC at Sophos
...
Troj/LdPinch-RW - Troj/LdPinch-RW at Sophos
...
Troj/FakeVir-CG - Troj/FakeVir-CG at Sophos
Troj/FakeVir-CG pretends to scan the computer and will find non-existant infections. The user is
prompted to pay a license fee before Troj/FakeVir-CG pretends to clean up the threats.
Troj/FakeVir-CG creates the registry values HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
...
Troj/Mdrop-BTM - Troj/Mdrop-BTM at Sophos
Troj/Mdrop-BTM copies itself to <System>\poo.exe. Troj/Mdrop-BTM
drops and registers <Windows>\Debug\poo32.dl which is detected as Mal/LineDLL-B.
...
0 writebacks [06/27/2008 04:49]
[]
permanent link
|
Virus Malware and Threat News for 20080625
OSX.Klog.A - OSX.Klog.A at Norton Symantec
OSX.Klog.A is a Trojan horse that attempts to record keystrokes from the compromised computer.
...
W32/Nuwar@MM!67F7D36A - W32/Nuwar@MM!67F7D36A at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3267F7D36AMD5D5B9CDE2F9635C5AD661CD7CB7F3286DSHA1133C855C6C80EE63F9A8C506BFE8C3F351550EB5Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DTrend Micr...
W32/Autorun.worm.g!09CAF0E2 - W32/Autorun.worm.g!09CAF0E2 at McAfee
File PropertyProperty ValueFile Name---___~1.exeMcAfee DetectionW32/Autorun.worm.gLength272,800
bytesCRC3209CAF0E2MD54E006C3C6EAB6813ACA76233523B9457SHA12367E9117420149231F3377773B69D79360615F7Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)autoit.caSymantecW32.SillyFDCAvert® Labs has
observed the following sy...
W32/Azero.a!096A859B - W32/Azero.a!096A859B at McAfee
File PropertyProperty ValueFile Namedumpcap.exeMcAfee DetectionW32/Azero.aLength293,762
bytesCRC32096A859BMD5390242325d1668b6149346266dd9db02SHA186A4A1233499858DC07EED6F0F8639A659D83328Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.generic7.guhMicrosoftvirus:win32/azero.
aNormanw32/dloader.gghfSophosW3...
W32/Azero.a!65371947 - W32/Azero.a!65371947 at McAfee
File PropertyProperty ValueFile Name7z.exeMcAfee DetectionW32/Azero.aLength222,532
bytesCRC3265371947MD5c9307b7465406556f7f5e78243e950aeSHA1F3931A9629A7B3C75E7E88B50469B7C90F661BC6Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.generic7.guhMicrosoftvirus:win32/azero.
aNormanw32/dloader.gghfSophosW32/Aze...
W32/Nuwar@MM!A575F2E7 - W32/Nuwar@MM!A575F2E7 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32A575F2E7MD5628ACDF347217964F54088A7FB20E960SHA1DF30414BEF9BB3DC781E37CBB424C22DB7F6C6EBOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DTrend M...
PWS-Banker.gen.i!17AFDD8D - PWS-Banker.gen.i!17AFDD8D at McAfee
File PropertyProperty ValueFile Namenetsvcs.exeMcAfee DetectionPWS-Banker.gen.iLength474,112
bytesCRC3217AFDD8DMD58cf2341110f9d312233daad0f77c6ddfSHA1CC55C593778FFA822C2372FCEBA3C34A049DF323Other Common
Detection AliasesCompany NameDetection NameNormanw32/banker.cpvqPandaW32/Sdbot.LGL.wormSymantecTrojan
HorseAvert® Labs has observ...
W32/Nuwar@MM!701C4B77 - W32/Nuwar@MM!701C4B77 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32701C4B77MD5227C13CD9FCEEAA17A9CC8C428490260SHA11748317556BA21AD917BC4A83B9F43F22FD7050FOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DTrend Micr...
W32/Nuwar@MM!2D80F376 - W32/Nuwar@MM!2D80F376 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC322D80F376MD52595DF77D5CF3EB739BB9FFF75E3E84DSHA1A19534998BD25C4ACEA9E18DEA7DDA882F7CC448Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DTrend M...
W32/Nuwar@MM!92999A34 - W32/Nuwar@MM!92999A34 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC3292999A34MD54DAA47875C49EE1B4FD4299D5C9BFB07SHA14FCE55188592FEEE5AE33A539AB54BF5635D3DC0Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DTrend Micr...
W32/Nuwar@MM!3A8E7FA0 - W32/Nuwar@MM!3A8E7FA0 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC323A8E7FA0MD547CEB52AC81F2609963964FB6B077B2DSHA174243069D80E4433B7C64A7CDBAD274A9FE17317Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DTrend M...
W32/Nuwar@MM!4CB46A23 - W32/Nuwar@MM!4CB46A23 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC324CB46A23MD5FB33F767E6A6CC0A21805A1D6881DA88SHA137085100E2407FF471DB27640FBD351E0CE7238FOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DTrend Micr...
PWS-LegMir.gen.h.dll!5485BB26 - PWS-LegMir.gen.h.dll!5485BB26 at McAfee
File PropertyProperty ValueFile Named8.exeMcAfee DetectionPWS-LegMir.gen.h.dllLength16,851
bytesCRC325485BB26MD5F95EB07B700A77E7AB6FA2B2DC41DAF0SHA1F6C057FE7A02A39C5F8E4C718909580A7FCB3B7COther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)psw.onlinegames.asdbNormanw32/suspicious_u.
genSymantecInfostealer.GampassTrend...
PWS-OnlineGames.as!A687680D - PWS-OnlineGames.as!A687680D at McAfee
File PropertyProperty ValueFile Named5.exeMcAfee DetectionPWS-OnlineGames.asLength22,395
bytesCRC32A687680DMD50A3523E28F6C91B6DBCF4CEBED59235DSHA1ADB94BC577F054ACFD0A0B08E43BADCC28E94CA9Other Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTROJ_DLOADER....
PWS-LegMir.gen.h.dll!687F1193 - PWS-LegMir.gen.h.dll!687F1193 at McAfee
File PropertyProperty ValueFile Named34.exeMcAfee DetectionPWS-LegMir.gen.h.dllLength14,831
bytesCRC32687F1193MD51128CE5B816731CF9A576A249D8636AFSHA1023D35923AB2F7FFCDD65E9C9D03D4B976DA2875Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)generic10.adqmNormanw32/suspicious_u.
genSymantecInfostealer.GampassTrend Micr...
PWS-LegMir.gen.h.dll!2C410281 - PWS-LegMir.gen.h.dll!2C410281 at McAfee
File PropertyProperty ValueFile Named27.exeMcAfee DetectionPWS-LegMir.gen.h.dllLength15,309
bytesCRC322C410281MD55978EC86734EED74FC2E2E05594B7AA5SHA1EEACFDCB94D5DEED544F59EF44424B662EB3D895Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)generic10.afnmNormanw32/suspicious_u.
genSymantecInfostealer.GampassTrend Micr...
PWS-QQGame!3C925D85 - PWS-QQGame!3C925D85 at McAfee
File PropertyProperty ValueFile Named29.exeMcAfee DetectionPWS-QQGameLength30,830
bytesCRC323C925D85MD521883551E9FAE0EDC29B192D14C989DCSHA1B482AD7033E9E11239562AC79A786B4A8D7B5E21Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)psw.generic6.pfpNormanw32/malware.
czxbSymantecInfostealer.QphookAvert® Labs has obse...
PWS-LegMir.gen.h.dll!C81DD666 - PWS-LegMir.gen.h.dll!C81DD666 at McAfee
File PropertyProperty ValueFile Named2.exeMcAfee DetectionPWS-LegMir.gen.h.dllLength15,914
bytesCRC32C81DD666MD573CCD1DA33E06D33C24019C4C7A037D0SHA1AB391ADA3C5D7D8B228A78782CCB4BBB1850FB00Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)generic10.achcNormanw32/suspicious_u.
genSymantecInfostealer.GampassTrend Micro...
PWS-OnlineGames.ax!FE1D2273 - PWS-OnlineGames.ax!FE1D2273 at McAfee
File PropertyProperty ValueFile Named11.exeMcAfee DetectionPWS-OnlineGames.axLength10,100
bytesCRC32FE1D2273MD515805849154BC0AEBB64038E627D1647SHA19875FBEF06BAC4FC22F628EE0248313506D20F53Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)generic10.allxNormanw32/suspicious_u.
genSophosMal/PackerSymantecInfostealerTren...
PWS-LegMir.gen.h.dll!4002C8E1 - PWS-LegMir.gen.h.dll!4002C8E1 at McAfee
File PropertyProperty ValueFile Named16.exeMcAfee DetectionPWS-LegMir.gen.h.dllLength15,780
bytesCRC324002C8E1MD57BC12AD5953D43CAAB20540DAC95D3CASHA1DFEA958C537379F86038C02B006274AF4CE1E6C0Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)generic10.aiscNormanw32/suspicious_u.
genSymantecInfostealer.GampassTrend Micr...
W32/Nuwar@MM!DFC33D90 - W32/Nuwar@MM!DFC33D90 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC32DFC33D90MD587B85F1B0E924345ECD1E43466DF4FC5SHA1D671526C3A0A8F636BD4E757293540C7240B416AOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DTrend Micr...
W32/Nuwar@MM!A3D5B666 - W32/Nuwar@MM!A3D5B666 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32A3D5B666MD54F261A3B20266927E1B7CCD7FDFBB4E8SHA1425B974D20B1AE19599EB4F23A8081E31B4FEE7FOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DTrend M...
W32/Nuwar@MM!4D83A53D - W32/Nuwar@MM!4D83A53D at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC324D83A53DMD5A2B08536EB17778146F26218C517D880SHA11BFA51324E0ECE54FCBE1DEFEE7198A45E0DDE2BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DTrend Micr...
W32/Nuwar@MM!930E14B4 - W32/Nuwar@MM!930E14B4 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32930E14B4MD539463230A281A192D36E2B53F5C2CD85SHA1EE467FB4A84EAA9677835FC6D1D58271BE68D995Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DTrend Micr...
W32/Nuwar@MM!2756D434 - W32/Nuwar@MM!2756D434 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC322756D434MD55AF71579CE6BBA39CF53D724FACA82BFSHA1D43A9B489105DDFB41B2131BE7AD78F8FF843E59Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DTrend M...
W32/Nuwar@MM!BCBBAC58 - W32/Nuwar@MM!BCBBAC58 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC32BCBBAC58MD5C334D03445974F3542CBE5C884C6E85FSHA1DED6D71A723E0498E9E6C782258C15738099A9E6Other Common
Detection AliasesCompany NameDetection NameSymantecTrojan.Peacomm.DTrend MicroWORM_NUWAR.ZIAvert® Labs has
observed the following sys...
W32/Nuwar@MM!7FDAF2C8 - W32/Nuwar@MM!7FDAF2C8 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC327FDAF2C8MD57BB859038E92F7DB2118F928CE638709SHA18C9AFDF5CECB67A4BCBAA64AC5FC77ADD500F49BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DTrend M...
W32/Nuwar@MM!57C68D01 - W32/Nuwar@MM!57C68D01 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC3257C68D01MD520B8CDE3EA6F04DED642AE439F10841BSHA1111973CA1DE5BA62AF2620DABCD96E6D23ADA76FOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DTrend Micr...
HTool-T2W - HTool-T2W at McAfee
-- Update June 25, 2008 --The risk assessment of this threat has been updated to Low-Profiled due to media
attention at:http://www.theregister.co.uk/2008/06/18/trojan_worm_toolkit/This Tool-Kit is used by an attacker
to convert any executable into an autorun worm, which can spread through removable devices, by implementing an
“AutoRu...
TROJ_PIDIEF.AC - TROJ_PIDIEF.AC at Trend Micro
This Trojan may be downloaded from a certain remote site. It is a specially crafted .PDF file that exploits a
known vulnerability in Acrobat Reader 8.1.2 or earlier versions. This vulnerability causes the application to
crash and could potentially allow an attacker to take control of the affected system. More information about
the s...
Mal/Behav-103 - Mal/Behav-103 at Sophos
Mal/Behav-103 is a malicious program.
...
Troj/Dloadr-BNE - Troj/Dloadr-BNE at Sophos
...
Troj/Fakewa-Gen - Troj/Fakewa-Gen at Sophos
Troj/Fakewa-Gen is a family of Trojans for the Windows platform that pretends to be software finding threats
on the infected computer.
...
Troj/Keygen-CC - Troj/Keygen-CC at Sophos
...
W32/Autorun-FQ - W32/Autorun-FQ at Sophos
W32/Autorun-FQ copies itself to <system>\system.exe.
W32/Autorun-FQ drops the file autorun.inf which is detected as Mal/AutoInf-A.
...
Exp/MS06055-B - Exp/MS06055-B at Sophos
Exp/MS06055-B attempts to exploit a vulnerability in Microsoft VGX.Dll that could lead to
arbitrary code execution when a user browses a malicious web page or opens a malicious email.
...
Troj/Agent-HDE - Troj/Agent-HDE at Sophos
Troj/Agent-HDE is a Trojan for the Windows platform. When Troj/Agent-HDE is
installed the following files are created: <Temp>\<random letters>.dll
<System>\<random letters>.dIl These files are also detected as
Troj/Agen...
Troj/Agent-HDI - Troj/Agent-HDI at Sophos
...
Troj/FakeAle-CP - Troj/FakeAle-CP at Sophos
...
W32/Autorun-FP - W32/Autorun-FP at Sophos
...
0 writebacks [06/26/2008 04:48]
[]
permanent link
|
Virus Malware and Threat News for 20080624
Trojan-Dropper:W32/VB.ME - Trojan-Dropper:W32/VB.ME at F-Secure
Trojan-Dropper.Win32.VB.me drops multiple copies of itself to saved download folders of known Peer-to-Peer
applications....
OSX.Saprilt.C - OSX.Saprilt.C at Norton Symantec
OSX.Saprilt.C is a Trojan horse that opens a back door on the compromised computer.
...
FakeAlert-AO - FakeAlert-AO at McAfee
-- Update June 24, 2008 --The risk assessment of this threat has been updated to Low-Profiled due to media
attention at:http://www.theregister.co.uk/2008/06/24/scareware_knows_your_username/When run this trojan
will run a scan and generate false detection alert messages and warnings like the one shown in
the below.Syst...
W32/Autorun.worm.g!0BE8F32E - W32/Autorun.worm.g!0BE8F32E at McAfee
When executed, this worm drops the following files:%System%\temp.exe [Copy of Worm]%Temp%\~DsNiu!.bAt [Batch
file to delete the worm, from where the worm was executed]The worm then drops a copy of itself along with an
AutoRun.inf configuration file in all removable devices, the root of all fixed drives and the system folders.
Note:%Sy...
BKDR_POKERSTLR.A - BKDR_POKERSTLR.A at Trend Micro
This backdoor may be installed manually by a user. It may be downloaded unknowingly by a user when visiting
malicious Web sites.Upon execution, it asks for an administrator’s password after displaying a dialog box.
This backdoor is capable of sending the user name, password hash and the IP address of the Mac to a remote
server. It is...
0 writebacks [06/25/2008 04:48]
[]
permanent link
|
Virus Malware and Threat News for 20080623
Bloodhound.Exploit.193 - Bloodhound.Exploit.193 at Norton Symantec
Bloodhound.Exploit.193 is a heuristic detection for files attempting to exploit the Adobe Flash Player
Multimedia File Remote Buffer Overflow (BID 28695).
...
Packed.Generic.104 - Packed.Generic.104 at Norton Symantec
Packed.Generic.104 is a heuristic detection for files that may have been obfuscated or encrypted in order to
conceal them from antivirus software.
...
Packed.Generic.96 - Packed.Generic.96 at Norton Symantec
Packed.Generic.96 is a heuristic detection for files that may have been obfuscated or encrypted in order to
conceal them from antivirus software.
...
Packed.Generic.102 - Packed.Generic.102 at Norton Symantec
Packed.Generic.102 is a heuristic detection for files that may have been obfuscated or encrypted in order to
conceal them from antivirus software.
...
Packed.Generic.94 - Packed.Generic.94 at Norton Symantec
Packed.Generic.94 is a heuristic detection for files that may have been obfuscated or encrypted in order to
conceal them from antivirus software.
...
W32/Nuwar@MM!40513DC2 - W32/Nuwar@MM!40513DC2 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC3240513DC2MD5EFF711D510E5FB9AE310A753033D42B2SHA1F4B695474BBD27700F658A9315178B9943CF1FC6Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DTrend Micr...
W32/Nuwar@MM!BDAE0591 - W32/Nuwar@MM!BDAE0591 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC32BDAE0591MD52DC3F3E721BFF6F4732180667C73E228SHA1E466BD660E71458EF51CDFB478CA9F3473C16DBCOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DTrend M...
W32/Nuwar@MM!5DBDB0C5 - W32/Nuwar@MM!5DBDB0C5 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC325DBDB0C5MD54AEE11E62764225A1C1DA8FD75EE8AA4SHA1BB5B0F0F0AC32F3A23D807E2884F43EFBA43FDC6Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DTrend Micr...
W32/Nuwar@MM!F94B53EF - W32/Nuwar@MM!F94B53EF at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32F94B53EFMD530D21DFB3CA3285CE42DFD770E7B048BSHA14339B92D263BB79B64631FFF67CC4DD8F0C1B87EOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DTrend Micr...
W32/Nuwar@MM!ABF31807 - W32/Nuwar@MM!ABF31807 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32ABF31807MD5D8935320C89BA59FE0CCC3749E7C6A3ESHA1078015B4C430536191BB49B19C373B39B57A6A2DOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DTrend M...
W32/Nuwar@MM!00CBFFB6 - W32/Nuwar@MM!00CBFFB6 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC3200CBFFB6MD52E96F2DE3740E6F9F05E91370321B466SHA147CFE77FC873D9A2915708531C6491753B9898EDOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DTrend Micr...
W32/Nuwar@MM!FEF7FE7F - W32/Nuwar@MM!FEF7FE7F at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32FEF7FE7FMD571665f281c5d4c1218e99f20f8398c42SHA10007F312EF16930115D26270C9C25398CB9086BAOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DTrend Micr...
BKDR_HOVDY.A - BKDR_HOVDY.A at Trend Micro
This backdoor may be installed manually by a user. It may be downloaded unknowingly by a user when visiting
malicious Web sites.The backdoor runs hidden on the system. It allows a malicious user complete remote access
to the system. It takes advantage of the vulnerability in Apple Remote Desktop Agent (ARD) to allow a user to
escalat...
Mal/EncPk-EC - Mal/EncPk-EC at Sophos
Mal/EncPk-EC is a malicious packed executable file.
...
Mal/VBSysmm-A - Mal/VBSysmm-A at Sophos
Mal/VBSysmm-A is a family of worms that spread using removable media.
Mal/VBSysmm-A worms typically create the following registry entry:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Sys...
Troj/Dloadr-BNA - Troj/Dloadr-BNA at Sophos
...
Troj/Rech-Rar - Troj/Rech-Rar at Sophos
Troj/Rech-Rar is a family of rar files that contain malware. Members of
Troj/Rech-Zip are usually sent in German spam pretending to relate to a receipt calculation for an online
transation....
W32/MarioF-B - W32/MarioF-B at Sophos
...
W32/VB-EAD - W32/VB-EAD at Sophos
W32/VB-EAD drops and registers the file <System>\mswinsck.ocx which is a clean Microsoft
ActiveX control. W32/VB-EAD copies itself to <Windows>\systemm4.exe
W32/VB-EAD creates the following files: <Root>\boot.vbs - also detected as
W32/VB-EAD ...
Mal/Agent-K - Mal/Agent-K at Sophos
...
Mal/Dbot-D - Mal/Dbot-D at Sophos
Mal/Dbot-D is a backdoor Trojan which allows a remote intruder to gain access and control over the
computer. When first run Mal/Dbot-D copies itself to <System>\system32.exe and
creates the following files: <Current Folder>\Server.exe
<System>\sys....
0 writebacks [06/24/2008 04:48]
[]
permanent link
|
Virus Malware and Threat News for 20080622
Spyware.NokKernel - Spyware.NokKernel at Norton Symantec
BehaviorSpyware.NokKernel is a spyware program that gathers personal information from the computer.
...
W32/Nuwar@MM!ABDD894A - W32/Nuwar@MM!ABDD894A at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC32ABDD894AMD5c1b0da5e87021dc003f3f1bc7a7d4987SHA18B0832742162F28B68CBB789D319BE11840C9C2DOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!D445F622 - W32/Nuwar@MM!D445F622 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC32D445F622MD5647d9c4ac3d46221f1c44eff9c657a11SHA1AD6FBBD3EF44381547ECBA794D3366A2B65CAEBBOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&r...
W32/Nuwar@MM!58555893 - W32/Nuwar@MM!58555893 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC3258555893MD5aa0651c5d2a42b7b16ea210f287d0a11SHA19F124A3C75220C98832476EAA19F42CA1E70C5D2Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&r...
W32/Nuwar@MM!BF2DD941 - W32/Nuwar@MM!BF2DD941 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC32BF2DD941MD5c4cf30a979f7dd93be7eccf0a7faba6aSHA1D77127F32245C3666C02F9147BB8BCCB6175F6ABOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!1BC21B2E - W32/Nuwar@MM!1BC21B2E at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC321BC21B2EMD5b3779bbde0df6b084544c492718c1ec8SHA15FF0F454E6A0EEFDC4B715A8E0345E2400734137Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!D6A7CD77 - W32/Nuwar@MM!D6A7CD77 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC32D6A7CD77MD52419ef7d79dd9382bb860009532faa60SHA12D67CAD2B577BA4D803E35314FD1432B8D7ED4A3Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&r...
W32/Nuwar@MM!8B2B7F4A - W32/Nuwar@MM!8B2B7F4A at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC328B2B7F4AMD5490f4dfc46569518d68491c18a6b7c1aSHA1DE972E8F75D70A88A58EEC18424A2C1E6341B548Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uSymantecTrojan.Peacomm.DAvert® Labs
has observed the following ...
W32/Nuwar@MM!167A41A1 - W32/Nuwar@MM!167A41A1 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32167A41A1MD58dc301be3dbaf8cf29349f7ff44fd97fSHA1B16F90690D8001ACD25D3229C9B1D033635914F0Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!E268D482 - W32/Nuwar@MM!E268D482 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC32E268D482MD500b804c1d94f63c6134763a3199c7dc6SHA12AC49362D6C2BAE9826EFA3CA25E7786D5E15320Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!F35300F5 - W32/Nuwar@MM!F35300F5 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32F35300F5MD59e0002889b823ce7fa23a3967e5173b6SHA1C7218D94321BC0F43C58144F1E91A8D8D02AEE71Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!E0FE975D - W32/Nuwar@MM!E0FE975D at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32E0FE975DMD5983426570eeac6603294340164c0ff3eSHA16B59B37BCE8EC5DF7E50885B4D451C213CE19D51Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!07CFB975 - W32/Nuwar@MM!07CFB975 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC3207CFB975MD55fc5c746c3e2b3bc9de1ab12942b20b4SHA13571487E3DB9E0970E860A8ED6DE55980CE43CECOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!DE7CCDF8 - W32/Nuwar@MM!DE7CCDF8 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32DE7CCDF8MD5199465158ce387c2fdf6e00db4cff884SHA199147188E6EA1D79EB5AC619AD602CCEFF8D474BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&r...
W32/Nuwar@MM!B916D1F4 - W32/Nuwar@MM!B916D1F4 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC32B916D1F4MD562311bb927aa7139d616a6eed5ab890fSHA1003DECB99175CD2C2598158C13C9866ED57BC4B6Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&r...
W32/Nuwar@MM!8C729FEC - W32/Nuwar@MM!8C729FEC at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC328C729FECMD52c568923f27ad43fe9ee723acd116ac0SHA1E8F0FFB855604D239E4AB46C2F810FD6766F97E9Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!8F3F78B1 - W32/Nuwar@MM!8F3F78B1 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC328F3F78B1MD53977399e34a804c46f5d56fb75576d6cSHA11543F1A50A249E30926CC91526C35EAB515F99F1Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!EA4A8EDD - W32/Nuwar@MM!EA4A8EDD at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC32EA4A8EDDMD58906042b8a9e4018d47c552d246d5bf5SHA1EB5F0C396D6AE5C14B80099A825B787F218232C5Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!35C80C5E - W32/Nuwar@MM!35C80C5E at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC3235C80C5EMD59f5aac874600808c3c9627cc82a3035dSHA1CA69F74E4E0B699B4EAEF7CCC6F06602494F161DOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!EF0E7089 - W32/Nuwar@MM!EF0E7089 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC32EF0E7089MD5de061ea4bfbbdabb05241e659794da6bSHA1740DBE3FA0F7B8AB4F021167C40B12B7A1FE199COther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!6FE61C51 - W32/Nuwar@MM!6FE61C51 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC326FE61C51MD5f8bf26844b6323203fbcfb75c1fb9debSHA1935BDC36E71C09567D4713E4345DC576313C41EAOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!C8C7A73B - W32/Nuwar@MM!C8C7A73B at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC32C8C7A73BMD58bf34fbfce9c275b8224f4deaa417df7SHA17B1588913625CC77C90D797E2D35F9ED44964516Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&r...
W32/Nuwar@MM!49058BD7 - W32/Nuwar@MM!49058BD7 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC3249058BD7MD5b7115e3257923b60d217954ef228802cSHA14C187F28420CE9EB4BF9F75BC39F210E1F171060Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!E22A99B8 - W32/Nuwar@MM!E22A99B8 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC32E22A99B8MD5ea43133f8395872effb879e5c292ab78SHA1D97A7264142225A9961FFE857677CCCD475D70A4Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!74EE2FAB - W32/Nuwar@MM!74EE2FAB at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC3274EE2FABMD559eb69ae9018b6086ee10166049f3429SHA1BF85C6C1D2EBEEE0266DAC1FD619BFB68DE4966AOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!8333F677 - W32/Nuwar@MM!8333F677 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC328333F677MD5f144a3ce04b2e7e61e0d1e7efce0ee54SHA14DB573637A5A9852EE3DAAC8658D726363480AF0Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&r...
W32/Nuwar@MM!49A96E59 - W32/Nuwar@MM!49A96E59 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC3249A96E59MD53f645d3fdca00d0fc9caef6e2543e0d4SHA1509BAB60DCC9CD7F138EEE6CE85FEAE21DA36953Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!982A3117 - W32/Nuwar@MM!982A3117 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC32982A3117MD55e55de807288a5af539d908cc07ec55cSHA1D49BD4ED3CE2F8CE0D5D56A4AE93E6F1002779EEOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&r...
W32/Nuwar@MM!79AC7C48 - W32/Nuwar@MM!79AC7C48 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3279AC7C48MD5570361f4c0f7ca4eec6a88b8307a6d7aSHA1F078EAF89508F2C90E9869505F0395F988039EECOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!44E3706B - W32/Nuwar@MM!44E3706B at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC3244E3706BMD538ea4d15bede28dc533f68848fb0ce37SHA1BEC2210AAEE1F14F204E97E990F4D2A96945213DOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!8FF4CBAF - W32/Nuwar@MM!8FF4CBAF at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC328FF4CBAFMD5e749e6b2e61a8c41155ee7e786c62428SHA1C235E53F51F6CC9307C31F011CEBD4F242F70667Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
Troj/Agent-HCY - Troj/Agent-HCY at Sophos
...
Troj/Bdoor-ALY - Troj/Bdoor-ALY at Sophos
...
Troj/FakeAle-CL - Troj/FakeAle-CL at Sophos
...
Troj/Mdrop-BTI - Troj/Mdrop-BTI at Sophos
Troj/Mdrop-BTI is a Trojan for the Windows platform. When first run
Troj/Mdrop-BTI copies itself to <System>\avpo.exe and creates the following files, all of which are also
detected as Troj/Mdrop-BTI: <Temp>\88.sys <Temp>\jvwx2.dll
<S...
Troj/Agent-HCX - Troj/Agent-HCX at Sophos
...
Troj/Drop-AD - Troj/Drop-AD at Sophos
Troj/Drop-AD is a Trojan dropper for the Windows platform. When run the
Trojan will drop another file to the <Temp> folder and run it.
...
Troj/Drop-AE - Troj/Drop-AE at Sophos
Troj/Drop-AE is a Trojan dropper for the Windows platform. When run the
Trojan will drop and run another component detected by Sophos as
Mal/EncPk-DA...
Troj/Lingosky-D - Troj/Lingosky-D at Sophos
Troj/Lingosky-D is a Trojan for the Windows platform. Troj/Lingosky-D
includes functionality to access the internet and communicate with a remote server via HTTP.
When Troj/Lingosky-D is installed the following files are created:
<System>\<rando...
XM97/Commo-A - XM97/Commo-A at Sophos
...
0 writebacks [06/23/2008 04:48]
[]
permanent link
|
Virus Malware and Threat News for 20080621
W32/Nuwar@MM!F42290E0 - W32/Nuwar@MM!F42290E0 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC32F42290E0MD58ffc8cbc0e0a8217dc3c3ac815afdedcSHA179521CA34A38BA716BA576B1A245A7CBEAFA9267Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!10C4EAD3 - W32/Nuwar@MM!10C4EAD3 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC3210C4EAD3MD547842fc21214528dd36ed89c8ef18607SHA190654FD8596CD7393A7C75AB5CBEEC3A874E0953Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!1C52B73C - W32/Nuwar@MM!1C52B73C at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC321C52B73CMD55dff8dbf561f3a240462b743973506fbSHA1FB1D60973D1A306CB0FC8B5063154418252BF913Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!88B2A6EE - W32/Nuwar@MM!88B2A6EE at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC3288B2A6EEMD555546e58cbf9e9d962694fb6ebe8c85aSHA1A552D2F13CB7C5AE752386E91F903F15FB41D26DOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&r...
W32/Nuwar@MM!FF671119 - W32/Nuwar@MM!FF671119 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32FF671119MD5b8539c6897611fdcb24690fcedf33774SHA12A5965F47E7DFB3EB3D0D9993C67B10CAAFAC6D1Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&r...
W32/Nuwar@MM!ABE2FD99 - W32/Nuwar@MM!ABE2FD99 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32ABE2FD99MD5aff1c2e75c7fb8d9b1725b30645db09dSHA134FD862D98CB30A7025098D4495B12069DA2A3C0Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!CD0861E3 - W32/Nuwar@MM!CD0861E3 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32CD0861E3MD5963d5a6125e19446cc9f4477deb820a7SHA175A532110864B43F6C5F1622307E1CCDAE6ADCA8Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
Troj/Keygen-CB - Troj/Keygen-CB at Sophos
Troj/Keygen-CB is a Trojan for the Windows platform. Registry entries are
created under:
HKCU\Software\HS\Keygen...
Troj/Psyme-JG - Troj/Psyme-JG at Sophos
...
W32/Rbot-GWY - W32/Rbot-GWY at Sophos
...
W32/VB-EAC - W32/VB-EAC at Sophos
W32/VB-EAC is a worm for the Windows platform. When first run W32/VB-EAC
copies itself to: <Root>\nod32 v3 keygen.exe <Root>\test.exe
and creates the file <Root>\autorun.inf. This file can simply be deleted.
...
0 writebacks [06/22/2008 04:50]
[]
permanent link
|
Virus Malware and Threat News for 20080620
OSX.Astht.B - OSX.Astht.B at Norton Symantec
OSX.Astht.B is a Trojan horse that installs itself on the compromised computer by exploiting a privilege
escalation vulnerability and also opens a back door.
...
OSX.Astht.A - OSX.Astht.A at Norton Symantec
OSX.Astht.A is a Trojan horse that opens a back door on the compromised computer.
...
W32.Ircbrute - W32.Ircbrute at Norton Symantec
W32.Ircbrute is a worm that spreads by copying itself to removable drives. It also opens a back door on the
compromised computer.
...
W32/Nuwar@MM!6BE02A0D - W32/Nuwar@MM!6BE02A0D at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC326BE02A0DMD58b57769055f4107a34674c442e5daaccSHA11863E7AC3AF2C867A86CC3BEE6EBEC0589BE7C45Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!A865115B - W32/Nuwar@MM!A865115B at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC32A865115BMD587c7afa58297a1ff21ac4ace9396512cSHA1C339F54A9F5A96AEA9DF180620684531F5234098Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&r...
W32/Nuwar@MM!43A88C18 - W32/Nuwar@MM!43A88C18 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3243A88C18MD5341b7397bb23aa13a26b824bcde44638SHA193E4D1C7D8EC902E27D4E8D8725C10B44499FA7DOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uSymantecTrojan.Peacomm.DAvert® Labs
has observed the following sys...
W32/Nuwar@MM!0A04DFF7 - W32/Nuwar@MM!0A04DFF7 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC320A04DFF7MD56a4c74392e63813c3deb6f8c19a1062fSHA1409956C6720CE11DCDF3135FB8773C37A0E78456Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!D9FD515C - W32/Nuwar@MM!D9FD515C at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC32D9FD515CMD51c376967a5183a051e255021c6bbc0fbSHA1910019B7D3F733BAC0BFFF8C37A8B605C1B3B333Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&r...
W32/Nuwar@MM!71948B12 - W32/Nuwar@MM!71948B12 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC3271948B12MD5cbe7209a5a971adfd9ecdfe183312525SHA1282859145C8F546EA58A7FE5E8CC31F0CAC712FDOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!BCB46DFB - W32/Nuwar@MM!BCB46DFB at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC32BCB46DFBMD5756687a39a27046ab8dede8524d18b16SHA14C96CB8A506E5E70F79063EDA27F04827D34AA47Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&r...
W32/Nuwar@MM!596A3977 - W32/Nuwar@MM!596A3977 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC32596A3977MD5951a154c477e5b8efe6674093ce1bbacSHA1F4A251530F4EF9B121C51C7F87D585DEA906280EOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!1302974F - W32/Nuwar@MM!1302974F at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC321302974FMD517ddc861d634b939dfd6314bc531949fSHA10CB0B1F0A6A9C0F55F293B169DF2D5F26E5E91ACOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uSymantecTrojan.Peacomm.DAvert® Labs
has observed the following ...
W32/Nuwar@MM!AC62C8B5 - W32/Nuwar@MM!AC62C8B5 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32AC62C8B5MD561b17466741aa08ef17223d57e5285c3SHA13F6C1AF01732DF9555F679873B8C5CF1FF381A28Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&r...
W32/Nuwar@MM!737101C0 - W32/Nuwar@MM!737101C0 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC32737101C0MD5fc1a83c82f4198e956bd44416e6e53d4SHA17F42C82936B4552E340174C9DD5C18CC5AB76CB7Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!C4F9D78E - W32/Nuwar@MM!C4F9D78E at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32C4F9D78EMD566d6519fe3d634e4f4c0db719d4dc63fSHA1C4613DB5D266F42B5E15090FAA920AB98F1D8816Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uSymantecTrojan.Peacomm.DAvert® Labs
has observed the following sys...
W32/Nuwar@MM!97C149B3 - W32/Nuwar@MM!97C149B3 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC3297C149B3MD5d2ddb1b616a63b60f437f935f830cf34SHA150661597BD61D45A093289479A1E3C69D05B168EOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uSymantecTrojan.Peacomm.DAvert® Labs
has observed the following sys...
W32/Nuwar@MM!C6B12E1E - W32/Nuwar@MM!C6B12E1E at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC32C6B12E1EMD5de288062e7099cbc04372edd0820eca5SHA17E3A350C6D995AE36F0C5048839E09DA31213141Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uSymantecTrojan.Peacomm.DAvert® Labs
has observed the following sys...
W32/Nuwar@MM!3D603260 - W32/Nuwar@MM!3D603260 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC323D603260MD5c29eb073473739962fc10d46d13cdde5SHA1A07F0304569D0FA949379B9F7D84389D2B0B1F9BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&r...
W32/Nuwar@MM!EB66BA26 - W32/Nuwar@MM!EB66BA26 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32EB66BA26MD552fe5efa67270ef30d1968fc6ce4f919SHA19B815E55252044818751635BC016B87EEBA0ADDCOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!4F53ADE7 - W32/Nuwar@MM!4F53ADE7 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC324F53ADE7MD53a98853601ef11d91e770f121fc4feb3SHA1C76D3ACAB1A83A7E28D07D0F4192E62D9BCF1A20Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uSymantecTrojan.Peacomm.DAvert® Labs
has observed the following sys...
W32/Nuwar@MM!62A76929 - W32/Nuwar@MM!62A76929 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC3262A76929MD53db7645f39c544ab1923ea8a7e45bc19SHA10BA50996DB4BB502603EA09A73A4C42CABCD1233Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!B080DB06 - W32/Nuwar@MM!B080DB06 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC32B080DB06MD59A3B9BAAD69B6E8343753DC14F41E246SHA1B365FB1F8A7F7DD4A1E6F890625179B1D45CC26FOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dAvert® Labs has observed the fo...
W32/Nuwar@MM!259C716C - W32/Nuwar@MM!259C716C at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32259C716CMD5d71aff71b529a704018d5436351d5119SHA18096F134FB109CF8BB259E20CCE5A2545543B570Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!6817BD46 - W32/Nuwar@MM!6817BD46 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC326817BD46MD5c3f610ec997b39368e850495bdc141e2SHA11362D7F01CF8978D600F2CB9D9DDCF5713E92209Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&r...
W32/Nuwar@MM!9CE45C64 - W32/Nuwar@MM!9CE45C64 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC329CE45C64MD5d0218d4b7ded335890df9fdb704d97cdSHA10C85BF58A57863713D9A31300B6A5C8B944155DDOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uSymantecTrojan.Peacomm.DAvert® Labs
has observed the following sys...
W32/Nuwar@MM!8EDC3FB5 - W32/Nuwar@MM!8EDC3FB5 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC328EDC3FB5MD5e347a2fa0c9e85414a51e302424bc439SHA16BD473A46691168BC840B573C7A0486B41615738Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!FE86AECD - W32/Nuwar@MM!FE86AECD at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC32FE86AECDMD53fcbcb5af2cc3b5205349f39b13d38c1SHA1A499C8184371EAD8454CE1DCDF89D65C7D812562Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&r...
W32/Nuwar@MM!5453F78F - W32/Nuwar@MM!5453F78F at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC325453F78FMD5F236FAEE74C55DCE39B515A058E6BD26SHA10289584BB8DA33B1DF57DBF505DCF4DD457930DFOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dAvert® Labs has observed the fo...
W32/Nuwar@MM!7F10DCCA - W32/Nuwar@MM!7F10DCCA at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,808
bytesCRC327F10DCCAMD5CC9CB40D5DB95EE38F0E37304A7EE5A0SHA169CC0E74651296410B55E7A6B6ADBCFE765D88ECOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dAvert® Labs has observed the...
W32/Nuwar@MM!1AE81998 - W32/Nuwar@MM!1AE81998 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC321AE81998MD56B43739CC1E6FA12A49351218A3274CCSHA1AA1CABF201EBB0EA625059D191323CD1C9F712B4Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dAvert® Labs has observed the fo...
W32/Nuwar@MM!D33FB362 - W32/Nuwar@MM!D33FB362 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32D33FB362MD53c48473b1f3b632ef9611d8d1bc314b3SHA11CC27A67465F87BC462AC73A9966F79629FC0DE2Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!4338DE41 - W32/Nuwar@MM!4338DE41 at McAfee
File PropertyProperty ValueFile Namebeijing.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC324338DE41MD53cb69bfa31344125a38e036bd6fb2e43SHA183E578A4E480A18B4F34567EA145987E0C5A6EC5Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&r...
PWS-OnlineGames.bf!31B0AA11 - PWS-OnlineGames.bf!31B0AA11 at McAfee
File PropertyProperty ValueFile Named10.exeMcAfee DetectionPWS-OnlineGames.bfLength17,057
bytesCRC3231B0AA11MD5f2df7333b43cf1d5291d5c1de5e14e10SHA1FD9003433388BD74611445B2E754DA7564138E8BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)psw.onlinegames.aujpNormanw32/suspicious_u.
genSymantecInfostealer.GampassTrend ...
WORM_SANKEZU.A - WORM_SANKEZU.A at Trend Micro
This worm arrives via physical and removable drives.Upon execution, it drops several copies of itself. It uses
the standard Windows folder icon to trick users that it is a normal folder. It then sets its attribute to
Hidden. It creates registry entries to enable its automatic execution at every system startup. It also creates
registr...
WORM_NUWAR.YH - WORM_NUWAR.YH at Trend Micro
...
TROJ_DROPPER.DDP - TROJ_DROPPER.DDP at Trend Micro
This self-extracting Trojan arrives as attachment to email messages spammed by another malware or a malicious
user. When executed, it drops and executes files, which Trend Micro detects as the following: ADW_NEWWEB.
HCTROJ_DELF.IVKTROJ_DLOAD.QBAs a result, routines of the dropped Trojans and adware are also exhibited on the
affected s...
TROJ_HELPUD.AB - TROJ_HELPUD.AB at Trend Micro
This memory-resident Trojan arrives as attachment to email messages spammed by another malware or a malicious
user. It may also be installed manually by a user.When executed, it drops several copies of itself on the
affected system, and then it injects threads into normal processes.It also modifies the affected system's
registry to ...
Troj/FakeAV-Z - Troj/FakeAV-Z at Sophos
Troj/FakeAV-Z is a Trojan for the Windows platform that pretends to be software finding threats on
the infected computer.
...
Troj/Fakesu-Gen - Troj/Fakesu-Gen at Sophos
Troj/Fakesu-Gen is a family of Trojans for the Windows platform that pretend to be software
finding threats on the infected computer.
...
VBS/Shush-A - VBS/Shush-A at Sophos
VBS/Shush-A is a VBS worm for the Windows platform. VBS/Shush-A attempts to
copy itself to connected drives with the name main.vbs, as well as dropping a file autorun.inf (also detected
as VBS/Shush-A) to run itself automatically. If the file <System>\autorun.exe exists, it will copy it as
wel...
Troj/Fakezi-Fam - Troj/Fakezi-Fam at Sophos
Troj/Fakezi-Fam is a family of Trojans for the Windows platform that pretends to be software
finding threats on the infected computer.
...
Troj/Fakezi-Gen - Troj/Fakezi-Gen at Sophos
Troj/Fakezi-Gen is a family of Trojans for the Windows platform that pretends to be software
finding threats on the infected computer.
...
W32/SillyFDC-CK - W32/SillyFDC-CK at Sophos
When run W32/SillyFDC-CK creates the following files:
<Recycled>\<random tag>\Desktop.ini <Recycled>\<random tag>\spoolsv.exe -
copy of W32/SillyFDC-CK W32/SillyFDC-CK also creates the following files in logical
drives found on the infected c...
Troj/Agent-HCW - Troj/Agent-HCW at Sophos
...
VBS/Autorun-FM - VBS/Autorun-FM at Sophos
VBS/Autorun-FM is a worm for the Windows platform. When first run
VBS/Autorun-FM copies itself to: <Root>\Cool USEP Scandal.vbs
<Root>\sowar.vbs <Windows>\SysRes.vbs and creates the following
files: ...
Bat/Apogo-B - Bat/Apogo-B at Sophos
Bat/Apogo-B is a worm for the Windows platform. When it is run, Bat/Apogo-B
copies itself to a shared folder of a peer-to-peer program, and also to C:\ using the following names:
C:\Timbaland-Apogolize.mp3.bat C:\Bonjovi-Allways.mp3.bat
Bat/Ap...
0 writebacks [06/21/2008 04:48]
[]
permanent link
|
Virus Malware and Threat News for 20080618
Packed.Generic.83 - Packed.Generic.83 at Norton Symantec
Packed.Generic.83 is a heuristic detection for files that may have been obfuscated or encrypted in order to
conceal them from antivirus software.
...
Packed.Generic.81 - Packed.Generic.81 at Norton Symantec
Packed.Generic.81 is a heuristic detection for files that may have been obfuscated or encrypted in order to
conceal them from antivirus software.
...
Packed.Generic.80 - Packed.Generic.80 at Norton Symantec
Packed.Generic.80 is a heuristic detection for files that may have been obfuscated or encrypted in order to
conceal them from antivirus software.
...
Packed.Generic.78 - Packed.Generic.78 at Norton Symantec
Packed.Generic.78 is a heuristic detection for files that may have been obfuscated or encrypted in order to
conceal them from antivirus software.
...
PWS-OnlineGames.as!2C43B835 - PWS-OnlineGames.as!2C43B835 at McAfee
File PropertyProperty ValueFile Name8.exeMcAfee DetectionPWS-OnlineGames.asLength20,231
bytesCRC322C43B835MD5464D778BBC81A6ED29869F33E0355D74SHA1054664AD3A912BEAFE7850D64BBA9A9A6A04D4A8Other Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTROJ_ZLOB.LNAv...
PWS-OnlineGames.a!D54BBE7F - PWS-OnlineGames.a!D54BBE7F at McAfee
File PropertyProperty ValueFile Name10.exeMcAfee DetectionPWS-OnlineGames.asLength21,087
bytesCRC32D54BBE7FMD5829269d3675dad8b4f60c19ffcd45064SHA14F30BAC983CF2D28C6B0E4E2EFB34C1653B76433Other Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTROJ_ZLOB.LNA...
W32/Nuwar@MM!56CF968A - W32/Nuwar@MM!56CF968A at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3256CF968AMD5E2C62F1BBEB1DF7FA5ED14C9DA9630E0SHA1264BE0DF72710049205933A6936AAB8730D62B97Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DTrend MicroWOR...
W32/Nuwar@MM!D08A0D02 - W32/Nuwar@MM!D08A0D02 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32D08A0D02MD5FABB92FB969E971B7174BFDB16B333E1SHA1F96759E499B9EC609BF3F02DC71D8C5EF51B5C86Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DTrend Micro...
W32/Nuwar@MM!FB61581D - W32/Nuwar@MM!FB61581D at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32FB61581DMD580DF92A1C543F4539CA4A371F83F2DEDSHA1129FE2F0A93825C6AC25E84C089A8B507BDF1CBCOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DTrend Micro...
W32/Nuwar@MM!D8798DEB - W32/Nuwar@MM!D8798DEB at McAfee
File PropertyProperty ValueFile Name0000000e.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32D8798DEBMD544A10ABCC585A983B7452FCEDC46A73FSHA15F9FC02C3EFD24D0A2CF3EBF8F7260B87A4DEC24Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DTrend Micr...
W32/Nuwar@MM!74AF12F1 - W32/Nuwar@MM!74AF12F1 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3274AF12F1MD56A66CEBEF04F9B047F5AA6C3FF31ECF7SHA1B3E8EB5F80F2B7C3F8313E04597ACB96B39A9851Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DTrend Micro...
W32/Nuwar@MM!085B2E2F - W32/Nuwar@MM!085B2E2F at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32085B2E2FMD59DCE17FA35D6B8996739A3137F7153E2SHA19A392DCAEE6937D3C420F46F5C4EA39071C5ED31Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DTrend Micro...
DDoS-Leba!1DF96707 - DDoS-Leba!1DF96707 at McAfee
File PropertyProperty ValueFile Nameise32.exeMcAfee DetectionDDoS-LebaLength23,552
bytesCRC321DF96707MD5F99344562CC7B159C4929D5B5EB13A52SHA1D491BC105EE55107BB28D66333C2078BC9FFE4E9Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)worm/generic.hqsMicrosoftworm:win32/hamweq.
aSymantecBackdoor.TrojanAvert® Labs has ...
PWS-OnlineGames.as!DFEF8DA3 - PWS-OnlineGames.as!DFEF8DA3 at McAfee
File PropertyProperty ValueFile Namez6.exeMcAfee DetectionPWS-OnlineGames.asLength20,155
bytesCRC32DFEF8DA3MD5598D7382B00436CBBA14D92731547B06SHA162A762BAE4887A17D9581630D60897BF6C690A65Other Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTROJ_ZLOB.LNA...
PWS-OnlineGames.as!A446533B - PWS-OnlineGames.as!A446533B at McAfee
File PropertyProperty ValueFile Namez30.exeMcAfee DetectionPWS-OnlineGames.asLength19,699
bytesCRC32A446533BMD55F6CD24C9189F3232C078E20B0737E1BSHA1B80F01BCFBDC311FFC30F00C4F4EC873202B6C38Other Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTROJ_ZLOB.LN...
W32/Nuwar@MM!545AE393 - W32/Nuwar@MM!545AE393 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32545AE393MD56622260BA9AB23E3FE860ED87CD64C38SHA127722B817D71069B8AEFDA4B6AFEE0DA13CFD25AOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DTrend MicroWOR...
W32/Nuwar@MM!47A73DAA - W32/Nuwar@MM!47A73DAA at McAfee
File PropertyProperty ValueFile Name0000000e.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3247A73DAAMD54551E265AF061F2353BE3D86269FEAF3SHA1DCDF69244C5EF8EF83C2F0F72B1DD4F02842CB21Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DTrend Micr...
W32/Nuwar@MM!F31235AA - W32/Nuwar@MM!F31235AA at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32F31235AAMD5657EA8164476A19B49192781E893C6DCSHA1248DE3D4D5D1860BE08E37ABD903195CE2C239DCOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DTrend Micro...
W32/Nuwar@MM!D391ACEE - W32/Nuwar@MM!D391ACEE at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32D391ACEEMD51C694ADDA469DE15B1F56195EBD546BBSHA1F2B1612CAF7D2C180D731F1E1EF7217C285292EFOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DTrend Micro...
W32/Nuwar@MM!ADEF65B0 - W32/Nuwar@MM!ADEF65B0 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32ADEF65B0MD52C5849E2F38CB8BE9B2077AEA9A941D1SHA1099F622CBF99AEE34D7CE8404F2DBF4ABD4DEAF1Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DTrend MicroWOR...
W32/Nuwar@MM!2F56E571 - W32/Nuwar@MM!2F56E571 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC322F56E571MD5C3B8531500749CAAB86AD80EFA1975A4SHA1E55B8ADBCFDCD1B553F3145B761E67FE918F65E9Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DTrend Micro...
W32/Nuwar@MM!B667DEEB - W32/Nuwar@MM!B667DEEB at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32B667DEEBMD56588F9B670143E766CEED9990887F792SHA17F1D923932D3F6A0757A17AD779C2752CAEB7BC1Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DTrend MicroWOR...
W32/Nuwar@MM!EBA540E8 - W32/Nuwar@MM!EBA540E8 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32EBA540E8MD56B8C18655102C5462BF27432857F2639SHA1070FB76F8937A16992F8D87F490044A99E3FEEC1Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DTrend MicroWOR...
W32/Nuwar@MM!75EBB1D5 - W32/Nuwar@MM!75EBB1D5 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3275EBB1D5MD55DD155EBDF970A637BB84AE045D9976DSHA1A77CB14710CEA24EDBA33188D0E008433C121F9AOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DTrend Micro...
W32/Nuwar@MM!441EDFDE - W32/Nuwar@MM!441EDFDE at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32441EDFDEMD5405672432997d44d68500e8ed0282b2eSHA155FA6EEF5C93E9B0E14D7CF6FC2F81C1B79B39D2Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DAvert® L...
W32/Nuwar@MM!7462AFDD - W32/Nuwar@MM!7462AFDD at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC327462AFDDMD5b7fd84d560b0418da138d8b4ffc32392SHA19166CD2CB2FAD9C7E3A5B1272BCBB0580DD1FFDAOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DAvert® Labs...
W32/Nuwar@MM!CA55A4B6 - W32/Nuwar@MM!CA55A4B6 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32CA55A4B6MD592ce059c39413c22fed9531e42d09670SHA1D09C02B6C67A0993BC0F0F295217FB29FB967A85Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DAvert® L...
W32/Nuwar@MM!A079A66D - W32/Nuwar@MM!A079A66D at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32A079A66DMD54bd508a42f2e86d52f3556e2576f61a0SHA10560BA8D484702C0B4A82D6B00E128E62764DE0BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DAvert® L...
W32/Nuwar@MM!95204982 - W32/Nuwar@MM!95204982 at McAfee
File PropertyProperty ValueFile Name0000000e.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3295204982MD5f21a09499eb2f9b8ac75bc64fcb97e1aSHA132C0231D403FC8B7FFF707D5804F61F424359D41Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.aAvert®
Labs has observed the fo...
W32/Nuwar@MM!DCA3AA0C - W32/Nuwar@MM!DCA3AA0C at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32DCA3AA0CMD59fcaa8b6c8d895895f865bcf67f840b6SHA1F9B9B2D2FE328C53627657A4242E30EFF7687107Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DAvert® L...
W32/Nuwar@MM!8472A6A4 - W32/Nuwar@MM!8472A6A4 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC328472A6A4MD586dc88933895756c7c7ec0ceecfedfdfSHA1060F439A698C85D53B57D4A8E33DC9C50C125D4BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DAvert® L...
W32/Nuwar@MM!9F18D780 - W32/Nuwar@MM!9F18D780 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC329F18D780MD55910254a0d1ebebd3ba45244db1eb7aaSHA18ED02DD75EFD5C47D97360C892D98A32661A19D9Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.aAvert®
Labs has observed the fol...
W32/Nuwar@MM!32A76A15 - W32/Nuwar@MM!32A76A15 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength113,664
bytesCRC3232A76A15MD58a3a8dee71120511fc08aae85522ef5cSHA1412AC06BE6BD52E85299144E382F3A3CDBBE8347Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.aAvert®
Labs has observed the follow...
W32/Nuwar@MM!41994652 - W32/Nuwar@MM!41994652 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3241994652MD5dc08fdf93eb60d688e2e4ae22604b72dSHA1414EC0C13E68C0BA4414B84B0ABEAC04135A6928Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DAvert® Labs...
PE_SALITY.EK - PE_SALITY.EK at Trend Micro
This file infector may be downloaded from remote sites by other malware. It may be downloaded unknowingly by a
user when visiting malicious Web sites.Upon execution, it infects executable (.EXE) files with registry
entries under a certain key. The said routine allows this file infector to execute at system startup. It also
infects al...
Troj/IRCBot-ACA - Troj/IRCBot-ACA at Sophos
...
Troj/ZlbBHO-Fam - Troj/ZlbBHO-Fam at Sophos
...
Troj/Dwnldr-HEL - Troj/Dwnldr-HEL at Sophos
...
Troj/FakeVir-BZ - Troj/FakeVir-BZ at Sophos
Troj/FakeVir-BV is a Trojan for the Windows platform. When first run,
Troj/FakeVir-BZ copies itself to <Program Files>\Antivirus2008y\<Current filename>.exe
Troj/FakeVir-BZ also creates <Adeministrator>\Start
Menu\Antivirus2008y\Antiviru...
W32/Nuwar-E - W32/Nuwar-E at Sophos
W32/Nuwar-E is a worm for the Windows platform. When run W32/Nuwar-E copies
itself to the <Windows> folder and sets the following registry entry to run itself on startup.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run <filename of worm>
&l...
Troj/FakeVir-BY - Troj/FakeVir-BY at Sophos
Troj/FakeVir-BY downloads a fraudulent anti-virus scanner.
...
Mal/Delf-M - Mal/Delf-M at Sophos
...
Mal/MZBrk-A - Mal/MZBrk-A at Sophos
...
Troj/Delf-FAS - Troj/Delf-FAS at Sophos
Troj/Delf-FAS is a downloader Trojan for the Windows platform.
Troj/Delf-FAS copies itself to <System>\msnbootcf.exe and creates the following registry entry to run
itself on restart: HKL\SOFTWARE\Microsoft\Windows\CurrentVersion\Run MSN
Booter msnb...
Troj/Delf-FAT - Troj/Delf-FAT at Sophos
...
0 writebacks [06/19/2008 04:46]
[]
permanent link
|
Virus Malware and Threat News for 20080617
W32/Nuwar@MM!085BDE30 - W32/Nuwar@MM!085BDE30 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32085BDE30MD5E89AC788BB0A70E39D3885FBB6B3C58CSHA156B4E7043BFC262E4B5FC61010049E8B0ACDEB1BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DTrend Micro...
W32/Nuwar@MM!0F82833A - W32/Nuwar@MM!0F82833A at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC320F82833AMD527B85FADE9FEA65734F5CF8E62BF1CB8SHA1B952B6C21D17CAF7F12F81D0F92EA9730F2BAE14Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DTrend MicroWOR...
W32/Nuwar@MM!FCF2BD3B - W32/Nuwar@MM!FCF2BD3B at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32FCF2BD3BMD5656B692E890C961F7250F4524AC85AADSHA1F8EC8BFC32CFEF12711FD8A7DA69024C3B346E72Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DTrend MicroWOR...
W32/Nuwar@MM!066510BB - W32/Nuwar@MM!066510BB at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32066510BBMD589D7A8D422A67454BB89A4CA476C7AC1SHA10D4CA8C0F07259AD503E66AB78B66B796B39F5C4Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DTrend Micro...
W32/Nuwar@MM!C50C55A5 - W32/Nuwar@MM!C50C55A5 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32C50C55A5MD5FB21E47F6EA84C73B73B2F69DFB07C3ESHA11A60816E5EB3C7339551E1464AE7B9BA1BB0F1EEOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DTrend Micro...
W32/Nuwar@MM!53245BF7 - W32/Nuwar@MM!53245BF7 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3253245BF7MD526484B33BC9A7FB72ADF1F592833EC82SHA168134BC7C99D944B05F4C198C74C33CC6945C748Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DTrend MicroWOR...
W32/Nuwar@MM!BDB95F67 - W32/Nuwar@MM!BDB95F67 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32BDB95F67MD56A3143144C9FD158F21BFF86518DCF47SHA1E5873DDA96D0CB516C387D98159CD850E627D574Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DTrend Micro...
W32/Nuwar@MM!E9FB4060 - W32/Nuwar@MM!E9FB4060 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32E9FB4060MD570A2D516317C8969987F3EAE3681A6CESHA1B4E3E9D097D63C775D8573777B1DEAADC845443EOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DTrend MicroWOR...
W32/Nuwar@MM!9E109199 - W32/Nuwar@MM!9E109199 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC329E109199MD52338FC1D52D5856A20E4A67723FEEE82SHA1660EE3486E1BC1F1BC2DB1AADB88FDEF5A3CACABOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DTrend Micro...
W32/Nuwar@MM!9A7C5D62 - W32/Nuwar@MM!9A7C5D62 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC329A7C5D62MD588D6059C623C201049B281FEC7E2DEE5SHA1AC48A86644BB3BE61D30B81216B811DE43A24A65Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DTrend Micro...
W32/Nuwar@MM!467BE97E - W32/Nuwar@MM!467BE97E at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32467BE97EMD583528a1bd34c5daaf45d58461d955b08SHA182B663BFEB8A35860FEBDEB7DBFA074A3A8CD29COther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DAvert® Labs...
W32/Nuwar@MM!F12D2C74 - W32/Nuwar@MM!F12D2C74 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32F12D2C74MD5972b7978589c8c5f84ab5d14916f8453SHA10767AFEF8EC362816D5AC79080840B6118DAA41DOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DAvert® L...
W32/Nuwar@MM!91433BCB - W32/Nuwar@MM!91433BCB at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3291433BCBMD583fa8f0fe9d330959d85e8d2ec383cbbSHA103F82A3332F8B78E45F29A0DDC15809A51EC3939Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DAvert® Labs...
W32/Nuwar@MM!BB69FCE7 - W32/Nuwar@MM!BB69FCE7 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32BB69FCE7MD5047ab5c9c4b610f122280c2453a6abd6SHA1BDBA9DE4DABDCD95AFBE0C2067D63008857D395AOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DAvert® Labs...
W32/Nuwar@MM!DC5472BF - W32/Nuwar@MM!DC5472BF at McAfee
File PropertyProperty ValueFile Name0000000d.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32DC5472BFMD5689917099e79bbabf23dfc26e6a7ef91SHA18D903F325E3C1809C2A6752DF655A135A25A6E9DOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!FAC7B524 - W32/Nuwar@MM!FAC7B524 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC32FAC7B524MD56ca0702ca2d3eb5b926fdf0dffcc2193SHA19D28D85CE8F164A712EA4BD5A41F5BCA42B7B373Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DAvert® Labs...
W32/Nuwar@MM!D4CA9019 - W32/Nuwar@MM!D4CA9019 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32D4CA9019MD52df6b03eec564cfca88025fdb9d44cf1SHA160384F58EDFFF0D618BB9516F94FC4DF02D49745Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DAvert® L...
Generic Dropper.at!A98568C5 - Generic Dropper.at!A98568C5 at McAfee
File PropertyProperty ValueFile Namevideo_~1.exeMcAfee DetectionGeneric Dropper.atLength45,568
bytesCRC32A98568C5MD5E9CC46A2167C0D582C5DC344DAC9AC88SHA1E2A2F8C9DC56827B75A2C6E083571A3AC1D2C0F8Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.banload.welTrend MicroMal_Banld-5Avert®
Labs has observed th...
Generic VB.b!4988D5F0 - Generic VB.b!4988D5F0 at McAfee
File PropertyProperty ValueFile Nameinstalar.exeMcAfee DetectionGeneric VB.bLength126,464
bytesCRC324988D5F0MD5FF2013D803E0843B26615CA3DD770B06SHA140E9DEB95D0FB86434883DDAAD2B6D3216B73080Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)generic10.qfuNormanw32/vbworm.pwmSymantecBackdoor.
ColfusionTrend MicroWORM_EMAI...
W32/Generic.b!E7D3BC50 - W32/Generic.b!E7D3BC50 at McAfee
File PropertyProperty ValueFile Namescmss.exeMcAfee DetectionW32/Generic.bLength127,488
bytesCRC32E7D3BC50MD5DA21D61DD5AA042D1A434CE4104E90E4SHA181463AC2FBFF836A27D6B5310CF684EB56C3344AOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)generic10.kftNormanw32/vbworm.qbbAvert® Labs has
observed the following system...
W32/Nuwar@MM!2130AFEA - W32/Nuwar@MM!2130AFEA at McAfee
...
W32/Nuwar@MM!92E65821 - W32/Nuwar@MM!92E65821 at McAfee
File PropertyProperty ValueFile Name0000000d.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3292E65821MD559E6CC41F0FEF97DA25792F25008A10DSHA1D7527C3A768023534A21E3E910C9A809C9A46CC2Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DTrend Micr...
W32/Nuwar@MM!CFB338CB - W32/Nuwar@MM!CFB338CB at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32CFB338CBMD528C21F7215F7683B266C028CF1E87C8ESHA12361AAAFD5DA283A78CD67969D54D4379F7BF383Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aSymantecTrojan.Peacomm.DTrend
MicroWORM_NUWAR.CARAvert® Lab...
W32/Nuwar@MM!B8EDE478 - W32/Nuwar@MM!B8EDE478 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32B8EDE478MD506FE4606BC33D56BE2236ACB0F11F1ADSHA12146703767E0EB36EFFDE19A735CDBF93913C387Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DTrend Micro...
W32/Nuwar@MM!3E4620E8 - W32/Nuwar@MM!3E4620E8 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC323E4620E8MD5282FB758AE55ED3FE8443B82909A56ECSHA11427FBF85A4535B13708166571C4F310DD252376Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DTrend Micro...
W32/Nuwar@MM!E51B0EF2 - W32/Nuwar@MM!E51B0EF2 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32E51B0EF2MD5CC5BF814C247D1047D5592E8D14587FASHA10592B4F30DD2BAE134FA83E9E1E805E6201EAE07Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DTrend MicroWOR...
W32/Nuwar@MM!C2CDCD95 - W32/Nuwar@MM!C2CDCD95 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32C2CDCD95MD5657C0EC44A76FBCAF9833B67BFA6D9B4SHA102AD5225D096CBEAD6EFFC3ABC014E147A20E470Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.tMicrosoftbackdoor:win32/nuwar.
aSymantecTrojan.Peacomm.DTrend MicroWOR...
W32/Nuwar@MM!95E3CD3E - W32/Nuwar@MM!95E3CD3E at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3295E3CD3EMD50236E90603D9182EC963D62A975AB438SHA149FFDBE0A23B861AA5894D7C1B601E83284EDC4COther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aSymantecTrojan.Peacomm.DTrend
MicroWORM_NUWAR.CARAvert® Lab...
W32/Nuwar@MM!00DD5657 - W32/Nuwar@MM!00DD5657 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3200DD5657MD5CCFBE1DE9458DD126D08E3AD02ACC175SHA1181AFB4AC3E80366907E0806E9121469A626633AOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aSymantecTrojan.Peacomm.DTrend
MicroWORM_NUWAR.CARAvert® Labs h...
W32/AutoRun-FI - W32/AutoRun-FI at Sophos
W32/AutoRun-FI is a worm for the Windows platform. When run W32/AutoRun-FI
copies itself to <Root>\RECYCLER\<User>\autorun.exe <Root>\autorun.inf
W32/AutoRun-FI spreads via removable shared drives by copying the file
<Root>\RECYCLE...
Troj/Agent-HCT - Troj/Agent-HCT at Sophos
...
Troj/Iframe-AI - Troj/Iframe-AI at Sophos
Troj/Iframe-AI is a Trojan for the Windows platform that redirects the browser to a malicious site.
Troj/Iframe-AI is often seen in a web page that has been hacked.
...
Mal/Pophot-A - Mal/Pophot-A at Sophos
...
Troj/Bdoor-ALX - Troj/Bdoor-ALX at Sophos
Troj/Bdoor-ALX is a Trojan for the Windows platform. Troj/Bdoor-ALX
includes functionality to access the internet and communicate with a remote server via HTTP.
When first run Troj/Bdoor-ALX copies itself to: <User>\cftmon.exe
<System...
W32/Sdbot-DKO - W32/Sdbot-DKO at Sophos
...
Troj/Agent-HCS - Troj/Agent-HCS at Sophos
...
Troj/Delf-FAK - Troj/Delf-FAK at Sophos
...
Troj/Dloadr-BMT - Troj/Dloadr-BMT at Sophos
...
Troj/Dloadr-BMU - Troj/Dloadr-BMU at Sophos
Troj/Dloadr-BMU is a downloader Trojan for the Windows platform.
Troj/Dloadr-BMU attempts to copy itself to <Windows>\services.exe and creates the following registry
entry to run itself on system restart:
HKCU\Software\Microsoft\Windows\CurrentVersion\Run serv...
0 writebacks [06/18/2008 04:47]
[]
permanent link
|
Virus Malware and Threat News for 20080616
Trojan-Downloader:W32/Agent.TPF - Trojan-Downloader:W32/Agent.TPF at F-Secure
Trojan-downloaders download and install new malware or adware on the targeted computer. The downloaded files
include backdoors, bots, trojans, et cetera.
...
Backdoor.Disgufa - Backdoor.Disgufa at Norton Symantec
Backdoor.Disgufa is a Trojan horse that opens a back door on the compromised computer.
...
W32.Xpaj - W32.Xpaj at Norton Symantec
W32.Xpaj is a virus that infects .exe, .dll and .sys files on the compromised computer.
...
W32/Nuwar@MM!C53910D6 - W32/Nuwar@MM!C53910D6 at McAfee
File PropertyProperty ValueFile Name0000000d.exeMcAfee DetectionW32/Nuwar@MMLength117,248
bytesCRC32C53910D6MD5E0821137745CB1DD06F70C14C5516924SHA189808A5028463C7182B0DEF5CBBC8EA8DBFFD884Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aSymantecTrojan.Peacomm.DTrend
MicroWORM_NUWAR.CARAvert® La...
W32/Nuwar@MM!839B530E - W32/Nuwar@MM!839B530E at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32839B530EMD54F70BE3FB2CFBF50FFD16C8DFC6C8142SHA1DED1E6DA2024B54A6BAFAE8BF20210ADFF1AFF90Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aSymantecTrojan.Peacomm.DTrend
MicroWORM_NUWAR.CARAvert® Labs h...
W32/Nuwar@MM!FB3ACFA1 - W32/Nuwar@MM!FB3ACFA1 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32FB3ACFA1MD5666F2D9505CEECF3033431BF4D1964E8SHA1774D965CEF0AF598BD59964C765AC8C433EF0D30Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aSymantecTrojan.Peacomm.DTrend
MicroWORM_NUWAR.CARAvert® Labs h...
W32/Nuwar@MM!89CF94BF - W32/Nuwar@MM!89CF94BF at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC3289CF94BFMD56804AB6C45ED8F790A54E2E44CC86AF6SHA1B7E9918743B011C5072DEE784B2AD951C6E679C2Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aSymantecTrojan.Peacomm.DTrend
MicroWORM_NUWAR.CARAvert® Lab...
W32/Nuwar@MM!4FB00F93 - W32/Nuwar@MM!4FB00F93 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC324FB00F93MD5474CCAC903D3D5B57F48F22D46256033SHA154313879557659873842B3085325DCC74CAF318DOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aSymantecTrojan.Peacomm.DTrend
MicroWORM_NUWAR.CARAvert® Lab...
W32/Nuwar@MM!1C8E872C - W32/Nuwar@MM!1C8E872C at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC321C8E872CMD5678361C2F88CA4B32F6CB9306A478F53SHA16B6047C5B01B2AB514244C722501B731FFDD0909Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aSymantecTrojan.Peacomm.DTrend
MicroWORM_NUWAR.CARAvert® Labs h...
W32/Nuwar@MM!A03A6919 - W32/Nuwar@MM!A03A6919 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32A03A6919MD5AA5633F4D092A1533B07983AB87C86D4SHA11ED04CEBD286650341F398EE1A03AEEA30772C28Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aSymantecTrojan.Peacomm.DTrend
MicroWORM_NUWAR.CARAvert® Lab...
W32/Nuwar@MM!16406E6A - W32/Nuwar@MM!16406E6A at McAfee
File PropertyProperty ValueFile Name0000000d.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3216406E6AMD5D1EEE3BA0D6B7CEE63578DA9D8A72BC3SHA10D407230B7CD49EE61C0E1B0A7FE35342F3CF88COther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aSymantecTrojan.Peacomm.DTrend
MicroWORM_NUWAR.CARAvert® La...
W32/Nuwar@MM!8B626B1D - W32/Nuwar@MM!8B626B1D at McAfee
File PropertyProperty ValueFile Name0000000d.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC328B626B1DMD5BE550CD336B313706D793C55EA8B5119SHA1E4F2D78428DD6089C28EE566308B91400B5538EEOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aSymantecTrojan.Peacomm.DTrend
MicroWORM_NUWAR.CARAvert® La...
W32/Nuwar@MM!BDDE1970 - W32/Nuwar@MM!BDDE1970 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32BDDE1970MD5B30C2905AECC303BEF3D4258213FC025SHA11FD6734AC53F9D66B748643DD3DCA8BAC38C3E73Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aSymantecTrojan.Peacomm.DTrend
MicroWORM_NUWAR.CARAvert® Lab...
W32/Nuwar@MM!DF810B93 - W32/Nuwar@MM!DF810B93 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32DF810B93MD5537F0E709140385925EBC07A8918A92FSHA146A7D47AC8DF788CEE6DCAB3426908E235865C49Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aSymantecTrojan.Peacomm.DTrend
MicroWORM_NUWAR.CARAvert® Lab...
W32/Nuwar@MM!CEC3B7C5 - W32/Nuwar@MM!CEC3B7C5 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32CEC3B7C5MD5B7967786000C746E3DD59F9F5C128292SHA1A653DFA0AABE98B62ACEA194D33C9914CC1E7DB6Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aSymantecTrojan.Peacomm.DTrend
MicroWORM_NUWAR.CARAvert® Labs h...
W32/Nuwar@MM!5DB10B40 - W32/Nuwar@MM!5DB10B40 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC325DB10B40MD5ad7b79939cfc96df5c1bdeaabe322727SHA1523F71EBCA595AC71ACF5205530CEAE13245479DOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aSymantecTrojan.Peacomm.DAvert®
Labs has observed the following...
W32/Nuwar@MM!E88396FF - W32/Nuwar@MM!E88396FF at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32E88396FFMD5dbd3f8b20be15f3ecb6be3680f1eb40cSHA10186872A63402031CE82BDE539B64D480B1469BAOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aSymantecTrojan.Peacomm.DAvert®
Labs has observed the follow...
W32/Nuwar@MM!1138552E - W32/Nuwar@MM!1138552E at McAfee
File PropertyProperty ValueFile Name0000000d.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC321138552EMD597D54B31EBBB24BDEC6DF442FEBE8F6CSHA14002B0923071D7F6939545774B6DC597DC571D3COther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aSymantecTrojan.Peacomm.DTrend
MicroWORM_NUWAR.CARAvert® La...
W32/Nuwar@MM!C43B958E - W32/Nuwar@MM!C43B958E at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32C43B958EMD5D6F400A76D9C4C48098CE6A1ECE32096SHA1F06E50629E1C6EAB1E43097304484B79FBB36178Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aSymantecTrojan.Peacomm.DTrend
MicroWORM_NUWAR.CARAvert® Labs h...
W32/Nuwar@MM!16CC8A09 - W32/Nuwar@MM!16CC8A09 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3216CC8A09MD56EDF912EE313AD025113F6383552EDA2SHA1F0FB2A35AD5429AA3C749C2305D86F3AFBFB6C52Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aSymantecTrojan.Peacomm.DTrend
MicroWORM_NUWAR.CARAvert® Lab...
W32/Nuwar@MM!137D5DF7 - W32/Nuwar@MM!137D5DF7 at McAfee
File PropertyProperty ValueFile Name0000000d.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32137D5DF7MD57AB53D88B803A6E842ED31CAC0E02432SHA13726161A8FA76136FB4B4020C2E5D27A1BD06067Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aSymantecTrojan.Peacomm.DTrend
MicroWORM_NUWAR.CARAvert® La...
W32/Nuwar@MM!3D812A2E - W32/Nuwar@MM!3D812A2E at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC323D812A2EMD5D667BDBB655321EE067C61DF05ACB2ADSHA11D20B620459729789ADBDC1104E2DA5F8F066F2DOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aSymantecTrojan.Peacomm.DTrend
MicroWORM_NUWAR.CARAvert® Lab...
W32/Nuwar@MM!621C1252 - W32/Nuwar@MM!621C1252 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32621C1252MD50202312E43B96FA82040CEAD201D9B12SHA1ED4C85E0C93F9D08C895A832EDBB1E8A11F5C2E6Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aSymantecTrojan.Peacomm.DTrend
MicroWORM_NUWAR.CARAvert® Lab...
W32/Nuwar@MM!03F64D3F - W32/Nuwar@MM!03F64D3F at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3203F64D3FMD5ea8c46912baf565aec4960ee64178bb0SHA1B33E94BC0B4E5FD966AF1CEAF03A339301051838Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aTrend MicroWORM_NUWAR.CARAvert®
Labs has observed the followin...
PWS-OnlineGames.p!656084FE - PWS-OnlineGames.p!656084FE at McAfee
File PropertyProperty ValueFile Namemplaye~1.exeMcAfee DetectionPWS-OnlineGames.pLength25,756
bytesCRC32656084FEMD57DF6F1987A387FE6B649FA70373AC9D4SHA1E1DC52315A8C1D03C8DEF2FA4942E18FC44B252BOther Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSymantecInfostealer.GampassTrend
MicroTSPY_ONLINEG.PBUAvert&re...
W32/Nuwar@MM!E30F998D - W32/Nuwar@MM!E30F998D at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32E30F998DMD5DBF0D821B47985F5D8688BFC5A84900ASHA19015BB064E268E4287DE68F47F5F99FDC5E8696BOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aSymantecTrojan.Peacomm.DTrend
MicroWORM_NUWAR.CARAvert® Lab...
W32/Nuwar@MM!5C76FA1C - W32/Nuwar@MM!5C76FA1C at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC325C76FA1CMD5F32F835CADD3DECA9B3BDCB06234B024SHA11AEA195C21C74EEC6F6EB89C99A5E795E8D5032DOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aSymantecTrojan.Peacomm.DTrend
MicroWORM_NUWAR.CARAvert® Lab...
W32/Nuwar@MM!226F2DF4 - W32/Nuwar@MM!226F2DF4 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32226F2DF4MD5C95C47DDA7A11DA43ABD282370F82286SHA1968E6585883F8A1F1D4A8EA7C2F3665C857B1E3AOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aSymantecTrojan.Peacomm.DTrend
MicroWORM_NUWAR.CARAvert® Lab...
W32/YahLover.worm!767C0102 - W32/YahLover.worm!767C0102 at McAfee
File PropertyProperty ValueFile Namevirus.exeMcAfee DetectionW32/YahLover.wormLength506,995
bytesCRC32767C0102MD554e597e4390452dea9d3d4d189e38585SHA1941515698F716F88DDC156C835C67B4872A36FFFOther Common
Detection AliasesCompany NameDetection NameMicrosoftworm:win32/sohanad.iNormansohanad.dyPandaW32/Sohanat.CV.
wormSymantecW32.Imaut.AAv...
W32/Nuwar@MM!55DBE34E - W32/Nuwar@MM!55DBE34E at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3255DBE34EMD5d6a29a66fd69bc89584d1d937ee104f1SHA10DA7810FF27FDF786E241AC26EDC90750C4E6852Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aTrend MicroWORM_NUWAR.CARAvert®
Labs has observed the follo...
W32/Nuwar@MM!2DA02B4E - W32/Nuwar@MM!2DA02B4E at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC322DA02B4EMD5F8470593E66786C64898D6E0E9DCAA61SHA1D000B213B7DE586F1FF2B70462A307C6FE1D2821Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aSymantecTrojan.Peacomm.DTrend
MicroWORM_NUWAR.CARAvert® Labs h...
W32/Nuwar@MM!D01F3AC7 - W32/Nuwar@MM!D01F3AC7 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32D01F3AC7MD518F632A0DEA27CCD7E9876A912036370SHA1D8384B2FE9A6DB71C19FE6DBE952CD3840152D7AOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aSymantecTrojan.Peacomm.DTrend
MicroWORM_NUWAR.CARAvert® Lab...
W32/Nuwar@MM!F299607B - W32/Nuwar@MM!F299607B at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32F299607BMD5c920aa3d84a81b889d60d6331699a9aaSHA1A2A23E6281F3C6A61A21DEB7C67B3957C45ED116Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.aSymantecTrojan.Peacomm.DAvert®
Labs has observed the following...
BKDR_IRCBOT.BGY - BKDR_IRCBOT.BGY at Trend Micro
This backdoor may be dropped by other malware. It may be downloaded from remote site(s) by other malware. It
may be downloaded unknowingly by a user when visiting malicious Web site(s).It drops copy(ies) of itself. Upon
execution, it displays a fake message box to trick users into thinking that the malware did not execute.It
creates ...
MS08-035 - MS08-035 at Panda
It is an important vulnerability in the Windows Active Directory on Windows 2008/2003/XP/2000 computers, which
allows to launch Denial of Service attacks.
...
MS08-034 - MS08-034 at Panda
It is an important vulnerability in WINS on Windows 2003/2000 computers, which allows hackers to gain local
privilege escalation.
...
MS08-033 - MS08-033 at Panda
It is a group of critical vulnerabilities in different versions of DirectX on Windows Server
2008/Vista/2003/XP/2000 computers, which allows hackers to gain remote control of the affected computer with
the same privileges as the logged on user.
...
MS08-031 - MS08-031 at Panda
It is a group of critical vulnerabilities in Internet Explorer versions 5.01 and 6 SP1 in Windows 2000, 6 on
Windows 2003/XP computers and 7 in Windows Vista/2003/XP, which allows hackers to gain remote control of the
affected computer with the same privileges as the logged on user and information to be disclosed.
...
MS08-030 - MS08-030 at Panda
It is a critical vulnerability in the Windows bluetooth stack on Windows Vista/XP computers, which allows
hackers to gain remote control of the affected computer with the same privileges as the logged on user.
...
Banbra.FUD - Banbra.FUD at Panda
It obtains confidential information of the user related to certain Brazilian banking entities. In order to do
so, it redirects users to websites that imitate the original one where they are requested to enter their
passwords and data from the coordinate card. It does not spread automatically by its own means.
...
MalwareProtector2008 - MalwareProtector2008 at Panda
It deceives users and warns them of unexisting threats in their computers. In order to eliminate them, they
are enticed to purchase a certain program. It can be downloaded from the website belonging to the company that
has developed it....
Banker.LAX - Banker.LAX at Panda
It obtains confidential information of the user related to certain banking entities. In order to do so, it
redirects users to websites that imitate the original one where they are requested to enter their passwords
and data from the coordinate card. It does not spread automatically by its own means.
...
Peregar.C - Peregar.C at Panda
It is designed to download a fake antivirus program, which warns users of unexisting threats in the system. In
order to eliminate them, the user is requested to purchase a certain program. It does not spread automatically
by its own means....
Autocrat.A - Autocrat.A at Panda
It carries out several modifications in the Windows Registry, which prevent the computer from working properly
and uses several techniques in order to make its detection more difficult. It spreads through removable,
shared and mapped drives.
...
Mal/EncPk-EB - Mal/EncPk-EB at Sophos
Mal/EncPk-EB is a program that has been packed with a protection system typically used by malware
authors. ...
Troj/Banloa-FK - Troj/Banloa-FK at Sophos
Troj/Banloa-FK is a Trojan for the Windows platform. When run
Troj/Banloa-FK attempts to download a file from a remote website to the location <Windows>\windowssys.
exe and sets the following registry entry:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run wi...
Troj/Dldr-M - Troj/Dldr-M at Sophos
...
Troj/FakeVir-BW - Troj/FakeVir-BW at Sophos
Troj/FakeVir-BW claims to be an anti-virus scanner called "Zinaps Anti-Spyware 2008".
Troj/FakeVir-BW scans the computer and reports clean files as being infected with malware.
When first run Troj/FakeVir-BW copies itself to <User>\Application
Dat...
W32/SillyFDC-CJ - W32/SillyFDC-CJ at Sophos
When run W32/SillyFDC-CJ creates the following files:
<Recycled>\<random tag>\Desktop.ini <Recycled>\<random tag>\ise32.exe -
copy of W32/SillyFDC-CJ W32/SillyFDC-CJ also creates the following files in logical
drives found on the infected com...
Troj/Agent-HCN - Troj/Agent-HCN at Sophos
...
Troj/Agent-HCO - Troj/Agent-HCO at Sophos
...
Troj/Ciadoor-DU - Troj/Ciadoor-DU at Sophos
Troj/Ciadoor-DU is a Trojan for the Windows platform. When Troj/Ciadoor-DU
is installed the following files are created: <User>\Application
Data\Macromedia\Flash Player\#SharedObjects\fz38nl24\localhost\wimpy.sol <User>\Application
Data\Macromedia\Flash ...
0 writebacks [06/17/2008 04:46]
[]
permanent link
|
Virus Malware and Threat News for 20080614
W32/Nuwar@MM!070EAE9D - W32/Nuwar@MM!070EAE9D at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32070EAE9DMD5aa74b6161294d7670dc4128924f0785eSHA16590D1EA803A1C0FF68A01775D3ECC167D3D5521Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!29D12D42 - W32/Nuwar@MM!29D12D42 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3229D12D42MD54c21a7855d07697d28f00ac9516ebe88SHA1F6E0ADE2121CBE5BF8846E199D6FDDDC7432AF3FOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.JLQDr.WebTrojan....
W32/Nuwar@MM!731D80EB - W32/Nuwar@MM!731D80EB at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32731D80EBMD5de316cfd4cb20807299fd139bacea01cSHA1427924719AE91F3AB5D68BAE3E993E452D64177COther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!8F7A9839 - W32/Nuwar@MM!8F7A9839 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC328F7A9839MD5319ec7e9f10c65716af6c0767eea6060SHA1279740C5230B7B2253823CD1C0003CC5985747B2Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.JLQDr.WebTrojan.Dow...
W32/Nuwar@MM!4C7EF19A - W32/Nuwar@MM!4C7EF19A at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC324C7EF19AMD5e75dfa3369d298b47dcf930912c28aabSHA15D02F7C092C6DB43534C28B68BAA00F20D603E74Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!CCBC3F7F - W32/Nuwar@MM!CCBC3F7F at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32CCBC3F7FMD58bf5844db6cf72d7d4e192c43c2fcf88SHA1F23F7DA750A070314EA8B928D2A44444CCD73515Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!35515D61 - W32/Nuwar@MM!35515D61 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC3235515D61MD52a15191d9b3718ef45af1e4e77a2c462SHA14134AA2CD2749041631558BEA2047839CD465A63Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!1DA2E9BF - W32/Nuwar@MM!1DA2E9BF at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC321DA2E9BFMD59f20beef819622824b59833604fef4d8SHA1AF249B5AC174038FFE869C09593F4C92D137FE38Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!F816E63D - W32/Nuwar@MM!F816E63D at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32F816E63DMD5a86c7de837081c68ca43882849d0c2ecSHA162EEE4C91254ACC3243AA8B1AF6FA6F4DC33E510Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!70F81E89 - W32/Nuwar@MM!70F81E89 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3270F81E89MD5fe45e54ef844dd236979856c4d760b5bSHA16C3EADEC9F98B9BD50479CBE2D4484386CC860CFOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!149B0860 - W32/Nuwar@MM!149B0860 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32149B0860MD511e71a897071b51debd6fe152aa8f681SHA13FB61D946A169DBE3D542B8D5A1F5C924ADD7485Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!0C71996E - W32/Nuwar@MM!0C71996E at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC320C71996EMD53aaf4ac21d5aaf3f22e061dcf6832f08SHA102C6832D39C87C485F5A691CD6D58AE0CD4BFE59Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!8250D9C2 - W32/Nuwar@MM!8250D9C2 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC328250D9C2MD5cc70255ea7b252382112faabb23396daSHA177C9149BC4E46FE2F62ED8D3CFDC6D10C7D68A7DOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!04C1CB3A - W32/Nuwar@MM!04C1CB3A at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3204C1CB3AMD5b14bbb5b9efc516e454640e0e78e657eSHA1AB121E9E2B987F07B2C0C50EDBB73A0B6D3BC686Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!3ED2EE55 - W32/Nuwar@MM!3ED2EE55 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength113,664
bytesCRC323ED2EE55MD5399b223ea24c62e02d43b37b69597ddbSHA129FCD9D7C9FE09C9D60A20DD9106F41E828297A7Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDeepScan:
Generic.Malware.SFMHY@mmign...
W32/Nuwar@MM!792DDD04 - W32/Nuwar@MM!792DDD04 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32792DDD04MD5d466390c98d5d3942b455606777645b7SHA1D01FF89604332DA70E99AB2F050B72B469B27DF8Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!31EBC27B - W32/Nuwar@MM!31EBC27B at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3231EBC27BMD56f1334ae6f4dbe62e733c22472135da8SHA163E50EA534390D8B37031345E9CF60B3834123FFOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!65F41668 - W32/Nuwar@MM!65F41668 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3265F41668MD5d10dab6044c6e348a2856138a0dd7743SHA1BE2D2854E99BDF21175EAA88F6BCA08672E00B7BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!C06B6533 - W32/Nuwar@MM!C06B6533 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32C06B6533MD57c0839a859d1ee5bf59e63c5e1d851c7SHA18F94A759DB595E8C480DF033B657B8847D74F650Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
Generic.fq!4DC138AC - Generic.fq!4DC138AC at McAfee
File PropertyProperty ValueFile Name39.exeMcAfee DetectionGeneric.fqLength147,968
bytesCRC324DC138ACMD561c988e05d6959d56b360750cb0e0594SHA146C781CC638D494D463DBACCAD36D0EE2AD72E16Other Common
Detection AliasesCompany NameDetection NameAvastWin32:Virtualizer [Cryp]AviraTR/Dropper.GenDr.WebTrojan.PWS.
Gamania.9932eSafe (Alladin)Suspicio...
W32/Nuwar@MM!06F882BA - W32/Nuwar@MM!06F882BA at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3206F882BAMD50db645924a463a2ebf50ecb548a41402SHA128ED4734CDD6A69B6C4ABBAED5FFE8E551342AE7Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!28577976 - W32/Nuwar@MM!28577976 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3228577976MD593129cc88729966c47489d787dbbcbaeSHA1DF8B26F9B6BAF57F1DAB30B3B40D189DCAA2B427Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!B318CF54 - W32/Nuwar@MM!B318CF54 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32B318CF54MD57ac703b53226e394f6ef6fcfd31ba527SHA1677519F6569B15F42B9BFAF35FF82792F8B6E5DFOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!1E473C4D - W32/Nuwar@MM!1E473C4D at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC321E473C4DMD5f9fc19a97180e85a3de58ced0d91fbdaSHA1AB485B19778C74B865DB60A4EB686121BA2B2606Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!48C1398D - W32/Nuwar@MM!48C1398D at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3248C1398DMD5392ba4f69283ac82e1a9284d129590bbSHA1C7DEF081C3620B26E9F256CA9996367DFB9CDE8BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!EE37F938 - W32/Nuwar@MM!EE37F938 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32EE37F938MD53e3f5a2334f9e37d153efe0f459072a8SHA16D738467939AE7BD851D7B511B43F6E44136551EOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!2FD74DD9 - W32/Nuwar@MM!2FD74DD9 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC322FD74DD9MD5b42f4674129f82c8be3aff88af71e4c1SHA19BE444BE778C73036BF54236C06630C0A738CECCOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!37077820 - W32/Nuwar@MM!37077820 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3237077820MD5ebb2c3cbf12137fdba9344d9db48c9c8SHA185CC65B3A40A6322CCBCD8C986D0A77DEDA4336EOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!EBC7BA3F - W32/Nuwar@MM!EBC7BA3F at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32EBC7BA3FMD59e91087fdb1c95e5caf216b92d1e8ca1SHA1B148B4128764709423B1FC402D082B062E4FF6B2Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!DF859579 - W32/Nuwar@MM!DF859579 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32DF859579MD54ddab769c0f7060d41b7f4062520af2cSHA1EEC8829187E3BEC3ADACCA7D2611432B772E56FCOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
TROJ_ZLOB.CCS - TROJ_ZLOB.CCS at Trend Micro
This memory-resident Trojan may be downloaded from remote sites by other malware. It may also be dropped by
other malware or downloaded unknowingly by a user when visiting malicious Web sites.When executed, it drops a
copy of itself with a random file name. It modifies registry entries to enable its automatic execution at
every sys...
TROJ_ZLOB.CCT - TROJ_ZLOB.CCT at Trend Micro
...
WORM_AGENT.THL - WORM_AGENT.THL at Trend Micro
...
TROJ_AGENT.DGW - TROJ_AGENT.DGW at Trend Micro
...
0 writebacks [06/15/2008 04:44]
[]
permanent link
|
Virus Malware and Threat News for 20080613
Adware.Peppi - Adware.Peppi at Norton Symantec
BehaviorAdware.Peppi is a security risk that may modify the contents of search-engine pages, display
advertisements, and change the browser home page.
...
VBS.Solow.G - VBS.Solow.G at Norton Symantec
VBS.Solow.G is a worm that spreads by copying itself to removable drives.
...
W32/Nuwar@MM!962894EC - W32/Nuwar@MM!962894EC at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32962894ECMD530739ad11f977fcdda9269c8c6816cdbSHA1A6D36BA2EE84DA6643D9E62FD63BD3B4E6F783ACOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!8048BD07 - W32/Nuwar@MM!8048BD07 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC328048BD07MD555ec7f3b50e6018d9c1dcbe31b7f0991SHA1BEED151D99C7667C819061576D05E30872950BC8Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!20C4558A - W32/Nuwar@MM!20C4558A at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3220C4558AMD51f45f35e9970cfd10dbd23b40cb2493fSHA11A581A93368A403B2AE6F97C2431217319F785E1Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!4CD178C6 - W32/Nuwar@MM!4CD178C6 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC324CD178C6MD5e9e883e7212f9acabb862c7a63b0df37SHA1E3269D1239E8CAB2AC6F093FAC0AEE7253920B4COther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!8F90D32B - W32/Nuwar@MM!8F90D32B at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength113,664
bytesCRC328F90D32BMD5b866fa7da2cb35481109576dd2f8e92fSHA16A5853723533B57D1FBB8D31D27A288B3CE15E39Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!055FC747 - W32/Nuwar@MM!055FC747 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32055FC747MD5a8c3095d8524244ec5c868eab0a938f6SHA17FBFC7D082D37AB351E27050BBE894CC114FB4FCOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!3909A7E1 - W32/Nuwar@MM!3909A7E1 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC323909A7E1MD59a8f3fe1c53a99e41498affd755d5219SHA1844A25B1740EB73BA7116E59E4F0E9A3F392058FOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!40ECC91A - W32/Nuwar@MM!40ECC91A at McAfee
File PropertyProperty ValueFile Name00000002.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3240ECC91AMD538d1e7c69640510c14a73b01545cf5d5SHA184D1E6A0778D0056B251561B648D2E0CBBCC68B5Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan....
W32/Nuwar@MM!7EB45396 - W32/Nuwar@MM!7EB45396 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC327EB45396MD58728e961eb1406b05175e5aff8d48b4aSHA12EC14D842034DEFEC657F1396E8FC5725EF51D1EOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!EF334C92 - W32/Nuwar@MM!EF334C92 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32EF334C92MD509333194CF7027C65D0771ADAC2B2AF7SHA1B41C0FBF45BF4A65C3238A61273D4BFF99CC1D50Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!314CBC70 - W32/Nuwar@MM!314CBC70 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32314CBC70MD57280702A35DB657187835508BC90CD22SHA1A58FC2FD3AD1C918E726FF43218B35AF3EAE6826Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!550A6357 - W32/Nuwar@MM!550A6357 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32550A6357MD512ec7aaaff71af7c6df19136e714a872SHA14D43BF08E6D79E3B86E87790BA2619F654B58AD0Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!A50E8C28 - W32/Nuwar@MM!A50E8C28 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32A50E8C28MD58ced07a13aeff8f805965f1d29aca251SHA185E640C50D1E8949A2D52E2B1CEDE3FEFF1F119DOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!B7458733 - W32/Nuwar@MM!B7458733 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32B7458733MD5dc0a7fab0820360c4bb4b3dbfdcdb487SHA19CF5EA5E600A5C728645B908A1DB8A9167B66D17Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!E2CCA075 - W32/Nuwar@MM!E2CCA075 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32E2CCA075MD5591cf06ba4ad2635af6bd36476552e8fSHA1BABFCD3C230D6E2AFD0CE1D8F0D2508461F482B1Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!74D6A51F - W32/Nuwar@MM!74D6A51F at McAfee
File PropertyProperty ValueFile Name00000000.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3274D6A51FMD58794b65f2712c0be12a917f38c02cb8cSHA1832DEC76B19E32100FF7721E01D125F3E9190BA6Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan....
W32/Nuwar@MM!BBBA0AAB - W32/Nuwar@MM!BBBA0AAB at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32BBBA0AABMD592f80908ea56f95792c593bd1af35872SHA1695532E916DD626A3E70A84D595AC21D1D06CF8EOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!44311CF2 - W32/Nuwar@MM!44311CF2 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3244311CF2MD51222196670ac9c3901624c29f141529dSHA12DC003D4B7ADD8ED19A6402EE69906DF26BC8FE2Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!4D33FD2B - W32/Nuwar@MM!4D33FD2B at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC324D33FD2BMD51ea354489f447691c8f03d410e838e88SHA1777C1ECAA93DEA71EE1D28DC345C67ED982733B8Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!3489F131 - W32/Nuwar@MM!3489F131 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC323489F131MD51939c83a0841d336354b7ad6ee9ed222SHA1041A9C7135379F1156347BF274B65642E5DCD43DOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!F11DEDE6 - W32/Nuwar@MM!F11DEDE6 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32F11DEDE6MD585647b23e7d264f4eac7891d98b73365SHA195D7B3F981AEEA3C5A56951086FC4496AE460E89Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!ECA9E9E7 - W32/Nuwar@MM!ECA9E9E7 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32ECA9E9E7MD5456f9c8f6bacee13ac3cd805672c3f1fSHA1A0F3C1CE79F7A67B25725ABBA41939D3D952DBDFOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!0E600E02 - W32/Nuwar@MM!0E600E02 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC320E600E02MD59faa69f9a78673d26759fd4c32e51bb6SHA13219B347D0B6A3BAF9E69DD46FFF211A7ED0A6B6Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!1E6C2323 - W32/Nuwar@MM!1E6C2323 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC321E6C2323MD54b932e49626856d315df6a8697399e15SHA1D58E282D463BF518CAAFDA03CF7D86FE3ACC56A9Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!C33212D1 - W32/Nuwar@MM!C33212D1 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32C33212D1MD59125d8e7353ec4d3efbbe5d42225eedfSHA1AA4BF70C6F312BD4CC51F81F1FE9925E65F55937Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!265B3FEE - W32/Nuwar@MM!265B3FEE at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32265B3FEEMD5199781e535aea3f2a4602774c0cf7791SHA1EAC7AB1126D44D6C06A80C49CBD77BA77202E925Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!7B765AA0 - W32/Nuwar@MM!7B765AA0 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC327B765AA0MD5b8ede38ac7196ccf07cc8e89a667e059SHA127C8CCA4A2A76529E3298D785389C420417C9623Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!485DA3E9 - W32/Nuwar@MM!485DA3E9 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32485DA3E9MD5f10d76e23773cf98b843eb862c0b4c76SHA1401DD13F56CEAA7B07CA04344F8C84D333623E57Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!63F1229F - W32/Nuwar@MM!63F1229F at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3263F1229FMD505347dbaaee36a0e1c72c1c1d428ab19SHA1822459F2C2B5C870324AC243C27B32D3631DAFFBOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!B13EC46C - W32/Nuwar@MM!B13EC46C at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32B13EC46CMD5a7ee796ef56408a6457411fc8e8d625bSHA195E168E848321CF68C55FB21763A9C96EF8ED2B9Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
Mal/Zirit-A - Mal/Zirit-A at Sophos
...
Troj/Agent-HCG - Troj/Agent-HCG at Sophos
Troj/Agent-HCG is a Trojan for the Windows platform. When Troj/Agent-HCG is
installed it creates a randomly named dll file in the <System> folder, for example:
<System>\jkkJdAqR.dll The following registry entries are created to
ru...
Troj/FakeAle-CF - Troj/FakeAle-CF at Sophos
Troj/FakeAle-CF claims to be anti-spyware software. After scanning the system, the Trojan reports
spurious malware infections and "hacking attempts" and invites the user to pay to have the fictional threats
removed. ...
W32/Looked-EH - W32/Looked-EH at Sophos
W32/Looked-EH infects .exe files on the computer. Additionally, W32/Looked-EH attempts to infect
files on network shares. When W32/Looked-EH is installed the following files are
created: <Windows>\uninstall\rundl123.exe The following registry entry
is created ...
Troj/FakeAle-CE - Troj/FakeAle-CE at Sophos
...
Troj/VB-DZW - Troj/VB-DZW at Sophos
...
VBS/AutoRun-FE - VBS/AutoRun-FE at Sophos
VBS/AutoRun-FE is a worm for the Windows platform
...
Troj/Bckdr-QNU - Troj/Bckdr-QNU at Sophos
Troj/Bckdr-QNU is a backdoor Trojan for the Windows platform, which allows a remote intruder to
gain access. Troj/Bckdr-QNU has the functionalities to: - be a proxy server
- download files from preconfigured URL - steal Information - upload files to
precon...
Troj/BHODLL-K - Troj/BHODLL-K at Sophos
...
0 writebacks [06/14/2008 04:48]
[]
permanent link
|
Virus Malware and Threat News for 20080612
Backdoor.Bifrose.L - Backdoor.Bifrose.L at Norton Symantec
Backdoor.Bifrose.L is a Trojan horse that opens a back door on the compromised computer.
...
W32/Winko.worm!5D952DE4 - W32/Winko.worm!5D952DE4 at McAfee
File PropertyProperty ValueFile Name!itw#320.exeMcAfee DetectionW32/Winko.wormLength17,371
bytesCRC325D952DE4MD5b253e7bd575351faf33bffaf8499f1bdSHA19D4F0CF682993C2ED40DD68F242E5EE61864696COther Common
Detection AliasesCompany NameDetection NameAhnLabWin32/Autorun.worm.17378AvastWin32:AutoRun-ICAVG
(GriSoft)Downloader.Small.BYNAviraWo...
W32/Sdbot.worm!18C502F5 - W32/Sdbot.worm!18C502F5 at McAfee
File PropertyProperty ValueFile Name!itw#2~1.exeMcAfee DetectionW32/Sdbot.wormLength571,392
bytesCRC3218C502F5MD5672EBE523A7EBD0A884B5CB7D7DD3888SHA1EA403AA0BE5B77B27EE016DEF9013E0CF5608675Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/Xpack.571392AvastWin32:SdBot-5246 [Trj]AVG
(GriSoft)IRC/BackDoor.SdBot3.Y...
W32/Generic.worm.ac!D1961475 - W32/Generic.worm.ac!D1961475 at McAfee
File PropertyProperty ValueFile Name!itw#2.exeMcAfee DetectionW32/Generic.worm.acLength377,344
bytesCRC32D1961475MD56e5317b18d190a021c75b11ecf16d560SHA1C17D66BB770F5A8F4BA3CA0F3E4E764A1F5EFADDOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/Xema.377344AvastWin32:Delf-JJX [Wrm]AVG
(GriSoft)Worm/Delf.GWNAviraWor...
BackDoor-DKA!B4853915 - BackDoor-DKA!B4853915 at McAfee
File PropertyProperty ValueFile Name!itw#198.exeMcAfee DetectionBackDoor-DKALength17,151
bytesCRC32B4853915MD570a1b2053067a709ea085d52015d43edSHA1D999A905144C4FAEA96FC2CFCD3D1F0B4FD2FBDDOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/Popwin.17151AvastWin32:Trojan-gen {Other}AVG
(GriSoft)Dropper.Generic.UIRAvi...
W32/Nuwar@MM!BBFD6780 - W32/Nuwar@MM!BBFD6780 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32BBFD6780MD521b2ab045d7008a2372256027ba0fad7SHA14CE85EE8537DD9D2AB66438F73D177E1A824641COther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!6C4DF037 - W32/Nuwar@MM!6C4DF037 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC326C4DF037MD55d7d0bf00dc5f05457d32c8bf210d4b5SHA11C1F993907F1552591A2BFE95CDCB3AB806B9B58Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!FAEAF34F - W32/Nuwar@MM!FAEAF34F at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32FAEAF34FMD5393a6cd2afd7df9837ccc2e10e04a668SHA14FA970426DEDD76E1A7EE7A32FBCEC430132CDD3Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!1A3E7DC9 - W32/Nuwar@MM!1A3E7DC9 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC321A3E7DC9MD5b2206617784a1af6f64e97026fa56c29SHA128779C5FCEF72E51624EBED4B94253199D808CA3Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!34C65B04 - W32/Nuwar@MM!34C65B04 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3234C65B04MD536cc304b39aed724067381d44e0448aeSHA1EB25D3816E033646D5D0DD04A5F76BB3A01D066EOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!E736DAC1 - W32/Nuwar@MM!E736DAC1 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32E736DAC1MD501b03fb3f0c1705f29d271ad424bfdbaSHA19159D040FE76F9D531825B2296768A41CD115B87Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!518AD073 - W32/Nuwar@MM!518AD073 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32518AD073MD5f84431d446bc5989b5a7a1c28939960aSHA14D49031444C59C338D8AB3A4EB76A45F92C45824Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!7400FB02 - W32/Nuwar@MM!7400FB02 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC327400FB02MD5769c6679ebba6a70248ed3eac103d1e5SHA1C4C3E9BEB97859CB11955D46BC2CBCC909E75E38Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!1037B612 - W32/Nuwar@MM!1037B612 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC321037B612MD5837ec72e7f4da258a2d590238f5bc3b0SHA1D380EA585C0EBBD562EFB0ABB9E602BB033704DEOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!D29E5774 - W32/Nuwar@MM!D29E5774 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32D29E5774MD53f77bc76212fe30340ad534c06dcea25SHA10F2139A5104440604B0B123C153C7350DF1B80A1Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!45E372C3 - W32/Nuwar@MM!45E372C3 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3245E372C3MD5eee89fdde220b82f696b58865f844511SHA1A10344B436DBE474F732F188C3225E37D8B08126Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!CD41A1F9 - W32/Nuwar@MM!CD41A1F9 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32CD41A1F9MD5bc3ef5ceda2c1fe9596f4339ef1284f6SHA16933CFC3D958CCB921C009FC54126DF3C88BE23EOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!923E8366 - W32/Nuwar@MM!923E8366 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32923E8366MD52921bf466f87eb17270f4b2cb249ab79SHA1E19E44F6BCF6E4EFCD9FC4FD52515C14C75FDFB0Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!09C97C3F - W32/Nuwar@MM!09C97C3F at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3209C97C3FMD53b1474e6fe125373acac0757dd2c6754SHA105F8A74BD0E3B40661C4E4DBA98C510B50AAA175Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!81990602 - W32/Nuwar@MM!81990602 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3281990602MD5455B707A761A4FCBE82CCF44F9B7FA88SHA10939153C9A9F9356C733A728F238BC61881370C6Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!A34B4637 - W32/Nuwar@MM!A34B4637 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32A34B4637MD5f8df52a2781aedfe917e858f46c7d21aSHA1961E497AF0B7D97F48DF05A76419E1467F3EE48DOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!4DF676E6 - W32/Nuwar@MM!4DF676E6 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC324DF676E6MD5B7B8420AF731B8CBD3458ACC1E2A13A9SHA1A00C49620D9C734980E8487A22211C7E1C10BB70Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!FE07CABC - W32/Nuwar@MM!FE07CABC at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32FE07CABCMD510fde35a3c0bcd3e8ce44abb54fdab88SHA1F8E262E0AA065807C2AA2259980EA3726C90E91AOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
PWS-OnlineGames.as!16ABF5D3 - PWS-OnlineGames.as!16ABF5D3 at McAfee
File PropertyProperty ValueFile Namez19.exeMcAfee DetectionPWS-OnlineGames.asLength19,027
bytesCRC3216ABF5D3MD52fc1d57d267f8f5cda1540737c433666SHA110DC366170F975E2C5841BD25D2F624AD28971EFOther Common
Detection AliasesCompany NameDetection NameAvastWin32:OnLineGames-DQP [Trj]AviraTR/Crypt.XDR.
GenBitDefenderTrojan.PWS.OnlineGames.YZLDr...
PWS-OnlineGames.as!34C93382 - PWS-OnlineGames.as!34C93382 at McAfee
File PropertyProperty ValueFile Namez30.exeMcAfee DetectionPWS-OnlineGames.asLength19,687
bytesCRC3234C93382MD50d311f5a286ccfd6db35ec4e02643e92SHA1D7D07A5698B6B5844196C42687D18AE798BF2FBEOther Common
Detection AliasesCompany NameDetection NameAvastWin32:OnLineGames-DQP [Trj]AviraTR/Crypt.XDR.
GenBitDefenderTrojan.PWS.OnlineGames.YZLDr...
W32/Nuwar@MM!23842B48 - W32/Nuwar@MM!23842B48 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3223842B48MD5249f777c656725be9031acf9f90ebf0bSHA132FAB7205F70C3D5082DDD8FE562207376079697Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!C9A80A45 - W32/Nuwar@MM!C9A80A45 at McAfee
...
W32/Nuwar@MM!6F94A165 - W32/Nuwar@MM!6F94A165 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC326F94A165MD5bb8f1b7ae00923f401b365e13a8a2041SHA11604FDF4494E7B9B16F4136F747E1EF29C1A5B01Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!2868DB3A - W32/Nuwar@MM!2868DB3A at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC322868DB3AMD59fb488091cf0057efaa45e1487b27acfSHA130D6EAB8D240735F0B5C576A089F9DA22FC6B651Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!D995CA06 - W32/Nuwar@MM!D995CA06 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32D995CA06MD5250bc378bb76fc414a99763148733f3cSHA1E0C806ABD543FA127466F480D57FE6A9DB22A215Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!41D51B33 - W32/Nuwar@MM!41D51B33 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3241D51B33MD599ca4aae4e713302a10e0d49b9e4e0feSHA1408BCAE108C2BA64B2BBA472F4879BBF84D6939DOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
PE_PATCHEP.A - PE_PATCHEP.A at Trend Micro
This file infector may be dropped by other malware. It is the Trend Micro detection for the modified copy of a
legitimate file that contains an injected code.Upon execution, this file infector uses a certain API to load
and execute a .DLL file detected by Trend Micro as TROJ_AGENT.DGW.As a result, malicious routines of the .DLL
file ...
Troj/Dialer-FJ - Troj/Dialer-FJ at Sophos
...
Troj/Agent-HCE - Troj/Agent-HCE at Sophos
...
Troj/Dloadr-BMM - Troj/Dloadr-BMM at Sophos
...
Troj/Mdrop-BTF - Troj/Mdrop-BTF at Sophos
Troj/Mdrop-BTF drops files detected as: W32/Autorun-FC
Troj/Rootkit-CV
Troj/Agent-HCE...
Troj/Rootkit-CV - Troj/Rootkit-CV at Sophos
...
W32/Autorun-FC - W32/Autorun-FC at Sophos
...
Troj/Dloadr-BML - Troj/Dloadr-BML at Sophos
Troj/Dloadr-BML is a Windows Media file that attempts to exploit Windows Media Player into
acquiring a fake license file. At the time of writing, the "license file" is a
malicious file detected as Mal/Generic-A.
...
Troj/FakeAle-CB - Troj/FakeAle-CB at Sophos
...
Troj/FakeAv-V - Troj/FakeAv-V at Sophos
Troj/FakeAv-V is a Trojan for the Windows platform. Troj/FakeAv-V includes
functionality to access the internet and communicate with a remote server via HTTP.
When Troj/FakeAv-V is installed the following files are created:
<User>\Application Data\...
Mal/VBDloadr-A - Mal/VBDloadr-A at Sophos
...
0 writebacks [06/13/2008 04:42]
[]
permanent link
|
Virus Malware and Threat News for 20080611
Trojan:W32/VB.BKX - Trojan:W32/VB.BKX at F-Secure
Trojans are malicious programs that pretend be to benign. Trojans do not replicate themselves.
...
W32/Nuwar@MM!0011A838 - W32/Nuwar@MM!0011A838 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC320011A838MD5f4300364570065ff0ce924487515488bSHA1A869A0297EA519C879AC09F8A3C2A27721F448C3Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!2494C6E0 - W32/Nuwar@MM!2494C6E0 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC322494C6E0MD5a38245cbffe70e9bdeaa69b9ba29eb59SHA11421D44FA8B5D6530224B7D3E1A21077E1C5F015Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!4D046450 - W32/Nuwar@MM!4D046450 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC324D046450MD5876e946bb1af136c8fdac1c5379737a6SHA1F6F3420ED60DC6A2C00F356EBA792ECCADE694D5Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!4B44B2E8 - W32/Nuwar@MM!4B44B2E8 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC324B44B2E8MD52793cbe7cb5708ced5b3daf208fb5e0cSHA1C38118C7FFE30FFA3AB314403647FE965A846EAEOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!092A2A95 - W32/Nuwar@MM!092A2A95 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32092A2A95MD58517877b4ae1845bab89e166dfc2530bSHA12BDABA45AF1EE467F6D58AD2B8A6A2AA3893F6A6Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!3C96C037 - W32/Nuwar@MM!3C96C037 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC323C96C037MD5ce0469a36e9c8e2cb590f29b1052cf85SHA177E739C251C2F6EFE7D04F290EB6D7A70E3D281BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!8D685E7A - W32/Nuwar@MM!8D685E7A at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC328D685E7AMD5d4b451ab1ddf21d5fc08319469432eecSHA199A5A4D00B0C98B42B4913164E32D86D137D2560Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!E712D42F - W32/Nuwar@MM!E712D42F at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32E712D42FMD57ed8397507611e2da10186466fbd7a00SHA1745A0835121CDC6BC82305D1C37C4BF9127D816COther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!913C0106 - W32/Nuwar@MM!913C0106 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32913C0106MD5f7fda082468efadbcd5e7f5f29629fd4SHA183F8313BA8D9ECEF6B444A166E7003560463CE71Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!848DF6A6 - W32/Nuwar@MM!848DF6A6 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32848DF6A6MD561f943095bfe28ec4fc8c102a38532a6SHA16682D29FD58B61E6AD026BFEFDD97A429F9891E0Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!14DF5CC1 - W32/Nuwar@MM!14DF5CC1 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3214DF5CC1MD5ce44b6d80fa9281aed83a0f21b70baadSHA1C8FC348486CE1B638F9CC8ED24A348629EAE1C9EOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!87DAD950 - W32/Nuwar@MM!87DAD950 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3287DAD950MD522ba901d68742e0ea36d825c41e45998SHA1E9EBED120BF24C7FBFA0DCB5CBED69405D0FE3C1Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!31815E09 - W32/Nuwar@MM!31815E09 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3231815E09MD552791915d884f646cb25b6dd42ba26c2SHA14A7A4E194EEC01B3051396898CFA6252C057263EOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!46880DBC - W32/Nuwar@MM!46880DBC at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3246880DBCMD5ecb6509974231d6e350f849e49c5f68aSHA1318ADD3D4C6B0B1062025477E6934FBCFD281336Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!7675A845 - W32/Nuwar@MM!7675A845 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC327675A845MD53351bc0ef02dfd938a18c028b25aeacaSHA142A5A200CF723463DBE7284BDB7BDA3AE29784BDOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!69252CE2 - W32/Nuwar@MM!69252CE2 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3269252CE2MD5f18c09502ef44d9c79b424c13b95a862SHA1BA4C3B27A467F3D281F9AB22F6D51F70A2B2CAD8Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!2699A609 - W32/Nuwar@MM!2699A609 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC322699A609MD5ed1d096332663ef4b8d091f7b95aa3b2SHA15C5FB02CB651357E36199C894CD44C66778E796FOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!0FE4B5EC - W32/Nuwar@MM!0FE4B5EC at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC320FE4B5ECMD51ece469b3d37bd586b4612597f37c86bSHA183F577CAAB8B7672FB0385864DDBAD942097ECAFOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!BE003A62 - W32/Nuwar@MM!BE003A62 at McAfee
File PropertyProperty ValueFile Nameiloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32BE003A62MD59ecf7a143b2b6e23f6a8c47227fa9ceeSHA1F37C2941382D28EC1F87BF275BD3001311B24124Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan....
W32/Nuwar@MM!6B960D31 - W32/Nuwar@MM!6B960D31 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC326B960D31MD5b2ed98634c2bc01e432f0b0942bc4557SHA1571DC8B4CC3E7C2D9DF9B96669FB4788CA272032Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!D4503C2F - W32/Nuwar@MM!D4503C2F at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32D4503C2FMD59319ee39bf3005cc94e1feb358265cf2SHA14A1368436576B83CA7BCDC196E0C1EB93BF509C8Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
Downloader-BIS!0E7D5BBB - Downloader-BIS!0E7D5BBB at McAfee
File PropertyProperty ValueFile Nameko.exeMcAfee DetectionDownloader-BISLength22,424
bytesCRC320E7D5BBBMD5cf6d964cc683d37668708cbfe65b7c03SHA15E0FC38BEB14BEF214FE8A48FC3B2C5696F115C5Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/Losabel.22424AvastWin32:Trojan-gen {Other}AVG
(GriSoft)Downloader.Generic7.QQKAv...
PWS-Mmorpg.gen!40C4C821 - PWS-Mmorpg.gen!40C4C821 at McAfee
File PropertyProperty ValueFile Name25.exeMcAfee DetectionPWS-Mmorpg.genLength18,221
bytesCRC3240C4C821MD5f8d27c5c329f2d40205e91b55c9b71a4SHA11DE6EB954386CC7C88DA0F1A4DA1D77613BB9444Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.18221.BAvastWin32:OnLineGames-DQS
[Trj]AVG (GriSoft)PSW.OnlineGam...
PWS-OnlineGames.z!C0925734 - PWS-OnlineGames.z!C0925734 at McAfee
File PropertyProperty ValueFile Name9.exeMcAfee DetectionPWS-OnlineGames.zLength19,423
bytesCRC32C0925734MD5320161e904439a2b9167943d3b29cb29SHA1E07291204272312F367801B8B2A66F45A81622E5Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.19423.BAvastWin32:OnLineGames-DQP
[Trj]AVG (GriSoft)PSW.OnlineG...
PWS-Mmorpg.gen!4678C23E - PWS-Mmorpg.gen!4678C23E at McAfee
File PropertyProperty ValueFile Name8.exeMcAfee DetectionPWS-Mmorpg.genLength32,768
bytesCRC324678C23EMD5af446078529fcd39b7af7902ca0f1d3aSHA16DD86419412DC62603A64B480D4780AC7388FBE7Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.32768.BVAvastWin32:OnLineGames-DQT
[Trj]AVG (GriSoft)PSW.OnlineGam...
PWS-OnlineGames.z!ACDB1847 - PWS-OnlineGames.z!ACDB1847 at McAfee
File PropertyProperty ValueFile Name19.exeMcAfee DetectionPWS-OnlineGames.zLength19,571
bytesCRC32ACDB1847MD521484180bf73a961a74073ab3d72533fSHA139F01B8F72DE8B2C2346FE83061D82DA11B37DB6Other Common
Detection AliasesCompany NameDetection NameAvastWin32:OnLineGames-DQP [Trj]AVG (GriSoft)PSW.OnlineGames.
ARLVAviraTR/Crypt.XDR.GenBitDefen...
Generic PWS.y!88431D87 - Generic PWS.y!88431D87 at McAfee
File PropertyProperty ValueFile Name24.exeMcAfee DetectionGeneric PWS.yLength18,077
bytesCRC3288431D87MD58c908d802a89548f890a3c2a5cf851f3SHA192CB060F1172D613212E346BFFA8B005ABECDA49Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.18077.BAvastWin32:OnLineGames-DQS
[Trj]AVG (GriSoft)PSW.OnlineGame...
Generic PWS.y!F6660367 - Generic PWS.y!F6660367 at McAfee
File PropertyProperty ValueFile Name21.exeMcAfee DetectionGeneric PWS.yLength20,261
bytesCRC32F6660367MD5941e24a13e1d72d7963f530d9dd56285SHA1EAD978B7C12FF045CFC42DD0679769BC11173B31Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.20261.DAvastWin32:OnLineGames-DQS
[Trj]AVG (GriSoft)PSW.Generic6.M...
PWS-OnlineGames.as!52984F66 - PWS-OnlineGames.as!52984F66 at McAfee
File PropertyProperty ValueFile Name18.exeMcAfee DetectionPWS-OnlineGames.asLength19,347
bytesCRC3252984F66MD5036ca8758778457f926aeb4a5d606545SHA1857062C3A1275468AA0F97ECC1B8D11CB58353F3Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.2653.DAvastWin32:OnLineGames-DQP
[Trj]AVG (GriSoft)PSW.Online...
PWS-LegMir.gen.h.dll!D61F2ED1 - PWS-LegMir.gen.h.dll!D61F2ED1 at McAfee
File PropertyProperty ValueFile Name12.exeMcAfee DetectionPWS-LegMir.gen.h.dllLength15,706
bytesCRC32D61F2ED1MD519381cb4418ca5969fd78283cc12f704SHA16434940B920A9F69D652638E235799284563EC01Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.15706AvastWin32:Trojan-gen
{Other}AVG (GriSoft)PSW.OnlineGa...
Troj/Dialer-FI - Troj/Dialer-FI at Sophos
Troj/Dialer-FI is a Trojan for the Windows platform. When run
Troj/Dialer-FI creates the files: <Program Files>\altcmd\altcmd.inf - can be safely removed
<Program Files>\altcmd\altcmd.dll - detected as Troj/Dialer-FI <Program
Files>\altcmd\uninsta...
Troj/DwnLdr-HEH - Troj/DwnLdr-HEH at Sophos
Troj/DwnLdr-HEH is a downloader Trojan for the Windows platform. When run
Troj/DwnLdr-HEH sets the following registry entry to run itself on startup:
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon Shell Explorer.exe <path
to Trojan executab...
Troj/Agent-HCB - Troj/Agent-HCB at Sophos
...
Troj/Agent-HCC - Troj/Agent-HCC at Sophos
...
Troj/Banker-EMA - Troj/Banker-EMA at Sophos
Troj/Banker-EMA is a Trojan for the Windows platform. Troj/Banker-EMA
attempts to steal login credentials from certain banks and transmit them to a remote user. It may also attempt
to terminate legitimate components of banking software. The Trojan may drop additional
files. Th...
Troj/BanSpy-I - Troj/BanSpy-I at Sophos
Troj/BanSpy-I modifies the host file located at <System>\drivers\etc\host to redirect users
to a malicious site when they try to access common online banks.
...
Troj/Bckdr-QNX - Troj/Bckdr-QNX at Sophos
Troj/Bckdr-QNX includes functionality to access the internet and communicate with a remote server
via HTTP. Registry entries are created under:
HKLM\SOFTWARE\Microsoft\VideoPlugin...
Troj/Dialer-FH - Troj/Dialer-FH at Sophos
...
Troj/Dload-CI - Troj/Dload-CI at Sophos
Troj/Dload-CI is a Trojan for the Windows platform. Troj/Dload-CI includes
functionality to download, install and run new software. At the time of writing,
Troj/Dload-CI downloaded and installed the following:
<Windows>\iexplorerconfigwin.exe - de...
Troj/Dloadr-BMH - Troj/Dloadr-BMH at Sophos
When first run Troj/Dloadr-BMH creates one or more of the following files:
<Temp>\rad<random hexadecimal digits>.vbs - also detected as Troj/Dloadr-BMH
<Temp>\rad<random hexadecimal digits>.htm - can be safely deleted.
Troj/Dloadr-BMH creates...
0 writebacks [06/12/2008 04:42]
[]
permanent link
|
Virus Malware and Threat News for 20080610
Trojan-Dropper:W32/Agent.SLH - Trojan-Dropper:W32/Agent.SLH at F-Secure
Trojan-Droppers typically contain multiple malicious files that are dropped on the infected computer. The
dropped files include backdoors, bots, trojans, et cetera.
...
Trojan.Downexec.B!inf - Trojan.Downexec.B!inf at Norton Symantec
Trojan.Downexec.B!inf is a detection for files infected with code that downloads and executes potentially
malicious files....
W32/Nuwar@MM!26584D1F - W32/Nuwar@MM!26584D1F at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3226584D1FMD5549d18bfb182326c6e1d892d65bede20SHA1CD4F8277B4D81B451903FE28196B42D835BD17BDOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!46CBDDE2 - W32/Nuwar@MM!46CBDDE2 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC3246CBDDE2MD536fbcb305e842f0147fe16655e0e85e0SHA1201CCA4C1194C4E61F7B87E5089D33ED65B8A5A4Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!6285B7D0 - W32/Nuwar@MM!6285B7D0 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC326285B7D0MD53a281944537fcda46a9f5da47886b86eSHA1AB2B92A2E2C4563C0B34A97D99AB2054D7530820Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!69671824 - W32/Nuwar@MM!69671824 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3269671824MD562df597e82ada843260efc988762860eSHA1F5BF8130EBEB13C490616E813195724987C63EADOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!B3F6A659 - W32/Nuwar@MM!B3F6A659 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32B3F6A659MD587a065c9808eb34d27ad8efc51088991SHA12E9A35B0558CC2CF78D2983F44FFBB22506B8608Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!949393C5 - W32/Nuwar@MM!949393C5 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32949393C5MD538b23b1da3654048afa1ab774959e277SHA19EE015644ADFE1E0E6D5234442CA3051E6FD5EBEOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!A5B4CD27 - W32/Nuwar@MM!A5B4CD27 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32A5B4CD27MD51da3d0d58ad74d443faffce8c7a8597fSHA175258AEA443BCE04EC06020F4F6B7F898CFA19C6Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!8132A800 - W32/Nuwar@MM!8132A800 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC328132A800MD5d803317c16dcc94c56b09ef7744c44dbSHA1000021FAD14C6D5F8651CD36B6A6827EB4B91B65Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
Generic MultiDropper.d!E6B7F3BC - Generic MultiDropper.d!E6B7F3BC at McAfee
File PropertyProperty ValueFile Namea.exeMcAfee DetectionGeneric MultiDropper.dLength111,837
bytesCRC32E6B7F3BCMD55ce1bf31ac9cb62a7a30c1117a662892SHA136DB8820091A2B08381FDE3D4F0143BAE87E451COther Common
Detection AliasesCompany NameDetection NameBitDefenderDropped:Trojan.Downloader.VB.VPGDr.WebTrojan.DownLoader.
56730FortiNetMultidr.D...
W32/Nuwar@MM!40BC0D11 - W32/Nuwar@MM!40BC0D11 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3240BC0D11MD51e7f207ab6f544d9aca9fe305dd57d13SHA1E41E4D9706E70640029A92E82C73F3103781B3B4Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!772E615E - W32/Nuwar@MM!772E615E at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32772E615EMD577f20a162f4fc0a7853e1d892c35bf11SHA10496FD4714344814F7132775DB8898A31FEDC1BCOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!10C89ED9 - W32/Nuwar@MM!10C89ED9 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3210C89ED9MD5c81cd25b36ce1613440c310fa3469bb8SHA1ECC0B13F0C868428FBCE97E184EEF38DF28F3B34Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!E986784F - W32/Nuwar@MM!E986784F at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32E986784FMD5f7af3477a92df12964963632573de5b1SHA1F6F4032AD23AFF19159E4DAD686B68BCD46CE0CAOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
W32/Nuwar@MM!5CBE346D - W32/Nuwar@MM!5CBE346D at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC325CBE346DMD5bf60c23fddc3ae1ba5916cbe29a3466eSHA1DC4949A62E5DC3D03E8F16AEE2AA8C96B564610COther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!6CF5863D - W32/Nuwar@MM!6CF5863D at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC326CF5863DMD5341fb4e7fd6a188fce20f6cc2f33feeeSHA14B32266D5877264DC870807AD68678F3EE477A0AOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.Down...
Generic FakeAlert!1930E752 - Generic FakeAlert!1930E752 at McAfee
File PropertyProperty ValueFile Namelphcer~1.exeMcAfee DetectionGeneric FakeAlertLength92,160
bytesCRC321930E752MD5CDC9620BA5A120E9D00ABD9F6B14C447SHA19AA8D4CBBA3F02A326FA145E67B58F0B2ED1E6BBOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)Agent.WLQAviraTR/Peed.JLGBitDefenderTrojan.Peed.
JLGeSafe (Alladin)Suspiciou...
W32/Nuwar@MM!9F7C6A66 - W32/Nuwar@MM!9F7C6A66 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC329F7C6A66MD586d7b087543039279c126b71c101b823SHA16AE77B58D6BD6A6454A401676BCD5660CC7D15D8Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!E6259EE8 - W32/Nuwar@MM!E6259EE8 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32E6259EE8MD5c6a5660cd6fdcd6a3f3df498dac9e61aSHA13AD54FB61F1106F314BED0D134F7D3FCDC441A14Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!CFCDC64E - W32/Nuwar@MM!CFCDC64E at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32CFCDC64EMD5d8af34687f61e9a84f7b7449d82f8d8bSHA1A7401B0DB6ACE60C5511605EC829A26AC59EF84FOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Nuwar@MM!6E31440A - W32/Nuwar@MM!6E31440A at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC326E31440AMD5480c025840a520948f75f41c191d88a0SHA139083D005E243BA2CDD7C2D7A21AA29F0AF3A4C7Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
PWS-Mmorpg.gen!0974F30D - PWS-Mmorpg.gen!0974F30D at McAfee
File PropertyProperty ValueFile Namesoft12.exeMcAfee DetectionPWS-Mmorpg.genLength18,204
bytesCRC320974F30DMD5a6edff042d153db18ebe4dfda5fcb657SHA197F9DC1B6D7EE9B9EB1E10D622D5BC723161C0FBOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.18204.JAvastWin32:OnLineGames-DQS
[Trj]AVG (GriSoft)PSW.Onlin...
Generic Downloader.c!6BAB386C - Generic Downloader.c!6BAB386C at McAfee
Avert® Labs has observed the following system activities:ActivityRisk LevelModifies Memory of Other
ProcessesHighEnumerates running ProcessesMediumEnumerates open windowsLowWrites Executable in the Windows
FolderLowSystem ChangesThese are general defaults for typical path variables. (Although they may differ, these
examples are co...
PWS-Mmorpg.gen!EDD4A77D - PWS-Mmorpg.gen!EDD4A77D at McAfee
File PropertyProperty ValueFile Namesoft11.exeMcAfee DetectionPWS-Mmorpg.genLength19,740
bytesCRC32EDD4A77DMD5ea02c2f51dc89530e418e52a9813fb90SHA14FCAA452D615C6F7728E14E5BE0132C4A8F9F90AOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.19740.PAvastWin32:OnLineGames-DQS
[Trj]AVG (GriSoft)PSW.Onlin...
Generic PWS.y!4DAE29E9 - Generic PWS.y!4DAE29E9 at McAfee
File PropertyProperty ValueFile Namesoft14.exeMcAfee DetectionGeneric PWS.yLength19,205
bytesCRC324DAE29E9MD55b56a0713d3891dcda1bb1d63999f243SHA17A8D73A69411A8D337F9FC844454DE22A4FBDA8BOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.19205.CAvastWin32:OnLineGames-DQN
[Trj]AVG (GriSoft)PSW.Online...
Generic PWS.y!5B249DCD - Generic PWS.y!5B249DCD at McAfee
File PropertyProperty ValueFile Namesoft13.exeMcAfee DetectionGeneric PWS.yLength18,613
bytesCRC325B249DCDMD5c382aa3fafe688986f88385a2519dddbSHA1638E0E95DBC0469CC0937FBADBE5219BD02643E1Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.18613AvastWin32:OnLineGames-DQS
[Trj]AVG (GriSoft)PSW.OnlineGa...
Spy-Agent.by!EC4042E0 - Spy-Agent.by!EC4042E0 at McAfee
File PropertyProperty ValueFile Name40.exeMcAfee DetectionSpy-Agent.byLength183,893
bytesCRC32EC4042E0MD57b46a0000a6db40679f03d50c9aa7edaSHA1B5CDC4DEB49C221B55ADF6FC355CBB923C859EDEOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/MalPacked.GenAviraDR/Agent.AHKC.
5BitDefenderDropped:Trojan.Agent.AHKCDr.WebTrojan...
W32/Nuwar@MM!134426EE - W32/Nuwar@MM!134426EE at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32134426EEMD5b81a5d53e8bb4fca769522cbf971dd16SHA16F3877F0953E045F3BAE7C0B5C9D6C875E764767Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
W32/Autorun.worm.h!9EE74C69 - W32/Autorun.worm.h!9EE74C69 at McAfee
File PropertyProperty ValueFile Namer.exeMcAfee DetectionW32/Autorun.worm.hLength27,664
bytesCRC329EE74C69MD5206c535af89e8a0928987db0c123db13SHA13F9350BE3224D87ACFE7AB78DD2BECFE8F841FE7Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/MalPacked.GenAviraTR/ATRAPS.GenBitDefenderGenPack:
Generic.Malware.PVdldPkg.5F...
W32/Nuwar@MM!B7675BA1 - W32/Nuwar@MM!B7675BA1 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32B7675BA1MD52743c370ab07b27f497bd1558cb1dce4SHA1128E4A81C59EBFD2E41836182FA3BA9F5C5EB414Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraTR/Dropper.GenBitDefenderDropped:
Trojan.Peed.PMDr.WebTrojan.D...
TROJ_GPCODE.AD - TROJ_GPCODE.AD at Trend Micro
...
Troj/Bckdr-QNW - Troj/Bckdr-QNW at Sophos
When first run Troj/Bckdr-QNW copies itself to the Windows system folder.
The following registry entry is created to run Troj/Bckdr-QNW on startup:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run <original Trojan filename>
<System>\<orig...
Troj/Istbar-DS - Troj/Istbar-DS at Sophos
...
Troj/Zlob-ALD - Troj/Zlob-ALD at Sophos
...
Troj/Zlob-ALE - Troj/Zlob-ALE at Sophos
...
Troj/Agent-HBU - Troj/Agent-HBU at Sophos
When first run Troj/Agent-HBU copies itself to <Temp>\_A00F10A5B.exe and creates the file
<System>\__c0014204.dat - also detected as Troj/Agent-HBU. The following
registry entries are created to run code exported by __c0014204.dat on startup:
HKLM\SOFTWARE\Microso...
Troj/Agent-HBV - Troj/Agent-HBV at Sophos
...
Troj/Dorf-BN - Troj/Dorf-BN at Sophos
...
Troj/FakeVir-BP - Troj/FakeVir-BP at Sophos
...
Mal/EncPk-EA - Mal/EncPk-EA at Sophos
...
0 writebacks [06/11/2008 04:42]
[]
permanent link
|
Virus Malware and Threat News for 20080609
Trojan:W32/Tiny.E - Trojan:W32/Tiny.E at F-Secure
Tiny.E spawns Explorer.exe and creates launch points in the system.
...
Virus:W32/Gpcode.AK - Virus:W32/Gpcode.AK at F-Secure
Gpcode.AK is "ransom-ware" that intends to extort money from the victim by encrypting data files. It requires
the victim to order the malware author's custom tool to restore the encrypted data.
...
PWS-OnlineGames.aw.dll!00BE0B54 - PWS-OnlineGames.aw.dll!00BE0B54 at McAfee
File PropertyProperty ValueFile Namez7exev~1.exeMcAfee DetectionPWS-OnlineGames.aw.dllLength11,316
bytesCRC3200BE0B54MD51541216724f5fd49009bedefb8a7c318SHA1F70394483A19C496089FBFBCE3DB27D17798159DOther Common
Detection AliasesCompany NameDetection NameAvastWin32:Nilage-NQ [Trj]AVG (GriSoft)Generic10.AFHQAviraTR/PSW.
Nilage.crsBitDefen...
PWS-OnlineGames.ax!824878C8 - PWS-OnlineGames.ax!824878C8 at McAfee
File PropertyProperty ValueFile Namez5exev~1.exeMcAfee DetectionPWS-OnlineGames.axLength11,060
bytesCRC32824878C8MD55097e48588849d03688223ccac3057bdSHA1CF930D3DE44937C1F32595199C1544FB7660CDDBOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.11060.BAvastWin32:Nilage-NP
[Trj]AVG (GriSoft)Generic10...
PWS-OnlineGames.a!BE620188 - PWS-OnlineGames.a!BE620188 at McAfee
File PropertyProperty ValueFile Namez4.exeMcAfee DetectionPWS-LegMir.gen.h.dllLength15,857
bytesCRC32BE620188MD5d05fa91e08c2e851d8848da81b74ff82SHA14EED3506E7A81774F01E27234F61A85E8569B359Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.15857AVG (GriSoft)Generic10.
ACHEAviraTR/Spy.GenBitDefenderG...
PWS-LegMir.gen.h.dll!A20018FC - PWS-LegMir.gen.h.dll!A20018FC at McAfee
File PropertyProperty ValueFile Namez32exe~1.exeMcAfee DetectionPWS-LegMir.gen.h.dllLength14,895
bytesCRC32A20018FCMD5cf36c1e99db8856874c1c6844d0ffb77SHA17E6ACB06BC7472F3E0D86D98CAD76EBF1CCEB97EOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.14895AvastWin32:Rootkit-gen
[Rtk]AVG (GriSoft)Generic...
PWS-LegMir!C10F62DA - PWS-LegMir!C10F62DA at McAfee
File PropertyProperty ValueFile Namez3.exeMcAfee DetectionPWS-OnlineGames.axLength10,176
bytesCRC32C10F62DAMD5f1d0d444074562f7d21f70f0924ff534SHA1250C4B83D6464E54F9027B7F550273BCC373448AOther Common
Detection AliasesCompany NameDetection NameAhnLabDropper/InfoStealer.10176AvastWin32:Nilage-NP [Trj]AVG
(GriSoft)Generic10.AHTOAviraTR/P...
PWS-LegMir.gen.h.dll!5107F895 - PWS-LegMir.gen.h.dll!5107F895 at McAfee
File PropertyProperty ValueFile Namez31exe~2.exeMcAfee DetectionPWS-LegMir.gen.h.dllLength15,130
bytesCRC325107F895MD5139e1883ec303a5b84bd9ca97658b705SHA16BFAF62D647606D1DECF86D7D20EA7DF998C25F5Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.15130.CAVG (GriSoft)Generic10.
AFTIAviraTR/Spy.GenBitD...
PWS-LegMir.gen.h.dll!6EBED76D - PWS-LegMir.gen.h.dll!6EBED76D at McAfee
File PropertyProperty ValueFile Namez29exe~1.exeMcAfee DetectionPWS-LegMir.gen.h.dllLength14,852
bytesCRC326EBED76DMD5c2b2183d7bea18f686f25b389d5746a6SHA10EB9A10ABFE02B9D821DB653CE956429A2755299Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.14852AvastWin32:Rootkit-gen
[Rtk]AVG (GriSoft)Generic...
PWS-LegMir.gen.h.dll!494738C6 - PWS-LegMir.gen.h.dll!494738C6 at McAfee
File PropertyProperty ValueFile Namez27exe~2.exeMcAfee DetectionPWS-LegMir.gen.h.dllLength15,942
bytesCRC32494738C6MD5769d308f2272b2cf278a80a7b8403dccSHA196C381591E9FA6789ADDDF2B5002C08856F60314Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.15942AvastWin32:Trojan-gen
{Other}AVG (GriSoft)PSW.On...
PWS-LegMir.gen.h.dll!E9AC932B - PWS-LegMir.gen.h.dll!E9AC932B at McAfee
File PropertyProperty ValueFile Namez22exe~2.exeMcAfee DetectionPWS-LegMir.gen.h.dllLength14,882
bytesCRC32E9AC932BMD5ad2ec252aa78948e6d2e33c7df325d17SHA16E0E6813B4403002012DD4D759EA5EF101A41183Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.14882AvastWin32:Rootkit-gen
[Rtk]AVG (GriSoft)Generic...
PWS-OnlineGames.a!95E36307 - PWS-OnlineGames.a!95E36307 at McAfee
File PropertyProperty ValueFile Namez16exe~2.exeMcAfee DetectionPWS-LegMir.gen.h.dllLength16,531
bytesCRC3295E36307MD57b0d92f3c521cc913bbb32e51f04ae86SHA191C1A3D7EAE85CB9E2B50664515628661EDE9FBFOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.16531AVG (GriSoft)Generic10.
ACRPAviraTR/Spy.GenBitDef...
PWS-LegMir.gen.h.dll!FE1D4E1A - PWS-LegMir.gen.h.dll!FE1D4E1A at McAfee
File PropertyProperty ValueFile Namez17exe~1.exeMcAfee DetectionPWS-LegMir.gen.h.dllLength14,915
bytesCRC32FE1D4E1AMD5efd61c7762becd0ec426dc84794b5349SHA16AF72210F81DFF7EB3AA28E763D5B3C027C1FF5BOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.14915AvastWin32:Rootkit-gen
[Rtk]AVG (GriSoft)Generic...
PWS-OnlineGames.a!6653172B - PWS-OnlineGames.a!6653172B at McAfee
File PropertyProperty ValueFile Namez15exe~2.exeMcAfee DetectionPWS-LegMir.gen.h.dllLength16,191
bytesCRC326653172BMD549c28193ba503853a65318a53a80532eSHA1D160962EF08D702E1A3C8B89EA022F60095241A6Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.16191.CAvastWin32:Trojan-gen
{Other}AVG (GriSoft)PSW....
PWS-LegMir.gen.h.dll!2DFEF908 - PWS-LegMir.gen.h.dll!2DFEF908 at McAfee
File PropertyProperty ValueFile Namez13exe~1.exeMcAfee DetectionPWS-LegMir.gen.h.dllLength16,461
bytesCRC322DFEF908MD532495fbdaabd0a15ed0821272a6f090aSHA1AF4C1157E58D364CAFDCBDEDC893411B64CF6ED2Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/Xema.variantAvastWin32:OnLineGames-DZZ [Trj]AVG
(GriSoft)Generic10.A...
PWS-OnlineGames.ax!C62508B1 - PWS-OnlineGames.ax!C62508B1 at McAfee
File PropertyProperty ValueFile Namez12exe~2.exeMcAfee DetectionPWS-OnlineGames.axLength11,152
bytesCRC32C62508B1MD57922947309b8fbff30df4a852cdbc342SHA17AB8D79D6AC41BE30DA6A95FB30722DA83B43B73Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/Shellhook.11292AvastWin32:Nilage-NP [Trj]AVG
(GriSoft)Generic10.AFNUAv...
PWS-LegMir.gen.h.dll!84BF6DA4 - PWS-LegMir.gen.h.dll!84BF6DA4 at McAfee
File PropertyProperty ValueFile Namez11exe~2.exeMcAfee DetectionPWS-LegMir.gen.h.dllLength15,037
bytesCRC3284BF6DA4MD555072cf7de415330cd716ee131ceb888SHA11E3E022F3080AF82E9B86F14820C411063AFFF37Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.15037AvastWin32:Rootkit-gen
[Rtk]AVG (GriSoft)Generic...
PWS-OnlineGames.ax!D8DD9FAC - PWS-OnlineGames.ax!D8DD9FAC at McAfee
File PropertyProperty ValueFile Namez12exe~1.exeMcAfee DetectionPWS-OnlineGames.axLength11,292
bytesCRC32D8DD9FACMD5452918e34561f7b541012b5e0ccecc9cSHA1C83DAF193840B0C1C69B40C5C3727E9BEE81FF6BOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/Shellhook.11292AvastWin32:Nilage-NP [Trj]AVG
(GriSoft)Generic10.AFNUAv...
PWS-OnlineGames.aw.dll!B78E4DD8 - PWS-OnlineGames.aw.dll!B78E4DD8 at McAfee
File PropertyProperty ValueFile Namez10exe~2.exeMcAfee DetectionPWS-OnlineGames.aw.dllLength10,204
bytesCRC32B78E4DD8MD5a0a29127ed1e6b8ce8f0ed5260288a5bSHA12862D5BCD624E9C603A392F108D8B5CE6E840FE8Other Common
Detection AliasesCompany NameDetection NameAvastWin32:Nilage-NP [Trj]AVG (GriSoft)Generic10.AHVPAviraTR/PSW.
Online.akksBitDefe...
GPCoder.i - GPCoder.i at McAfee
-- Update June 09, 2008 --The risk assessment of this threat has been updated to Low-Profiled due to media
attention at:http://blogs.zdnet.com/security/?p=1251--GPCoder.i is a Trojan which encrypts files on the
victims pc and drops a ransom note with the contact details of the author. The victim is requested to pay a
specified amount...
Troj/FakeAle-BY - Troj/FakeAle-BY at Sophos
Troj/FakeAle-BY displays a fake alert that the computer is infected.
Troj/FakeAle-BY copies itself to <System>\ctfmona.exe. Troj/FakeAle-BY creates
the registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run ctfmona
<System&g...
Mal/Behav-238 - Mal/Behav-238 at Sophos
...
Mal/NoUpdate-A - Mal/NoUpdate-A at Sophos
Mal/NoUpdate-A is a malicious program for the Windows platform. Detection
for members of Mal/NoUpdate-A is behavior based. It is extremely important that customers report detections of
Mal/NoUpdate-A to Sophos and send a sample for analysis.
...
Troj/Agent-HBQ - Troj/Agent-HBQ at Sophos
...
Troj/Diffi-A - Troj/Diffi-A at Sophos
Troj/Diffi-A is a program used to gain remote access to infected computers.
...
Troj/IRCBot-ABY - Troj/IRCBot-ABY at Sophos
Troj/IRCBot-ABY is a Trojan for the Windows platform. Troj/IRCBot-ABY runs
continuously in the background, providing a backdoor server which allows a remote intruder to gain access and
control over the computer via IRC channels. When first run Troj/IRCBot-ABY copies
itself to ...
Troj/Keygen-BZ - Troj/Keygen-BZ at Sophos
Troj/Keygen-BZ is an illegal key generator. Illegal key generators often contain malicious
components as well.
...
Troj/Swizzor-NW - Troj/Swizzor-NW at Sophos
...
Troj/VB-DZV - Troj/VB-DZV at Sophos
Troj/VB-DZV is a Trojan for the Windows platform. When first run
Troj/VB-DZV copies itself to <Windows>\avp.exe and creates the file:
<Temp>\%ORIGFILENAME%.bat which deletes the original executable.
...
W32/Autorun-EY - W32/Autorun-EY at Sophos
W32/Autorun-EY when run copies itself to the following locations:
<System>\syskernel.exe <Root>\sys32krnl.exe <Root>\sysmgr.exe
<Root>\syswin.exe W32/Autorun-EY will infect network shares and removable
drives by copying ...
0 writebacks [06/10/2008 04:42]
[]
permanent link
|
Virus Malware and Threat News for 20080608
W32.Stayt.A!inf - W32.Stayt.A!inf at Norton Symantec
W32.Stayt.A!inf is a detection for files that are infected by the W32.Stayt.A virus.
...
W32.Stayt.A - W32.Stayt.A at Norton Symantec
W32.Stayt.A is a virus that infects executable files on the compromised computer and attempts to download
other files from the Internet.
...
Troj/Exploit-I - Troj/Exploit-I at Sophos
...
W32/Autorun-EX - W32/Autorun-EX at Sophos
...
Troj/AdClick-EU - Troj/AdClick-EU at Sophos
...
Troj/Agent-HBM - Troj/Agent-HBM at Sophos
...
Troj/Agent-HBN - Troj/Agent-HBN at Sophos
...
Troj/Agent-HBO - Troj/Agent-HBO at Sophos
...
Troj/Agent-HBL - Troj/Agent-HBL at Sophos
Troj/Agent-HBL is a Trojan for the Windows platform. Troj/Agent-HBL
includes functionality to: - access the internet and communicate with a remote server
via HTTP - send notification messages to remote locations When first run
Troj/Agent-HBL c...
Troj/Drop-AB - Troj/Drop-AB at Sophos
...
Troj/Dwnldr-HEF - Troj/Dwnldr-HEF at Sophos
Troj/Dwnldr-HEF is a Trojan for the Windows platform. Troj/Dwnldr-HEF
includes functionality to access the internet and communicate with a remote server via HTTP.
...
Troj/Agent-HBK - Troj/Agent-HBK at Sophos
...
0 writebacks [06/09/2008 04:41]
[]
permanent link
|
Virus Malware and Threat News for 20080607
BackDoor-CEP!49F90C24 - BackDoor-CEP!49F90C24 at McAfee
File PropertyProperty ValueFile Namepostcard.exeMcAfee DetectionBackDoor-CEPLength86,528
bytesCRC3249F90C24MD5a67d9ebe9bbef223b8ab6e1720aa4516SHA1CFDB7E0721F68632DA13B865E4D302AAA3D39F4EOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/Inject.30208.CAVG (GriSoft)Downloader.Generic7.
RICAviraDR/Delphi.GenBitDefen...
W32/Generic.worm!p2p!9669173C - W32/Generic.worm!p2p!9669173C at McAfee
File PropertyProperty ValueFile Name26.exeMcAfee DetectionW32/Generic.worm!p2pLength41,045
bytesCRC329669173CMD5F2B93C07B8A06F56FB001CC033A22A6ESHA1587FA93DD340B83AF04F71EDAFD40A658D10D423Other Common
Detection AliasesCompany NameDetection NameAhnLabDropper/Agent.41045AvastWin32:VB-GDM [Trj]AVG
(GriSoft)Dropper.Agent.hqwBitDefenderTr...
PWS-OnlineGames.as!5E49FDAD - PWS-OnlineGames.as!5E49FDAD at McAfee
File PropertyProperty ValueFile Name11.exeMcAfee DetectionPWS-OnlineGames.asLength32,380
bytesCRC325E49FDADMD5760c86080deae12d92c3903d47ffbc23SHA15D873FA216CF486424E9AE8D63F3B8111836167EOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/QQPass.GenAvastWin32:OnLineGames-BSI [Trj]AVG
(GriSoft)PSW.Generic6.NLWAvira...
Generic PWS.y!FAE9BA4F - Generic PWS.y!FAE9BA4F at McAfee
File PropertyProperty ValueFile Name5.exeMcAfee DetectionGeneric PWS.yLength22,808
bytesCRC32FAE9BA4FMD52a381a074f9eac5c837fa38fb4846a22SHA10B1747B6E513E9E59FBD3265A3B220EF8A378419Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.22808.DAvastWin32:OnLineGames-DJV
[Trj]AVG (GriSoft)PSW.OnlineGames...
PWS-OnlineGames.as!9E20BA39 - PWS-OnlineGames.as!9E20BA39 at McAfee
File PropertyProperty ValueFile Name14.exeMcAfee DetectionPWS-OnlineGames.asLength19,675
bytesCRC329E20BA39MD5029d785834040ce9f7aebf64fa6b8c0bSHA159E71A8C4F8815FC743C1E0033AA54F9C54359B6Other Common
Detection AliasesCompany NameDetection NameAvastWin32:OnLineGames-DQP [Trj]AVG (GriSoft)PSW.OnlineGames.
ASRLAviraTR/Crypt.XDR.GenBitDefe...
PWS-WoW.gen.a!8F3ADCE2 - PWS-WoW.gen.a!8F3ADCE2 at McAfee
File PropertyProperty ValueFile Name29.exeMcAfee DetectionPWS-WoW.gen.aLength18,303
bytesCRC328F3ADCE2MD56055dec95e3d2e956658e2b3c5807da8SHA1E46E0D855186AEBC79C763DB14CCE0400C6E7CFEOther Common
Detection AliasesCompany NameDetection NameAvastWin32:Rootkit-gen [Rtk]AviraTR/Spy.GenBitDefenderTrojan.PWS.
OnlineGames.YXFDr.WebTrojan.PWS.W...
PWS-OnlineGames.z!A8D77E05 - PWS-OnlineGames.z!A8D77E05 at McAfee
File PropertyProperty ValueFile Name3.exeMcAfee DetectionPWS-OnlineGames.zLength19,915
bytesCRC32A8D77E05MD5c34a48ca26c7cf4a82c78ca7b1e4e5a4SHA1D8A1EF09DFBD702F4E2B95EDBD45B5B1FF3972A5Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.19915.BAvastWin32:OnLineGames-DQP
[Trj]AVG (GriSoft)PSW.OnlineG...
PWS-OnlineGames.as!9ABB1454 - PWS-OnlineGames.as!9ABB1454 at McAfee
File PropertyProperty ValueFile Name23.exeMcAfee DetectionPWS-OnlineGames.asLength20,231
bytesCRC329ABB1454MD5f608ab5acb36fa4b94c064c992094e60SHA190C0F391561AC38529233A2EA5DD347A140EF884Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.20173.DAvastWin32:OnLineGames-DQP
[Trj]AVG (GriSoft)PSW.Onlin...
W32/Nuwar@mm!D4C81420 - W32/Nuwar@mm!D4C81420 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@mmLength141,824
bytesCRC32D4C81420MD57BB1EF33E686B27D9E2BF2D42A82E0EESHA1531C8A7DD9493A2E6B533651584C0AB1A9274FA6Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraWorm/Zhelatin.zaBitDefenderTrojan.
Peed.PJDr.WebTrojan.DownLoa...
W32/Nuwar@mm!E3D70319 - W32/Nuwar@mm!E3D70319 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@mmLength140,800
bytesCRC32E3D70319MD55248e03e5839352989adcbf0f33ef85aSHA19274EDD8AF6DCE98C3FE45318EBDF184FA7C27E3Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraWorm/Zhelatin.zaBitDefenderTrojan.
Peed.PJDr.WebTrojan.DownLoa...
W32/Nuwar@mm!A772DB19 - W32/Nuwar@mm!A772DB19 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@mmLength141,824
bytesCRC32A772DB19MD54D2D39C57AB9E50AC2CAC016F896ADACSHA16A8EEC352757EEBB8D589D6C38D60747D46130ACOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraWorm/Zhelatin.zaBitDefenderTrojan.
Peed.PJDr.WebTrojan.DownLoa...
W32/Nuwar@mm!4E5A6328 - W32/Nuwar@mm!4E5A6328 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@mmLength141,824
bytesCRC324E5A6328MD51BE990FCDC4989B454F6C0DFB1C2256DSHA1F008D20F9B2BC21C2823FEAEB8480BAFD75BCAF0Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraWorm/Zhelatin.zaBitDefenderTrojan.
Peed.PJDr.WebTrojan.DownLoa...
W32/Nuwar@mm!A92C62CF - W32/Nuwar@mm!A92C62CF at McAfee
File PropertyProperty ValueFile Namefound.exeMcAfee DetectionW32/Nuwar@mmLength141,824
bytesCRC32A92C62CFMD5EC2FB5A04C9F3D953B9468C8A8FB880ESHA1DC0CE8AECEB980773F3F078B6F7A2CE5822CBAE7Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraWorm/Zhelatin.zaBitDefenderTrojan.
Peed.PJDr.WebTrojan.DownLoade...
W32/Nuwar@mm!C7E47E47 - W32/Nuwar@mm!C7E47E47 at McAfee
File PropertyProperty ValueFile Nameloveyou.exeMcAfee DetectionW32/Nuwar@mmLength141,824
bytesCRC32C7E47E47MD53484B5E8A3DC24F6D486BC762C301283SHA1789C573A5E26DE1A2E2BB04EE2FFCE5F7A909A8AOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraWorm/Zhelatin.zaBitDefenderTrojan.
Peed.PJDr.WebTrojan.DownLoa...
W32/Nuwar@mm!FAB31149 - W32/Nuwar@mm!FAB31149 at McAfee
File PropertyProperty ValueFile Namefound.exeMcAfee DetectionW32/Nuwar@mmLength141,824
bytesCRC32FAB31149MD57C9EE2DEAF4B4C8BE4DDDECA2A39796FSHA11493A702DF38CAA7A2189A3684BE171BDBB29969Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.TAviraWorm/Zhelatin.zaBitDefenderTrojan.
Peed.PJDr.WebTrojan.DownLoade...
Troj/Agent-HBJ - Troj/Agent-HBJ at Sophos
...
Troj/Dropr-N - Troj/Dropr-N at Sophos
...
Troj/Dwnldr-HED - Troj/Dwnldr-HED at Sophos
...
Troj/Psyme-JC - Troj/Psyme-JC at Sophos
...
Troj/Banker-ELY - Troj/Banker-ELY at Sophos
Troj/Banker-ELY is a Trojan for the Windows platform. Troj/Banker-ELY
includes functionality to send notification messages to remote locations. When
Troj/Banker-ELY is installed it creates the file <Windows>\control.ctr. This file is not malicious and
may be deleted. ...
Troj/IRCBot-ABX - Troj/IRCBot-ABX at Sophos
Troj/IRCBot-ABX is a backdoor Trojan which allows a remote intruder to gain access and control
over the computer. Troj/IRCBot-ABX includes functionality to access the internet and
communicate with a remote server via HTTP. When Troj/IRCBot-ABX is installed it creates
the file ...
W32/VB-DZU - W32/VB-DZU at Sophos
W32/VB-DZU is a worm for the Windows platform. When first run W32/VB-DZU
copies itself to: <Temp>\newdev.exe <System>\autochl.exe
<System>\config\system.exe <System>\dllcache\log.exe <System>\lap.
exe ...
Mal/Iframe-J - Mal/Iframe-J at Sophos
Mal/Iframe-J is a web page that has been incompletely compromised by a malicious attack.
...
Troj/Gpcode-D - Troj/Gpcode-D at Sophos
Troj/Gpcode-D encrypts files found on the infected computer, in an attempt to blackmail the owner.
When files are encrypted, the string "._CRYPT" is appended to the original filename.
Multiple copies of a text file "!_READ_ME_!.txt" may be dropped. This file contains the
follo...
Troj/Zlob-AKZ - Troj/Zlob-AKZ at Sophos
Troj/Zlob-AKZ is a Trojan for the Windows platform. When Troj/Zlob-AKZ is
installed the following files are created: <Current Folder>\sbmdl.dll
<Current Folder>\sbsm.exe Both files are also detected as Troj/Zlob-AKZ.
...
0 writebacks [06/08/2008 04:42]
[]
permanent link
|
Virus Malware and Threat News for 20080606
Backdoor:W32/SdBot.CKN - Backdoor:W32/SdBot.CKN at F-Secure
Backdoor:W32/SdBot.CKN is a backdoor trojan. Backdoors are programs that allow remote attackers access to the
infected machine to compromise data and send additional commands.
...
Trojan.Gpcoder.F - Trojan.Gpcoder.F at Norton Symantec
Trojan.Gpcoder.F is a Trojan horse that encrypts files and then prompts the user to purchase a password in
order to decrypt them.
...
W32.Evolym - W32.Evolym at Norton Symantec
W32.Evolym is a worm that spreads through email, Instant Messaging clients and by copying itself to removable
drives. It may also download files on to the compromised computer.
...
Packed.Generic.131 - Packed.Generic.131 at Norton Symantec
Packed.Generic.131 is a heuristic detection for files that may have been obfuscated or encrypted in order to
conceal them from antivirus software.
...
Packed.Generic.128 - Packed.Generic.128 at Norton Symantec
Packed.Generic.128 is a heuristic detection for files that may have been obfuscated or encrypted in order to
conceal them from antivirus software.
...
Bloodhound.Exploit.195 - Bloodhound.Exploit.195 at Norton Symantec
Bloodhound.Exploit.195 is a heuristic detection for the files which exploit Ourgame 'GLIEDown2.dll' ServerList
Method ActiveX Control Remote Code Execution Vulnerability (BID 29446).
...
Bloodhound.Exploit.194 - Bloodhound.Exploit.194 at Norton Symantec
Bloodhound.Exploit.194 is a heuristic detection for the files which exploit Ourgame 'GLIEDown2.dll' ActiveX
Control Remote Code Execution Vulnerability (BID 29118).
...
Bloodhound.Exploit.191 - Bloodhound.Exploit.191 at Norton Symantec
Bloodhound.Exploit.191 is a heuristic detection for the files which exploit the Symantec Backup Exec Scheduler
ActiveX Control Multiple Stack Based Buffer Overflow Vulnerability (BID 26904).
...
Troj/Agent-HBE - Troj/Agent-HBE at Sophos
...
Troj/BckDr-QNT - Troj/BckDr-QNT at Sophos
...
Troj/FakeVir-BO - Troj/FakeVir-BO at Sophos
Troj/FakeVir-BO pretends to scan the system and always reports that it found threats. It then asks
for a license fee before pretending to clean up the computer.
...
Troj/Mdrop-BTB - Troj/Mdrop-BTB at Sophos
Troj/Mdrop-BTB drops: tpipkf.dll - detected as
Troj/Bckdr-QNI...
Troj/Banker-ELX - Troj/Banker-ELX at Sophos
Troj/Banker-ELX is a Trojan for the Windows platform. This Trojan checks
for the user browsing to a Brazillian bank, instead displaying a fake web page which steals the users banking
details if they are entered. These details may be sent via FTP or email.
Troj/Banker-ELX attem...
Troj/BanSpy-G - Troj/BanSpy-G at Sophos
Troj/BanSpy-G is a banking spy Trojan. Troj/BanSpy-G includes functionality
to access the internet and communicate with a remote server via HTTP. When
Troj/BanSpy-G is installed the following files are created: <System>\404.html
<Syst...
Troj/Dorf-BM - Troj/Dorf-BM at Sophos
...
Troj/Iframe-AH - Troj/Iframe-AH at Sophos
Troj/Iframe-AH is a JavaScript Trojan which displays advertising popups.
...
Troj/Small-ELP - Troj/Small-ELP at Sophos
When first run Troj/Small-ELP copies itself to <Windows>\xxx.exe. The
following registry entry is created to run xxx.exe on startup:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run abc <Windows>\xxx.EXE
The following ...
0 writebacks [06/07/2008 04:42]
[]
permanent link
|
Virus Malware and Threat News for 20080605
Hacktool.Rootkit!inf - Hacktool.Rootkit!inf at Norton Symantec
Hacktool.Rootkit!inf is a generic detection for infected system drivers that uses Rootkit techniques.
...
W32/Sdbot.worm!6255D02D - W32/Sdbot.worm!6255D02D at McAfee
File PropertyProperty ValueFile Name2dd05562.exeMcAfee DetectionW32/Sdbot.wormLength1,399,808
bytesCRC326255D02DMD5101b741096315810142fd3387d1ee98aSHA1B8031965A9EB4BCDCD49515B7961C4911993F887Other Common
Detection AliasesCompany NameDetection NameMicrosofttrojan:win32/ircbruteNormanbanker.gen4SymantecW32.Spybot.
WormAvert® Labs has...
Generic BackDoor!0461EC2E - Generic BackDoor!0461EC2E at McAfee
File PropertyProperty ValueFile Name2eec6104.exeMcAfee DetectionGeneric BackDoorLength235,520
bytesCRC320461EC2EMD54aacaeab10497e15f31c9e1d1e32755aSHA13AA50E6FD1ADB9C8F1E118C87E7ED807F3D3A075Other Common
Detection AliasesCompany NameDetection NameNormanw32/malware.cfcbPandaTrj/Cakl.TSymantecIRC TrojanAvert®
Labs has observed the f...
Generic.dx!079C532F - Generic.dx!079C532F at McAfee
File PropertyProperty ValueFile Name2f539c07.exeMcAfee DetectionGeneric.dxLength46,080
bytesCRC32079C532FMD50d29f5b6a935587c9e8cbf6e0417853eSHA1845C54FEBE3E4FAAEA18055DAF4A182DAA292516Other Common
Detection AliasesCompany NameDetection NameMicrosofttrojan:win32/malagentNormanw32/vbdoor.gpjSymantecTrojan
HorseAvert® Labs has observ...
Generic.dx!144CC82E - Generic.dx!144CC82E at McAfee
File PropertyProperty ValueFile Name2ec84c14.exeMcAfee DetectionGeneric.dxLength287,301
bytesCRC32144CC82EMD51486a5df77878ab31f604d201ef3690fSHA1CF58473D07EC9CF37C7AD645FBFE990F45F9C0FFOther Common
Detection AliasesCompany NameDetection NameMicrosofttrojan:win32/vb.aahNormanw32/baxor.gen1SymantecBackdoor.
TrojanAvert® Labs has obse...
Generic.dx!6C533B17 - Generic.dx!6C533B17 at McAfee
File PropertyProperty ValueFile NameUnavailableMcAfee DetectionGeneric.dxLength303,620
bytesCRC326C533B17MD505ca61acd86223a2b614b0c4219479ffSHA17660BAE020B4D10C113E1965B9EBDCAD9E2C8662Other Common
Detection AliasesCompany NameDetection NameMicrosofttrojan:win32/motskyNormanw32/malware.
bneuSymantecDownloaderAvert® Labs has observed...
W32/Sdbot.worm!FA6BE12D - W32/Sdbot.worm!FA6BE12D at McAfee
File PropertyProperty ValueFile Name2de16bfa.exeMcAfee DetectionW32/Sdbot.wormLength148,480
bytesCRC32FA6BE12DMD506bcafb553bc881e30a32d4ef9227e41SHA143C16F686A9296D55FEF1D8F547336551EF7C173Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/rbotNormanw32/sdbot.aqupSymantecW32.Spybot.
WormAvert® Labs has ...
Generic.dx!A30B81BD - Generic.dx!A30B81BD at McAfee
File PropertyProperty ValueFile NameUnavailableMcAfee DetectionGeneric.dxLength303,620
bytesCRC32A30B81BDMD51aaa41d6b8c619c5ef67dd1b485ea32aSHA1D12C6ABA11AB66088B7E4F21D51769C1EAE53702Other Common
Detection AliasesCompany NameDetection NameMicrosofttrojan:win32/motskyNormanw32/malware.
bneuSymantecDownloaderAvert® Labs has observed...
Generic BackDoor!8ED8BF2D - Generic BackDoor!8ED8BF2D at McAfee
File PropertyProperty ValueFile Name2dbfd88e.exeMcAfee DetectionGeneric BackDoorLength27,648
bytesCRC328ED8BF2DMD567708ecdac838104a9df09d0b20f864aSHA180029C59392B4A5ED80C3B07065A2445639D243AOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/agent.rmNormanw32/smalldrp.
odqSymantecBackdoor.TrojanAvert® La...
Generic.dx!DEACC168 - Generic.dx!DEACC168 at McAfee
File PropertyProperty ValueFile NameUnavailableMcAfee DetectionGeneric.dxLength303,620
bytesCRC32DEACC168MD5103dec849893fd6164acc4413972fdecSHA129B1BBB344C8071915CF4B94BEB7EB07E2D19A89Other Common
Detection AliasesCompany NameDetection NameMicrosofttrojan:win32/motskyNormanw32/malware.
bneuSymantecDownloaderAvert® Labs has observed...
BackDoor-AWQ.b!19EC592D - BackDoor-AWQ.b!19EC592D at McAfee
File PropertyProperty ValueFile Name2d59ec19.exeMcAfee DetectionBackDoor-AWQ.bLength758,272
bytesCRC3219EC592DMD53be0da6728354b5a9522f9f3a37c3da2SHA1D114E5DE894837613DB8F6524DF47EF5574568A6Other Common
Detection AliasesCompany NameDetection NameMicrosoftvirtool:win32/delfinjectNormanw32/hupigon.
cnfuSymantecBackdoor.GraybirdAvert® ...
BackDoor-AWQ!6BDD1E2D - BackDoor-AWQ!6BDD1E2D at McAfee
File PropertyProperty ValueFile Name2d1edd6b.exeMcAfee DetectionBackDoor-AWQLength390,656
bytesCRC326BDD1E2DMD5b40dc103f8f1cae6795a384a67463e18SHA10C0C5B08C11F4A89145B19C889B46BD7E21FFB26Other Common
Detection AliasesCompany NameDetection NameMicrosofttrojan:win32/delf.bbNormanw32/hupigon.cnfoSymantecBackdoor.
GraybirdAvert® Labs h...
Generic.dx!147F8E2E - Generic.dx!147F8E2E at McAfee
File PropertyProperty ValueFile Name2e8e7f14.exeMcAfee DetectionGeneric.dxLength6,527
bytesCRC32147F8E2EMD547762fb851eb29980baf3ccefcd46fb8SHA18258A9462AE1615EBA23E8AFCEC0E14B08AF298DOther Common
Detection AliasesCompany NameDetection NameMicrosofttrojan:win32/malagentNormanw32/suspicious_n.
genSophosMal/PackerSymantecTrojan HorseAver...
Generic.dx!C65D3624 - Generic.dx!C65D3624 at McAfee
File PropertyProperty ValueFile Name24365dc6.exeMcAfee DetectionGeneric.dxLength215,683
bytesCRC32C65D3624MD5cac7adafe6cc0de9d5f2d28cdf9a572eSHA13C07DEAB65FE823F6069675BEE783C5EF1F58F36Other Common
Detection AliasesCompany NameDetection NameMicrosoftpws:win32/qqrobNormanw32/malware.afvoSymantecBackdoor.
TrojanAvert® Labs has observ...
BackDoor-CSB!780D1F2D - BackDoor-CSB!780D1F2D at McAfee
File PropertyProperty ValueFile Name2d1f0d78.exeMcAfee DetectionBackDoor-CSBLength40,960
bytesCRC32780D1F2DMD52cf30ecd140870118a5bfb1fe66f5fc3SHA121EE91201C2A9F622D0A7DCCCC3841A95E84E9ADOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/lecna.genSymantecTrojan.DrivusAvert®
Labs has observed the followi...
W32/Sdbot.worm!6BA51825 - W32/Sdbot.worm!6BA51825 at McAfee
File PropertyProperty ValueFile Name2518a56b.exeMcAfee DetectionW32/Sdbot.wormLength463,360
bytesCRC326BA51825MD5de05f4d22887aae750d8d618790728deSHA164234DB16F6573293B7AE631BC0CBB5F7CE9950FOther Common
Detection AliasesCompany NameDetection NameNormansdbot.gen8SymantecW32.Spybot.WormAvert® Labs has observed
the following system ac...
BackDoor-AWQ.b!04948023 - BackDoor-AWQ.b!04948023 at McAfee
File PropertyProperty ValueFile Name23809404.exeMcAfee DetectionBackDoor-AWQ.bLength754,688
bytesCRC3204948023MD5334d2eb16757cdeb0e27de36e8df1252SHA1E3011327D42438B6D93F8D3B9A4A3BE375A19846Other Common
Detection AliasesCompany NameDetection NameMicrosoftvirtool:win32/delfinjectNormanhupigon.
gen145SymantecBackdoor.TrojanAvert® Labs...
BackDoor-AWQ!96AC4E26 - BackDoor-AWQ!96AC4E26 at McAfee
File PropertyProperty ValueFile Name264eac96.exeMcAfee DetectionBackDoor-AWQLength411,648
bytesCRC3296AC4E26MD560951d51a83c8dcbb96a713401c49dcfSHA1360F8D14B31E14C5077CCE4303F147DB44BB0B5AOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/hupigonNormanw32/hupigon.
ddvlSymantecBackdoor.GraybirdAvert® Labs...
BackDoor-AWQ.b!45E35826 - BackDoor-AWQ.b!45E35826 at McAfee
File PropertyProperty ValueFile Name2658e345.exeMcAfee DetectionBackDoor-AWQ.bLength717,824
bytesCRC3245E35826MD51846d37353a9038335769f7cabacc7d8SHA175C2AC8DD7ED807307921C7AB187838C0C675FB9Other Common
Detection AliasesCompany NameDetection NameMicrosofttrojan:win32/meredropNormanw32/hupigon.
avykSymantecBackdoor.GraybirdAvert® Lab...
Generic BackDoor!6858F625 - Generic BackDoor!6858F625 at McAfee
File PropertyProperty ValueFile Name25f65868.exeMcAfee DetectionGeneric BackDoorLength38,400
bytesCRC326858F625MD5DB36374C7A6F2E79339B7A62939D000ESHA1D78D750ECCE8B3A4908D21914F37966F8AD1AF8EOther Common
Detection AliasesCompany NameDetection NameNormanW32/VBDoor.GOEPandaTrj/Downloader.MDWSymantecBackdoor.
TrojanAvert® Labs has obse...
Generic BackDoor!19779823 - Generic BackDoor!19779823 at McAfee
File PropertyProperty ValueFile Name23987719.exeMcAfee DetectionGeneric BackDoorLength819,111
bytesCRC3219779823MD585ff9edd4126d042e9baa4019020eba8SHA1E77B24BF955B706187FD2457AEBD845B8EAEF1BFOther Common
Detection AliasesCompany NameDetection NameMicrosofttrojan:win32/vb.aahNormanw32/vbdoor.dpgSymantecBackdoor.
TrojanAvert® Labs ha...
BackDoor-AWQ.b!80666423 - BackDoor-AWQ.b!80666423 at McAfee
File PropertyProperty ValueFile Name23646680.exeMcAfee DetectionBackDoor-AWQ.bLength436,224
bytesCRC3280666423MD593029a52b0a235760cf4aba3eaf2f87eSHA1607463A17DE1563EB210162A4956D105D7DB0230Other Common
Detection AliasesCompany NameDetection NameNormanw32/hupigon.ddvlSymantecBackdoor.GraybirdAvert® Labs has
observed the following s...
W32/Sdbot.worm!9606571D - W32/Sdbot.worm!9606571D at McAfee
File PropertyProperty ValueFile Name1d570696.exeMcAfee DetectionW32/Sdbot.wormLength2,946,538
bytesCRC329606571DMD5c5b1e2813fb4e9ba19dfe411c8f5489bSHA15C25DEA7D5490780AE5719ABF1228AC4A0C6EED6Other Common
Detection AliasesCompany NameDetection NameNormansdbot.gen8SymantecInfostealerAvert® Labs has observed the
following system acti...
W32/Sdbot.worm.gen.cc!A1A3099F - W32/Sdbot.worm.gen.cc!A1A3099F at McAfee
File PropertyProperty ValueFile NameUnavailableMcAfee DetectionW32/Sdbot.worm.gen.ccLength39,424
bytesCRC32A1A3099FMD5d0b27964f879392dde7e16316e6e0494SHA1A3822AD29944CBCB6DBA68236B6C752DA338D018Other Common
Detection AliasesCompany NameDetection NameMicrosoftvirtool:win32/delfinject.gen!ahNormansandbox:
w32/malwareAvert® Labs has ...
W32/Sdbot.worm.gen.cc!7988A52D - W32/Sdbot.worm.gen.cc!7988A52D at McAfee
File PropertyProperty ValueFile NameUnavailableMcAfee DetectionW32/Sdbot.worm.gen.ccLength40,448
bytesCRC327988A52DMD5756c0d4470d9030ee66e6053bb170b9fSHA10DA4655678A01B3A4B075370864BD4F45E2F428BOther Common
Detection AliasesCompany NameDetection NameMicrosoftvirtool:win32/delfinject.gen!acAvert® Labs has observed
the following sys...
Generic BackDoor!43987B2C - Generic BackDoor!43987B2C at McAfee
File PropertyProperty ValueFile Name2c7b9843.exeMcAfee DetectionGeneric BackDoorLength143,872
bytesCRC3243987B2CMD5a6fd3a978a41d5a154ec87339012851cSHA15D9AF6DAAD325536C927AADBB181E7C89F32966EOther Common
Detection AliasesCompany NameDetection NameNormanw32/delf.awagSymantecBackdoor.SinguAvert® Labs has
observed the following syste...
Generic BackDoor!33212E2B - Generic BackDoor!33212E2B at McAfee
File PropertyProperty ValueFile Name2b2e2133.exeMcAfee DetectionGeneric BackDoorLength96,256
bytesCRC3233212E2BMD523159d0278b3e04b8d8cdc50fb363330SHA1C8BF2840F5465E6C465B894A9CDFCC2C457FDF88Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/reversableNormanw32/delf.
avqaSymantecBackdoor.TrojanAvert® Lab...
Generic BackDoor!C912732C - Generic BackDoor!C912732C at McAfee
File PropertyProperty ValueFile Name2c7312c9.exeMcAfee DetectionGeneric BackDoorLength22,778
bytesCRC32C912732CMD5c53ef40bcf5970e9bc38f9816ebef42cSHA1A06F77BFED2BAFD2C2749BADEAFD52523F0D6B29Other Common
Detection AliasesCompany NameDetection NameMicrosofttrojandownloader:win32/small.nccNormanw32/hupigon.
whqSymantecBackdoor.GraybirdAv...
Generic.dx!7A655428 - Generic.dx!7A655428 at McAfee
File PropertyProperty ValueFile Name2854657a.exeMcAfee DetectionGeneric.dxLength319,488
bytesCRC327A655428MD5e0165e52dde3ccec69527a0a0818efbfSHA1326094D63351345A6DE13129A582939516327D86Other Common
Detection AliasesCompany NameDetection NameMicrosofttrojanspy:win32/agent.piNormanw32/agent.dsbySymantecTrojan.
FarfliAvert® Labs has o...
Generic BackDoor!11334A27 - Generic BackDoor!11334A27 at McAfee
File PropertyProperty ValueFile Name274a3311.exeMcAfee DetectionGeneric BackDoorLength287,138
bytesCRC3211334A27MD5a3f6ad9fe75f7b636d7c53ac2351ba8fSHA1248F5C8A91F979C4A0FDF46BFDBB45AD3F4AF1DBOther Common
Detection AliasesCompany NameDetection NameMicrosofttrojan:win32/vb.aahNormanw32/vbdoor.dquSymantecBackdoor.
TrojanAvert® Labs ha...
BackDoor-AWQ!DB3C3E27 - BackDoor-AWQ!DB3C3E27 at McAfee
File PropertyProperty ValueFile Name273e3cdb.exeMcAfee DetectionBackDoor-AWQLength294,400
bytesCRC32DB3C3E27MD531a4fa96ffa56be9c9bb566ddf1fb2f3SHA19708692DE5BA088564F4535A38EE84153178C3F9Other Common
Detection AliasesCompany NameDetection NameMicrosoftvirtool:win32/delfinjectNormanw32/hupigon.
bgxeSymantecBackdoor.GraybirdAvert® La...
Troj/MalHost-A - Troj/MalHost-A at Sophos
Troj/MalHost-A creates and runs a batch file in the following folder
<Temp>\<random>.bat (also detected as Troj/MalHost-A ) When run, this batch
file copies: <System>\drivers\etc\hosts to
<System>\drivers\etc\host.bak and...
W32/Tdibd-A - W32/Tdibd-A at Sophos
W32/Tdibd-A is a backdoor worm for the Windows platform.When W32/Tdibd-A is installed the following files are
created:<System>\_tdiserv_\Config.dat(harmless)<System>\_tdiserv_\TdiUpdate.sys(detected as
Troj/RKProc-A)<System>\_tdiserv_\_tdicli_.exe(detected as W32/Tdibd-A)<System>\_tdiserv_\autorun.
inf(harmless...
W32/Tdibd-B - W32/Tdibd-B at Sophos
W32/Tdibd-B is a worm for the Windows platform with backdoor Trojan functionality.W32/Tdibd-B includes
functionality to access the internet and communicate with a remote server via HTTP.When first run W32/Tdibd-B
copies itself to <System>\_tdiserv_\setup.exe and creates some of the following files:
<System>\_tdiserv_\autor...
W32/Tdibd-C - W32/Tdibd-C at Sophos
W32/Tdibd-C is a multi-component rootkit worm for the Windows platform.
When run W32/Tdibd-C creates the following files: <System>\_tdiserv_\autorun.inf
- detected as W32/Tdibd-C <System>\_tdiserv_\setup.exe - detected as W32/Tdibd-C
<Syste...
Troj/Delf-EZY - Troj/Delf-EZY at Sophos
Troj/Delf-EZY is a Trojan for the Windows platform. Troj/Delf-EZY includes
functionality to access the internet and communicate with a remote server via HTTP.
When first run Troj/Delf-EZY copies itself to <System>\qtplugin.exe and creates the following files:
...
Troj/Mdrop-BSZ - Troj/Mdrop-BSZ at Sophos
Troj/Mdrop-BSZ drops the file <Windows>\Debug\<Random filename>.dll which is detected
as Mal/LineDLL-B.
...
Troj/Mdrop-BTA - Troj/Mdrop-BTA at Sophos
Troj/Mdrop-BTA drops the file <Windows>\Debug\<Random filename>.dll which is detected
as Mal/LineDLL-B.
...
Mal/Behav-248 - Mal/Behav-248 at Sophos
Mal/Behav-248 is a behavioral detection. Please send a sample to Sophos for further analysis.
...
Mal/Zlob-S - Mal/Zlob-S at Sophos
...
0 writebacks [06/06/2008 04:41]
[]
permanent link
|
Virus Malware and Threat News for 20080604
Backdoor:W32/IRCBot.GNS - Backdoor:W32/IRCBot.GNS at F-Secure
Backdoor:W32/IRCBot.GNS is a backdoor trojan. Backdoors are programs that allow remote attackers access to
the infected machine to compromise data and send additional commands.
...
Virus:W32/Chimera.A - Virus:W32/Chimera.A at F-Secure
Virus:W32:Chimera.A is an appending parasitic file infector. The virus body is located inside two layers of
variable-key encryption. Chimera.A does not have any other payload in addition to spreading itself.
...
MalwareProtector2008 - MalwareProtector2008 at Norton Symantec
BehaviorMalwareProtector2008 is a misleading application that may give exaggerated reports of threats on the
computer....
Spyware.TupInsight - Spyware.TupInsight at Norton Symantec
BehaviorSpyware.TupInsight is a spyware program that monitors user activity on the Internet.
...
W32/Autorun.worm.cx!01E0B585 - W32/Autorun.worm.cx!01E0B585 at McAfee
File PropertyProperty ValueFile NameUnavailableMcAfee DetectionW32/Autorun.worm.cxLength155,648
bytesCRC3201E0B585MD5E245F72CB1C6C41ECE52B70240949026SHA1D669E885E33E135BF0DCB0188C33748754A62BA7Other Common
Detection AliasesCompany NameDetection NameMicrosoftworm:win32/liajred.bNormanw32/sillyfdc.gen1SymantecW32.
SillyFDCAvert® Labs...
Generic.dx!55665C22 - Generic.dx!55665C22 at McAfee
File PropertyProperty ValueFile Name225c6655.exeMcAfee DetectionGeneric.dxLength287,139
bytesCRC3255665C22MD5313d1d6b032ef1d843617f0256356742SHA1429DBB980FFE5992E140487307918EFD4246DD94Other Common
Detection AliasesCompany NameDetection NameMicrosofttrojan:win32/vb.aahNormanw32/baxor.gen1PandaBck/Shark.
AQSymantecBackdoor.TrojanAvert&...
BackDoor-AWQ.b!D78B4A22 - BackDoor-AWQ.b!D78B4A22 at McAfee
File PropertyProperty ValueFile Name224a8bd7.exeMcAfee DetectionBackDoor-AWQ.bLength615,424
bytesCRC32D78B4A22MD585894889c9e5d488d277b341700fb24aSHA159B87A7AE38C94E075F71568D5ECA0A7BD4E17DFOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/hupigonNormanw32/graybird.iuyPandaGeneric
MalwareSymantecBackdoor....
BackDoor-AWQ.b!26EE799D - BackDoor-AWQ.b!26EE799D at McAfee
File PropertyProperty ValueFile NameUnavailableMcAfee DetectionBackDoor-AWQ.bLength435,836
bytesCRC3226EE799DMD59c0e7653cd2ac0729041cb6ba50353f1SHA1A421A8994506BF1BE205420E8814A41D88DD6575Other Common
Detection AliasesCompany NameDetection NameMicrosoftpws:win32/hupigon.aaaNormanhupigon.
gen114SophosMal/EncPk-APAvert® Labs has obse...
BackDoor-AWQ!280CB922 - BackDoor-AWQ!280CB922 at McAfee
File PropertyProperty ValueFile Name22b90c28.exeMcAfee DetectionBackDoor-AWQLength411,136
bytesCRC32280CB922MD56c67d2cf74c4e5cc62ae0f7ab938254bSHA1F5BC328D2D38C6A692ACB6E98BB23E0F523E5C89Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/hupigonNormanw32/hupigon.
ddvlSymantecBackdoor.GraybirdAvert® Labs...
Generic.dx!439EB121 - Generic.dx!439EB121 at McAfee
File PropertyProperty ValueFile Name21b19e43.exeMcAfee DetectionGeneric.dxLength90,370
bytesCRC32439EB121MD56A3C10F7D0DFA4C028F2F2DD7E45D895SHA1EB5162E545DD6219F0F6FC336AD90D45D741C273Other Common
Detection AliasesCompany NameDetection NameMicrosofttrojan:win32/ircbruteNormanw32/tibs.bnkaSymantecW32.Spybot.
WormAvert® Labs has obse...
Generic.dx!50A28221 - Generic.dx!50A28221 at McAfee
File PropertyProperty ValueFile Name2182a250.exeMcAfee DetectionGeneric.dxLength733,184
bytesCRC3250A28221MD5c9b44ab2cac39b7779a4cdbf545b3434SHA1E58B3D47FAE4A07EB9D40DA3D5351A9D269333BCOther Common
Detection AliasesCompany NameDetection NameMicrosofttrojan:win32/ircbruteNormanspybot.cihrSymantecW32.
IRCBotAvert® Labs has observed t...
Downloader-ACH!363357BD - Downloader-ACH!363357BD at McAfee
File PropertyProperty ValueFile NameUnavailableMcAfee DetectionDownloader-ACHLength295,682
bytesCRC32363357BDMD5f9eaadd58a0292e1910f122bce3c62dfSHA18CCCEA2B17173160E89EDF14E712CA311E526DE1Other Common
Detection AliasesCompany NameDetection NameNormanw32/malware.cvtnAvert® Labs has observed the following
system activities:ActivityR...
BackDoor-AWQ.b!EF8D5921 - BackDoor-AWQ.b!EF8D5921 at McAfee
File PropertyProperty ValueFile Name21598def.exeMcAfee DetectionBackDoor-AWQ.bLength380,928
bytesCRC32EF8D5921MD5b8626fde56d2292c28557d57397bf5e6SHA1D869CC674FD2DEF08FB07ACB5E0E972F0E795F05Other Common
Detection AliasesCompany NameDetection NameNormanw32/hupigon.gen5SymantecBackdoor.GraybirdAvert® Labs has
observed the following s...
Generic.dx!31D16221 - Generic.dx!31D16221 at McAfee
File PropertyProperty ValueFile Name2162d131.exeMcAfee DetectionGeneric.dxLength370,176
bytesCRC3231D16221MD5a2e935229c7420eb743130c84441bca0SHA13D1558EC39C4D70F2F4D857428E2C4ED59B462BBOther Common
Detection AliasesCompany NameDetection NameMicrosofttrojandropper:win32/dowque.aNormanw32/qqpass.
ebeSymantecBackdoor.GraybirdAvert® La...
Generic.dx!4DCAF120 - Generic.dx!4DCAF120 at McAfee
File PropertyProperty ValueFile Name20f1ca4d.exeMcAfee DetectionGeneric.dxLength395,896
bytesCRC324DCAF120MD569e5887b6e2b9eeb6d7d2ce080f72a22SHA15BEC4D2A8F48F897CC9E61B08108F9B0AA141523Other Common
Detection AliasesCompany NameDetection NameMicrosoftvirtool:win32/delfinjectNormanw32/hupigon.
cmrnSymantecBackdoor.TrojanAvert® Labs h...
Generic PWS.y!994BCD20 - Generic PWS.y!994BCD20 at McAfee
File PropertyProperty ValueFile Name20cd4b99.exeMcAfee DetectionGeneric PWS.yLength416,256
bytesCRC32994BCD20MD5e80efe65b428935406e7b58e876ac4c2SHA1DECB9395C91E22E96835ABBE0762437C82CE2AC2Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/rbotNormansdbot.gen8SymantecW32.Spybot.
WormAvert® Labs has obser...
Puper!7958C47F - Puper!7958C47F at McAfee
File PropertyProperty ValueFile NameUnavailableMcAfee DetectionPuperLength125,968
bytesCRC327958C47FMD5f0b9647154334b35eff7c7dc743bc806SHA173F2C2CB4A8DD0DD272C8B4B4F76FF50185790F9Other Common
Detection AliasesCompany NameDetection NameMicrosofttrojan:win32/tibs.gen!gSophosMal/EncPk-CGSymantecTrojan.
ZlobAvert® Labs has observed the...
Generic.dx!B6CEDB20 - Generic.dx!B6CEDB20 at McAfee
AVERT recommends to always use latest DATs and engine. This threat will be cleaned if you have this
combination.Additional Windows ME/XP removal
considerations...
Generic BackDoor!5EFABB20 - Generic BackDoor!5EFABB20 at McAfee
File PropertyProperty ValueFile Name20bbfa5e.exeMcAfee DetectionGeneric BackDoorLength12,288
bytesCRC325EFABB20MD5d20dde8b1ec7bc6bd150b677eb95b435SHA17DAD5565F829D5552DAD66422CD2470B7899E79FOther Common
Detection AliasesCompany NameDetection NameNormanw32/malware.fqtSophosMal/DelpDldr-FSymantecBackdoor.
TrojanAvert® Labs has observ...
Generic.dx!231B1121 - Generic.dx!231B1121 at McAfee
File PropertyProperty ValueFile Name21111b23.exeMcAfee DetectionGeneric.dxLength391,168
bytesCRC32231B1121MD5c801aeab166f915df31c84470ebb95dcSHA1C857C4DC258B96AF2F5B917A5A3C6814E79B3736Other Common
Detection AliasesCompany NameDetection NameMicrosofttrojan:win32/delf.bbNormanw32/delf.aomsPandaGeneric
TrojanSymantecBackdoor.GraybirdAv...
Generic BackDoor!84B69E20 - Generic BackDoor!84B69E20 at McAfee
File PropertyProperty ValueFile Name209eb684.exeMcAfee DetectionGeneric BackDoorLength901,583
bytesCRC3284B69E20MD58580036705c10a51807f47273633243dSHA1242A7A286D6EFB82A4F4E233924699193D0A3579Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/vbNormanw32/vbdoor.cgoSymantecBackdoor.
CiadoorAvert® Labs has...
Swizzor.gen.b!137D3DA2 - Swizzor.gen.b!137D3DA2 at McAfee
File PropertyProperty ValueFile NameUnavailableMcAfee DetectionSwizzor.gen.bLength431,616
bytesCRC32137D3DA2MD5eaefa219a50f7d5e6fb3b5bdb1733b73SHA1BA67C6EEE7AEAD64C24E86F035EDF57422E3E9ADOther Common
Detection AliasesCompany NameDetection NameMicrosofttrojan:win32/c2lop.eSymantecAdware.LopAvert® Labs has
observed the following sys...
Generic.dx!A0E51820 - Generic.dx!A0E51820 at McAfee
File PropertyProperty ValueFile Name2018e5a0.exeMcAfee DetectionGeneric.dxLength96,256
bytesCRC32A0E51820MD5CAE16786172E4DEE0D061B4AF96FF8D2SHA178C1A388CE3919886A709AE29F9B4E71F3F6D2B7Other Common
Detection AliasesCompany NameDetection NameMicrosofttrojan:win32/malagentNormanw32/delf.avqaSymantecTrojan
HorseAvert® Labs has observe...
Generic.dx!E406DB1F - Generic.dx!E406DB1F at McAfee
File PropertyProperty ValueFile Name1fdb06e4.exeMcAfee DetectionGeneric.dxLength303,565
bytesCRC32E406DB1FMD54656FF0C3040C599BEF015CD818CC540SHA1B6FFEC0E0723A36ECA639DA5532A291CF8B592DDOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/sharke.bNormanw32/smalldoor.
beiySymantecBackdoor.TrojanAvert® Labs ...
Puper!7B88C336 - Puper!7B88C336 at McAfee
File PropertyProperty ValueFile NameUnavailableMcAfee DetectionPuperLength72,704
bytesCRC327B88C336MD504eef9294601bc39288c183f5e81ab88SHA1ACB5FECAF8335AA3073B89144E590A3C5AE4F9A6Avert®
Labs has observed the following system activities:ActivityRisk LevelModifies Internet Explorers List of
Trusted DomainsHighEnumerates running Proce...
Generic.dx!AFB6941F - Generic.dx!AFB6941F at McAfee
File PropertyProperty ValueFile Name1f94b6af.exeMcAfee DetectionGeneric.dxLength348,802
bytesCRC32AFB6941FMD5fbedc9fabfa6b96b35fb9ca0b90ac325SHA1BF20E1AA603360A450521F02700B5DAC2FE9E830Other Common
Detection AliasesCompany NameDetection NameNormanW32/Spybot.CODFPandaW32/Gaobot.OXI.wormSymantecW32.Spybot.
WormAvert® Labs has observe...
TROJ_DLOADER.XCU - TROJ_DLOADER.XCU at Trend Micro
...
JS_IFRAME.YE - JS_IFRAME.YE at Trend Micro
...
JS_PSYME.CXZ - JS_PSYME.CXZ at Trend Micro
...
Troj/FakeAle-AI - Troj/FakeAle-AI at Sophos
Troj/FakeAle-AI is a Trojan for the Windows platform. Troj/FakeAle-AI
includes functionality to access the internet and communicate with a remote server via HTTP.
When first run Troj/FakeAle-AI copies itself to <Windows>\xpupdate.exe and creates the file
<User>\App...
Mal/Dropper-AH - Mal/Dropper-AH at Sophos
...
Troj/Agent-HBC - Troj/Agent-HBC at Sophos
...
Troj/Lineag-DO - Troj/Lineag-DO at Sophos
Troj/Lineag-DO is a Trojan for the Windows platform. When Troj/Lineag-DO is
installed the following files are created: <Temp>\RarSFX0\2.bat
<Windows>\help\EB6C4499B05F.dll <Windows>\help\EB6C4499B05F.exe
The file E...
W32/MarioF-C - W32/MarioF-C at Sophos
...
W32/Romario-B - W32/Romario-B at Sophos
W32/Romario-B is a worm for the Windows platform. When first run
W32/Romario-B copies itself to: <User>\Documents\Bola Pantul.exe
<User>\Documents\FreeCard.exe <User>\Documents\MyHearts.exe
<User>\Application Data\Alisa....
Exp/WMF-A - Exp/WMF-A at Sophos
Exp/WMF-A is a Windows Metafile (WMF) file which exploits a vulnerability associated with Windows Picture and
Fax Viewer allowing arbitrary code execution.
...
Mal/Badsrc-C - Mal/Badsrc-C at Sophos
Mal/Badsrc-C is a malicious web page that has been compromised to load a script from a malicious
website. ...
0 writebacks [06/05/2008 04:42]
[]
permanent link
|
Virus Malware and Threat News for 20080603
Generic BackDoor!B041D31E - Generic BackDoor!B041D31E at McAfee
File PropertyProperty ValueFile Name1ed341b0.exeMcAfee DetectionGeneric BackDoorLength40,079
bytesCRC32B041D31EMD588757be8243253216629fc3dd32e88a5SHA17538145ED97B68B0CA0AB7299F658CD4F2CA24B8Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/pcclient.yyNormanw32/pcclient.
egjPandaBck/Pcclient.EDSymantecBack...
W32/Sdbot.worm!2685921E - W32/Sdbot.worm!2685921E at McAfee
File PropertyProperty ValueFile Name1e928526.exeMcAfee DetectionW32/Sdbot.wormLength773,361
bytesCRC322685921EMD56e8126a0fa0c324b52bb193b026697c2SHA11BB026A669F874323C07CEC754671495798AD51DOther Common
Detection AliasesCompany NameDetection NameNormanw32/sdbot.aqxkPandaW32/Sdbot.KVB.wormSymantecBackdoor.
SdbotAvert® Labs has observ...
Generic.dx!AA578B1E - Generic.dx!AA578B1E at McAfee
File PropertyProperty ValueFile Name1e8b57aa.exeMcAfee DetectionGeneric.dxLength98,304
bytesCRC32AA578B1EMD557d8203368fc162e62ed48aeb17df64aSHA176D827C2371F11AE7A9787CDF14A6810116F5D4COther Common
Detection AliasesCompany NameDetection NameMicrosoftvirtool:win32/delfinject.gen!kNormanw32/ircbot.
yyuPandaW32/Rxbot.RM.wormSymantecW32.Sp...
Generic.dx!A55E5C1E - Generic.dx!A55E5C1E at McAfee
File PropertyProperty ValueFile Name1e5c5ea5.exeMcAfee DetectionGeneric.dxLength631,296
bytesCRC32A55E5C1EMD59714460cad8a5b9a8bb9c7d920b05a48SHA10BEA9CCC13A4660DA7292D9C661B40DFD014F097Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/rbotNormanw32/delf.anuuPandaTrj/Downloader.
MDWSymantecW32.Spybot.WormA...
W32/Sdbot.worm!9217F51D - W32/Sdbot.worm!9217F51D at McAfee
File PropertyProperty ValueFile Name1df51792.exeMcAfee DetectionW32/Sdbot.wormLength93,184
bytesCRC329217F51DMD5c6e8083dec95b67e6762878575e2bb88SHA18A30DF26F27DEB3BCBD81C5E67ACBEBF87C64D63Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/ircbotNormanw32/spybot.citwPandaW32/Gaobot.
OXI.wormSymantecW32.IRCB...
Downloader-ACH!1E680F5D - Downloader-ACH!1E680F5D at McAfee
File PropertyProperty ValueFile NameUnavailableMcAfee DetectionDownloader-ACHLength295,682
bytesCRC321E680F5DMD5ffdf539f64458d558569921c0673b27cSHA10DBDDE6FA04B7B63BF66325181ABCDE217593D20Other Common
Detection AliasesCompany NameDetection NameNormanw32/malware.cvxmAvert® Labs has observed the following
system activities:ActivityR...
BackDoor-AWQ.b!34BC801D - BackDoor-AWQ.b!34BC801D at McAfee
File PropertyProperty ValueFile Name1d80bc34.exeMcAfee DetectionBackDoor-AWQ.bLength758,784
bytesCRC3234BC801DMD5d3b826f2abfb10768dc1774f0dca9d2fSHA1E7750D3530F853ADD57629C134361CD43EFBF4D3Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/hupigonNormanhupigon.gen203SymantecBackdoor.
GraybirdAvert® Labs...
BackDoor-AWQ!1A45EC1D - BackDoor-AWQ!1A45EC1D at McAfee
File PropertyProperty ValueFile Name1dec451a.exeMcAfee DetectionBackDoor-AWQLength388,312
bytesCRC321A45EC1DMD53b9b1e3f96c8fe8323f816ab69809746SHA1D405DFDEE7FAF6BC0D5B3BBB85414095DDBCE8E4Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/hupigonNormanW32/Hupigon.
BCQZPandaBck/Hupigon.AZGSophosMal/EncPk-ATS...
Generic.dx!E839AC1D - Generic.dx!E839AC1D at McAfee
File PropertyProperty ValueFile Name1dac39e8.exeMcAfee DetectionGeneric.dxLength476,730
bytesCRC32E839AC1DMD5F4A66C48E62CD4D4F60E840A00A81CE8SHA1CB730B01DE63ABD15BC7E3433E5627824BDC2885Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/reversableNormanW32/Delf.
AZIFPandaTrj/Downloader.MDWSymantecHacktool.K...
Generic BackDoor!D656CD1D - Generic BackDoor!D656CD1D at McAfee
File PropertyProperty ValueFile Name1dcd56d6.exeMcAfee DetectionGeneric BackDoorLength329,728
bytesCRC32D656CD1DMD5f57af4c9ec9b3f01c08742e6037fd450SHA14AA0787747EA0479B843E638EA839ADFD4283233Other Common
Detection AliasesCompany NameDetection NameMicrosofttrojandropper:win32/delf.uNormanw32/delf.wzdPandaBck/Sdbot.
HTJSymantecTrojan.Pa...
Generic BackDoor!6C73861D - Generic BackDoor!6C73861D at McAfee
File PropertyProperty ValueFile Name1d86736c.exeMcAfee DetectionGeneric BackDoorLength140,288
bytesCRC326C73861DMD5f69f9adf3cf3a8a28caed1b7ec1bec9bSHA18B30BBCEE78682D73BCC206535154044EA3CEC52Other Common
Detection AliasesCompany NameDetection NameNormanw32/vbdoor.bjiPandaTrj/Keylog.JBSymantecBackdoor.
TrojanAvert® Labs has observed...
BackDoor-AWQ!3060AE1C - BackDoor-AWQ!3060AE1C at McAfee
File PropertyProperty ValueFile Name1cae6030.exeMcAfee DetectionBackDoor-AWQLength340,992
bytesCRC323060AE1CMD5124257ccae9bd4cbed5bfc214924e756SHA191F2EC6031EE3BCC48D028EC46FF9B97F4AB6E2COther Common
Detection AliasesCompany NameDetection NameMicrosoftpws:win32/hupigon.aaaNormanhupigon.gen32PandaBck/Hupigon.
JXSSophosMal/EncPk-ARSyman...
Generic.dx!27FBFE1C - Generic.dx!27FBFE1C at McAfee
File PropertyProperty ValueFile Name1cfefb27.exeMcAfee DetectionGeneric.dxLength326,788
bytesCRC3227FBFE1CMD5b6b22d4705084c8f13f07040a506090cSHA1398263234C707F180B70BA0A88900DB0ED5A43EEOther Common
Detection AliasesCompany NameDetection NameMicrosofttrojan:win32/malagentNormansandbox: w32/suspicious_n.
genPandaTrj/Downloader.MDWSymant...
Generic.dx!3FBFC81C - Generic.dx!3FBFC81C at McAfee
File PropertyProperty ValueFile Name1cc8bf3f.exeMcAfee DetectionGeneric.dxLength112,640
bytesCRC323FBFC81CMD58D4348464509045C469A18670E9576DDSHA1BB586B61DF671C07A79BE3FF9B2B2BBC68E3E698Other Common
Detection AliasesCompany NameDetection NameMicrosofttrojan:win32/ircbruteNormanw32/malware.lmePandaW32/Gaobot.
PBU.wormSymantecDownloaderA...
Troj/Iframe-AG - Troj/Iframe-AG at Sophos
Troj/Iframe-AG is a Trojan for the Windows platform that redirects the browser to a malicious site.
...
Troj/Noreger-B - Troj/Noreger-B at Sophos
Troj/Noreger-B is an automated tool to register accounts in a popular instant messaging system.
Troj/Noreger-B alters the Internet Explorer security settings.
...
Troj/PWS-ARF - Troj/PWS-ARF at Sophos
...
Mal/Dropper-AG - Mal/Dropper-AG at Sophos
...
Troj/Keylog-KG - Troj/Keylog-KG at Sophos
...
Troj/Patch-H - Troj/Patch-H at Sophos
Troj/Patch-H injects malicious code into system files.
...
Mal/Ejik-A - Mal/Ejik-A at Sophos
...
Troj/JSAdCli-C - Troj/JSAdCli-C at Sophos
Troj/JSAdCli-C is a JavaScript based Trojan. When run, it displays many image links and changes
browser window titles. The address of the page that Troj/JSAdCli-C was loaded from is added to favorites /
bookmarks.
...
0 writebacks [06/04/2008 04:43]
[]
permanent link
|
Virus Malware and Threat News for 20080602
Generic.dx!EDA2FE1B - Generic.dx!EDA2FE1B at McAfee
File PropertyProperty ValueFile Name1bfea2ed.exeMcAfee DetectionGeneric.dxLength334,336
bytesCRC32EDA2FE1BMD5d6078c5bde634594d273bb5ed83f8693SHA1EF61F03666DB0FF4EF1FCC8A6993A60AC3F4626DOther Common
Detection AliasesCompany NameDetection NameMicrosofttrojan:win32/meredropNormanw32/graybird.
itkSymantecBackdoor.GraybirdAvert® Labs ha...
Generic BackDoor!9FEA2E1B - Generic BackDoor!9FEA2E1B at McAfee
File PropertyProperty ValueFile Name1b2eea9f.exeMcAfee DetectionGeneric BackDoorLength921,043
bytesCRC329FEA2E1BMD55D144DF26D4AFA40E7FDFF7F802F907FSHA1995DB0BC87F7167C6E9803D4602A81A289ECB7AEOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/vbNormanvbdoor.eclSymantecBackdoor.
TrojanAvert® Labs has obse...
Generic BackDoor!B355D21A - Generic BackDoor!B355D21A at McAfee
File PropertyProperty ValueFile Name1ad255b3.exeMcAfee DetectionGeneric BackDoorLength928,256
bytesCRC32B355D21AMD5f0d530e590a0f06c962daafb3431d54bSHA1395CFA8BACA08BA1E38A41F0CA7CAB2A91442E43Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/agentNormanw32/delf.bcebSymantecBackdoor.
GraybirdAvert® Labs ...
Generic.dx!C2E08E1A - Generic.dx!C2E08E1A at McAfee
File PropertyProperty ValueFile Name1a8ee0c2.exeMcAfee DetectionGeneric.dxLength267,264
bytesCRC32C2E08E1AMD55903e106c9a32482b07b0100652a00e8SHA1D2E940F72CA507088E094F892E6FE6E09CBD8276Other Common
Detection AliasesCompany NameDetection NameNormanw32/delf.auzjPandaTrj/Downloader.MDWSymantecTrojan
HorseAvert® Labs has observed the ...
Generic BackDoor!F4285F1A - Generic BackDoor!F4285F1A at McAfee
File PropertyProperty ValueFile Name1a5f28f4.exeMcAfee DetectionGeneric BackDoorLength49,551
bytesCRC32F4285F1AMD5e0146aaeee23f3ed2bbb787607fe0328SHA183807FC3C0D8816B88FFA3C75D49BCF2FE013256Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/pcclientNormanw32/malware.
bazySymantecTrojan.DropperAvert® Lab...
Generic.dx!7F3F421A - Generic.dx!7F3F421A at McAfee
File PropertyProperty ValueFile Name1a423f7f.exeMcAfee DetectionGeneric.dxLength341,069
bytesCRC327F3F421AMD571c3cfa22a6054de5dc697dd5f64ca99SHA1475057BA7E9F082BBF199BD9215301C07408F456Other Common
Detection AliasesCompany NameDetection NameMicrosofttrojanspy:win32/agent.piNormanw32/agent.cznfSymantecTrojan.
FarfliAvert® Labs has o...
BackDoor-AWQ.b!F8FC221A - BackDoor-AWQ.b!F8FC221A at McAfee
File PropertyProperty ValueFile Name1a22fcf8.exeMcAfee DetectionBackDoor-AWQ.bLength49,899
bytesCRC32F8FC221AMD566c9b496bd03afc50fda041fb7bc3ae5SHA1BE5C355500582943AE65092836D593C11EA4BE4DOther Common
Detection AliasesCompany NameDetection NameNormanw32/hupigon.cmneSymantecBackdoor.GraybirdAvert® Labs has
observed the following sy...
Generic BackDoor!79B06519 - Generic BackDoor!79B06519 at McAfee
File PropertyProperty ValueFile Name1965b079.exeMcAfee DetectionGeneric BackDoorLength278,983
bytesCRC3279B06519MD5844552419CE3C5269A0B5E01DF098446SHA1E30AD98D1B327FDC5CA6E46DC0032C58872A5563Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/vb.wzNormanw32/vbdoor.dhcSymantecBackdoor.
TrojanAvert® Labs h...
Generic BackDoor!7C3D2919 - Generic BackDoor!7C3D2919 at McAfee
File PropertyProperty ValueFile Name19293d7c.exeMcAfee DetectionGeneric BackDoorLength49,417
bytesCRC327C3D2919MD53e84006cee89b2ac80a9d7939cb175c2SHA17E8F4D96A55C3E2E1E35260F86F6F334A9759E47Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/pcclientNormanw32/malware.
bazySymantecTrojan.DropperAvert® Lab...
BackDoor-AWQ.b!752E3519 - BackDoor-AWQ.b!752E3519 at McAfee
File PropertyProperty ValueFile Name19352e75.exeMcAfee DetectionBackDoor-AWQ.bLength660,480
bytesCRC32752E3519MD5658a1b47b9211f34e17104a713acbd00SHA17E708220248B08683B2DD3B596AABD1997DEFC24Other Common
Detection AliasesCompany NameDetection NameNormanw32/hupigon.cmmoSymantecBackdoor.GraybirdAvert® Labs has
observed the following s...
Generic.dx!A4939D17 - Generic.dx!A4939D17 at McAfee
File PropertyProperty ValueFile Name179d93a4.exeMcAfee DetectionGeneric.dxLength43,248
bytesCRC32A4939D17MD5007c46c3d1e9e5760c35387cda246645SHA1A374D4F0C50D2B0145834A144A0C84B3CA91956AOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/pcclient.yyNormanw32/malware.
avjwPandaBck/Pcclient.EDSymantecBackdoor.F...
Generic.dx!15CBE016 - Generic.dx!15CBE016 at McAfee
File PropertyProperty ValueFile Name16e0cb15.exeMcAfee DetectionGeneric.dxLength155,937
bytesCRC3215CBE016MD5fab1d617f7b10b300034e7065bc8de97SHA16BDC1FEDB4A4220392D7B912F09F779C89DEC9FCOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/blackhole.uNormansuspicious_f.
genSophosMal/EncPk-APSymantecBackdoor.Gr...
BackDoor-AWQ!3827CB16 - BackDoor-AWQ!3827CB16 at McAfee
File PropertyProperty ValueFile Name16cb2738.exeMcAfee DetectionBackDoor-AWQLength177,664
bytesCRC323827CB16MD539f193ae000cc115b6caeacfdfc27281SHA192417F85A322AE3209CA6FD31AC0F011008A0885Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/hupigonNormanw32/hupigon.
cmkpSymantecBackdoor.TrojanAvert® Labs h...
BackDoor-AWQ!EE2DC916 - BackDoor-AWQ!EE2DC916 at McAfee
File PropertyProperty ValueFile Name16c92dee.exeMcAfee DetectionBackDoor-AWQLength608,256
bytesCRC32EE2DC916MD53ce6b857d7651a5e48c760c3672afdb0SHA17AD7E56C22624700135476570768C5943636DB4BOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/hupigonNormanhupigon.gen110SymantecBackdoor.
GraybirdAvert® Labs h...
BackDoor-AWQ!30B8A816 - BackDoor-AWQ!30B8A816 at McAfee
File PropertyProperty ValueFile Name16a8b830.exeMcAfee DetectionBackDoor-AWQLength252,416
bytesCRC3230B8A816MD5828513ee7a5ddd378fb47069da3c758eSHA133006B17AE007CE0E256495DA7DE7E31DCF3FFE1Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/hupigonNormanw32/hupigon.
cmkmSophosMal/EncPk-CNSymantecBackdoor.Gray...
Generic.dx!92548416 - Generic.dx!92548416 at McAfee
File PropertyProperty ValueFile Name16845492.exeMcAfee DetectionGeneric.dxLength297,984
bytesCRC3292548416MD5f04abd75ecbbe47d53eb679aa5d0f21eSHA162CBB48DBDFCA5D5A22AA321FBAD5D71DBB80B7EOther Common
Detection AliasesCompany NameDetection NameNormanw32/malware.ahpsPandaGeneric TrojanSymantecBackdoor.
GraybirdAvert® Labs has observed ...
Troj/DwnLdr-HEA - Troj/DwnLdr-HEA at Sophos
Troj/DwnLdr-HEA is a downloader Trojan for the Windows platform. When run
Troj/DwnLdr-HEA attempts to silently download code from a remote website.
...
Mal/Dorf-N - Mal/Dorf-N at Sophos
Mal/Dorf-N is a malicious program in the Dorf family, often seen at links sent in spam.
...
Troj/KbdSpy-A - Troj/KbdSpy-A at Sophos
Troj/KbdSpy-A logs keystrokes. Troj/KbdSpy-A contains functionality to
prevent processes from showing up in Windows Task Manager.
...
W32/Autorun-EQ - W32/Autorun-EQ at Sophos
...
Mal/Behav-241 - Mal/Behav-241 at Sophos
Mal/Behav-241 is a malicious program for the Windows platform. Detection
for members of Mal/Behav-241 is behavior based. It is extremely important that customers report detections of
Mal/Behav-241 to Sophos and send a sample for analysis.
...
Mal/Behav-242 - Mal/Behav-242 at Sophos
Mal/Behav-242 is a malicious program for the Windows platform. Detection
for members of Mal/Behav-242 is behavior based. It is extremely important that customers report detections of
Mal/Behav-242 to Sophos and send a sample for analysis.
...
Troj/Cimuz-CW - Troj/Cimuz-CW at Sophos
Troj/Cimuz-CW is a password stealing Trojan for the Windows platform.
Troj/Cimuz-CW steals usernames and passwords from the computers cache (Protected Storage) and logs keystrokes
entered into selected web pages, including pages for: Postbank (postbank.de)
Barclays...
Troj/FakeAle-BQ - Troj/FakeAle-BQ at Sophos
Troj/FakeAle-BQ is a Trojan for the Windows platform. This Trojan poses as
an anti-virus program, "Master Anti Virus". When run, messages are displayed with the appearance of a virus
scan, and the user is encouraged to visit a website to pay for the removal of fictional viruses.
...
Troj/Psyme-JB - Troj/Psyme-JB at Sophos
...
Troj/Qhosts-B - Troj/Qhosts-B at Sophos
...
0 writebacks [06/03/2008 04:42]
[]
permanent link
|
Virus Malware and Threat News for 20080601
BackDoor-AWQ.b!1ACF6C16 - BackDoor-AWQ.b!1ACF6C16 at McAfee
File PropertyProperty ValueFile Name166ccf1a.exeMcAfee DetectionBackDoor-AWQ.bLength356,472
bytesCRC321ACF6C16MD5d49fb9ee34ec6ff0d5e2323a69f2506eSHA1FA3D34701FBE774F4A87DDF645FE694B7484780EOther Common
Detection AliasesCompany NameDetection NameMicrosoftvirtool:win32/delfinjectNormanw32/graybird.
irzSymantecBackdoor.GraybirdAvert® ...
Generic BackDoor!DB098A16 - Generic BackDoor!DB098A16 at McAfee
File PropertyProperty ValueFile Name168a09db.exeMcAfee DetectionGeneric BackDoorLength142,040
bytesCRC32DB098A16MD53BCD9B6A69DF2D4ED0EFA52513D8B513SHA148DB76675B51066AD6E31C1E4C4EF2EAE3741347Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/visel.bNormanw32/smalldoor.
aufsSymantecHacktool.RootkitAvert®...
W32/Sdbot.worm!1324EA15 - W32/Sdbot.worm!1324EA15 at McAfee
File PropertyProperty ValueFile Name15ea2413.exeMcAfee DetectionW32/Sdbot.wormLength278,528
bytesCRC321324EA15MD50fd1cb93e462f6fa1a84029ddc6d78bfSHA13CB9D03C82B3E87B196197717F14D9674BCD0339Other Common
Detection AliasesCompany NameDetection NameSymantecW32.Spybot.WormAvert® Labs has observed the following
system activities:Activit...
BackDoor-AWQ.b!D025E615 - BackDoor-AWQ.b!D025E615 at McAfee
File PropertyProperty ValueFile Name15e625d0.exeMcAfee DetectionBackDoor-AWQ.bLength408,064
bytesCRC32D025E615MD5537D8A35C2D43D190E4B164A60F291ECSHA13AD18D5833487EFD86BAD9B7BDAAE2E6D9B09A72Other Common
Detection AliasesCompany NameDetection NameNormanw32/hupigon.ddvlSymantecBackdoor.Graybird!GenAvert® Labs
has observed the followi...
PWS-Mifeng!15710115 - PWS-Mifeng!15710115 at McAfee
File PropertyProperty ValueFile Name15017115.exeMcAfee DetectionPWS-MifengLength950,250
bytesCRC3215710115MD58d2f8b4426f98c03822a7ed0fd9dbfb8SHA141595FC491050E700647F3C57223C0D62C7C5EE1Other Common
Detection AliasesCompany NameDetection NameMicrosoftpws:win32/mifengNormanw32/delf.
bmaiSophosMal/EncPk-APSymantecBackdoor.BotexAvert® ...
Generic Dropper.ay!5D73F214 - Generic Dropper.ay!5D73F214 at McAfee
File PropertyProperty ValueFile Name14f2735d.exeMcAfee DetectionGeneric Dropper.ayLength1,121,810
bytesCRC325D73F214MD5864A16045F346F0517B7023708CBB1E2SHA19E3A007B02015396AA55ABC34416675A9D8E0687Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/bifroseNormanW32/Bifrose.
JJDSophosMal/Behav-081SymantecBackd...
BackDoor-AWQ!283A5715 - BackDoor-AWQ!283A5715 at McAfee
File PropertyProperty ValueFile Name15573a28.exeMcAfee DetectionBackDoor-AWQLength409,088
bytesCRC32283A5715MD5fd2d22f7695f7b02b1e936829fa19859SHA112BFD17181BD239BD3E1A731623AD59B19391C9FOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/hupigonNormanw32/hupigon.
ddvlSymantecBackdoor.GraybirdAvert® Labs...
BackDoor-AWQ.b!7A034715 - BackDoor-AWQ.b!7A034715 at McAfee
File PropertyProperty ValueFile Name1547037a.exeMcAfee DetectionBackDoor-AWQ.bLength402,944
bytesCRC327A034715MD59e4e706bee05b011d4badc2f5b0d116fSHA119893E14D7D9B6E0E7CBD8307678965DE0BB98D7Other Common
Detection AliasesCompany NameDetection NameMicrosofttrojandropper:win32/dowque.aNormanw32/hupigon.
brptSophosMal/PackerSymantecBackdoo...
Generic.dx!992CEE14 - Generic.dx!992CEE14 at McAfee
File PropertyProperty ValueFile Name14ee2c99.exeMcAfee DetectionGeneric.dxLength428,154
bytesCRC32992CEE14MD5f173f4206089431729c6624820e76595SHA11D907EE9AA312EF4B62EBBD042A1F0D2025DB9EFOther Common
Detection AliasesCompany NameDetection NameMicrosofttrojan:win32/meredropNormanw32/prorat.gulPandaW32/Gaobot.
OXI.wormSymantecW32.IRCBotAv...
BackDoor-AVW!A5CCB614 - BackDoor-AVW!A5CCB614 at McAfee
File PropertyProperty ValueFile Name14b6cca5.exeMcAfee DetectionBackDoor-AVWLength196,608
bytesCRC32A5CCB614MD5b73ef8f627ed8207ff948a01ce9ec60cSHA1729228DCFCDF19996026EB7F9FE9D611B52CE46EOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/rbotNormanw32/prorat.gumSymantecW32.Spybot.
WormAvert® Labs has ob...
W32/Sdbot.worm!8DFCD614 - W32/Sdbot.worm!8DFCD614 at McAfee
File PropertyProperty ValueFile Name14d6fc8d.exeMcAfee DetectionW32/Sdbot.wormLength97,661
bytesCRC328DFCD614MD56B5ABB26AA8FFADDC620C1DD759E75D0SHA10158EF1CDED23842A1A5A488191ACB3E7EA3C4CCOther Common
Detection AliasesCompany NameDetection NameMicrosofttrojan:win32/ircbruteNormanw32/sdbot.bgjhSymantecBackdoor.
SdbotAvert® Labs has ...
W32/Sdbot.worm!20D03614 - W32/Sdbot.worm!20D03614 at McAfee
File PropertyProperty ValueFile Name1436d020.exeMcAfee DetectionW32/Sdbot.wormLength594,944
bytesCRC3220D03614MD5ada8ac9725f3dc7a1035be8354e1d68bSHA10AA892133F47A7F5A51F9000F49C45EFEDDBA82DOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/rbotNormanw32/spybot.bnjqSymantecW32.Spybot.
WormAvert® Labs has...
Generic.dx!F6F64214 - Generic.dx!F6F64214 at McAfee
File PropertyProperty ValueFile Name1442f6f6.exeMcAfee DetectionGeneric.dxLength204,800
bytesCRC32F6F64214MD564a476f050caf6d21b1056d7fd45c1fdSHA1D4E8D93CB2251B69CB62C5817CC3D4688B42F333Other Common
Detection AliasesCompany NameDetection NameNormanw32/agent.cxdzPandaBck/Hupigon.AZGSymantecBackdoor.
TrojanAvert® Labs has observed the...
BackDoor-AWQ!7827DD18 - BackDoor-AWQ!7827DD18 at McAfee
File PropertyProperty ValueFile Name18dd2778.exeMcAfee DetectionBackDoor-AWQLength459,264
bytesCRC327827DD18MD5C5DFF357EFFED045F71457F3A6768A4ASHA183BD9A23EA01077B562A34F95DB3B2E37485C677Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/hupigonNormanw32/hupigon.
bvysSymantecBackdoor.GraybirdAvert® Labs...
W32/Sdbot.worm!A6265F11 - W32/Sdbot.worm!A6265F11 at McAfee
File PropertyProperty ValueFile Name115f26a6.exeMcAfee DetectionW32/Sdbot.wormLength263,680
bytesCRC32A6265F11MD580c3735ecdbd8c76875072c1a6533f87SHA1C96849D901C759EC32C774B0F981A6015A23DC0AOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/rbotNormanw32/spybot.coazAvert® Labs has
observed the following...
Generic BackDoor!181A5211 - Generic BackDoor!181A5211 at McAfee
File PropertyProperty ValueFile Name11521a18.exeMcAfee DetectionGeneric BackDoorLength662,983
bytesCRC32181A5211MD5f7233529fa79e250654fa04af23d27f6SHA1BC8C7D66C286730B0FF669C50136E4A63470BA57Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/vbNormanw32/smalldoor.mpkPandaGeneric
MalwareSymantecBackdoor.Tr...
Generic.dx!16F41711 - Generic.dx!16F41711 at McAfee
File PropertyProperty ValueFile Name1117f416.exeMcAfee DetectionGeneric.dxLength184,160
bytesCRC3216F41711MD516AFED7372D82E61F905FFB408A535A9SHA1E622461ED4CD6A177049AD71B6A1337D7D517549Other Common
Detection AliasesCompany NameDetection NameMicrosofttrojan:win32/malagentNormanw32/agent.elowSymantecTrojan
HorseAvert® Labs has obser...
Generic.dx!7FA50211 - Generic.dx!7FA50211 at McAfee
File PropertyProperty ValueFile Name1102a57f.exeMcAfee DetectionGeneric.dxLength446,880
bytesCRC327FA50211MD597c561b56483317189a950e473eac73eSHA12B8B9961DD01AAD5833546874A6DEBE80F46FE40Other Common
Detection AliasesCompany NameDetection NameNormanw32/smalldoor.bgalPandaTrj/Shark.AVSymantecBackdoor.
TrojanAvert® Labs has observed th...
Generic BackDoor!F6B0DB10 - Generic BackDoor!F6B0DB10 at McAfee
File PropertyProperty ValueFile Name10dbb0f6.exeMcAfee DetectionGeneric BackDoorLength215,040
bytesCRC32F6B0DB10MD5822d3de2cdae9a6e0dfe069279f24b48SHA1C9CD0456539039F45EC0DFB9EAE4C816099DB7BBOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/blackhole.rNormanw32/blackhole.
ajaSymantecBackdoor.SinguAvert&re...
Generic Dropper!016A8EDE - Generic Dropper!016A8EDE at McAfee
File PropertyProperty ValueFile NameUnavailableMcAfee DetectionGeneric DropperLength902,826
bytesCRC32016A8EDEMD50a0147cba07d54727eca0ed3fddd66bdSHA1D6C5DE2083DAE1127A14EF539D3BFC633B555EABOther Common
Detection AliasesCompany NameDetection NameNormanw32/banload.ttjSymantecTrojan HorseAvert® Labs has
observed the following system ...
Downloader-ACH!44557A3D - Downloader-ACH!44557A3D at McAfee
File PropertyProperty ValueFile NameUnavailableMcAfee DetectionDownloader-ACHLength295,682
bytesCRC3244557A3DMD59b0a3edfd17ff07f1efc650b9fef43ecSHA19F664784B6265B86839C0B3E376DAFDBB7FECBAAOther Common
Detection AliasesCompany NameDetection NameNormanw32/malware.cvxmAvert® Labs has observed the following
system activities:ActivityR...
Generic BackDoor!455C9C0F - Generic BackDoor!455C9C0F at McAfee
File PropertyProperty ValueFile Name0f9c5c45.exeMcAfee DetectionGeneric BackDoorLength436,224
bytesCRC32455C9C0FMD5cf2c88e6fdbe079b5a4e5d143c7e7f21SHA1CBFEDD45406A4E5BCF4EE7510DDA0F0295042C45Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/agentNormanw32/delf.bdodSymantecBackdoor.
TrojanAvert® Labs ha...
Generic.dx!2BE1870F - Generic.dx!2BE1870F at McAfee
File PropertyProperty ValueFile Name0f87e12b.exeMcAfee DetectionGeneric.dxLength287,158
bytesCRC322BE1870FMD59d239497acf3050068a38ba2d11f6102SHA14B54A95FABF2F625A2B7ABE1AE07B766E2BF9B7AOther Common
Detection AliasesCompany NameDetection NameMicrosofttrojan:win32/vb.aahNormanw32/vbdoor.gldSymantecBackdoor.
TrojanAvert® Labs has obse...
Generic.dx!5983A40F - Generic.dx!5983A40F at McAfee
File PropertyProperty ValueFile Name0fa48359.exeMcAfee DetectionGeneric.dxLength62,566
bytesCRC325983A40FMD561043c5e1859dfbf1342658940f6b39fSHA15BA5895D47DF4F8237F131482FF251255AAE1DCEOther Common
Detection AliasesCompany NameDetection NameNormanw32/bifrose.jnkPandaTrj/LdPinch.AKNSymantecBackdoor.IRC.
BotAvert® Labs has observed th...
Downloader-ACH!53CCC128 - Downloader-ACH!53CCC128 at McAfee
File PropertyProperty ValueFile NameUnavailableMcAfee DetectionDownloader-ACHLength295,682
bytesCRC3253CCC128MD535d97d6f74ddabaaa798d1b12df00571SHA1AC2D2DDFCEA6B6E9270F7ABC7344A08482BD5FE3Other Common
Detection AliasesCompany NameDetection NameNormanw32/malware.cvxmAvert® Labs has observed the following
system activities:ActivityR...
Downloader-ACH!07AC859C - Downloader-ACH!07AC859C at McAfee
File PropertyProperty ValueFile NameUnavailableMcAfee DetectionDownloader-ACHLength295,682
bytesCRC3207AC859CMD53f7bb21241e236375fe8da338b1c8bf2SHA1769FF87FA2C3A2CDBC9881A0EBED3311826D6309Other Common
Detection AliasesCompany NameDetection NameNormanw32/malware.cvxmAvert® Labs has observed the following
system activities:ActivityR...
Downloader-ACH!FD6DADA0 - Downloader-ACH!FD6DADA0 at McAfee
File PropertyProperty ValueFile NameUnavailableMcAfee DetectionDownloader-ACHLength295,682
bytesCRC32FD6DADA0MD54f94dafe3af050cf7002e11441dd7a98SHA128A3CD46FE674ED22F297DEAF2A5327B8B2B03B8Other Common
Detection AliasesCompany NameDetection NameNormanw32/malware.cvxmAvert® Labs has observed the following
system activities:ActivityR...
Downloader-ACH!D0C54E8F - Downloader-ACH!D0C54E8F at McAfee
File PropertyProperty ValueFile NameUnavailableMcAfee DetectionDownloader-ACHLength295,682
bytesCRC32D0C54E8FMD55b76702ce8f7cffcc2302c561bb47369SHA189C665D982797808EA81EDEB533930EDB8C4976BOther Common
Detection AliasesCompany NameDetection NameNormanw32/malware.cvxmAvert® Labs has observed the following
system activities:ActivityR...
Downloader-ACH!DE72AFD9 - Downloader-ACH!DE72AFD9 at McAfee
File PropertyProperty ValueFile NameUnavailableMcAfee DetectionDownloader-ACHLength295,682
bytesCRC32DE72AFD9MD550a616108378b995844234ae892b3188SHA1B48B8160E7AD2E74066B56644368B82E5FEBCBB9Other Common
Detection AliasesCompany NameDetection NameNormanw32/malware.cvtnAvert® Labs has observed the following
system activities:ActivityR...
Downloader-ACH!B2CBBE96 - Downloader-ACH!B2CBBE96 at McAfee
File PropertyProperty ValueFile NameUnavailableMcAfee DetectionDownloader-ACHLength295,682
bytesCRC32B2CBBE96MD57bfd9d84eddcb88c8cf574f5a0f53194SHA14969E839DB6E4C0B0D6C23B6CA1D2035CD64DEC9Other Common
Detection AliasesCompany NameDetection NameNormanw32/malware.cvxmAvert® Labs has observed the following
system activities:ActivityR...
Troj/Agent-HAR - Troj/Agent-HAR at Sophos
...
Troj/SWFdlr-Gen - Troj/SWFdlr-Gen at Sophos
...
Troj/FakeVir-BM - Troj/FakeVir-BM at Sophos
Troj/FakeVir-BM pretends to scan the computer for threats. It always finds threats even though
they do not exist. The user is prompted to pay a license fee before Troj/FakeVir-BM
pretends to clean the threats.
...
Mal/Dorf-M - Mal/Dorf-M at Sophos
Mal/Dorf-M is a malicious program.
...
Troj/Bagle-TU - Troj/Bagle-TU at Sophos
...
Troj/FakeAV-R - Troj/FakeAV-R at Sophos
Troj/FakeAV-R is an adware application. Troj/FakeAV-R includes
functionality to access the internet and communicate with a remote server via HTTP.
When Troj/FakeAV-R is installed the following files are created:
<Desktop>\MalwareAlarm.lnk ...
Troj/Drop-X - Troj/Drop-X at Sophos
Troj/Drop-X is a Trojan dropper for the Windows platform. When run the
Trojan will drop components to the Temporary folder and run them.
...
Troj/Keylog-JO - Troj/Keylog-JO at Sophos
Troj/Keylog-JO is a key-logging Trojan for the Windows platform. The Trojan
is typically installed as a service named "NetKey" by some other dropper or exploited Word document.
...
Troj/MDrop-BSV - Troj/MDrop-BSV at Sophos
...
Troj/Poison-AA - Troj/Poison-AA at Sophos
...
0 writebacks [06/02/2008 04:42]
[]
permanent link
|
Virus Malware and Threat News for 20080531
Generic.dx!B53C50DA - Generic.dx!B53C50DA at McAfee
File PropertyProperty ValueFile Nameda503cb5.exeMcAfee DetectionGeneric.dxLength159,977
bytesCRC32B53C50DAMD59e7d1a29be1e952d18cf752761939cd7SHA1FD016703C021899C5B644DA065424EDB3DE930B9Other Common
Detection AliasesCompany NameDetection NameMicrosoftvirtool:win32/delfinject.gen!lNormanw32/agent.
buwuSymantecBackdoor.FormadorAvert® ...
Generic.dx!14BD5D31 - Generic.dx!14BD5D31 at McAfee
File PropertyProperty ValueFile NameUnavailableMcAfee DetectionGeneric.dxLength22,528
bytesCRC3214BD5D31MD55FC1F252A5134983A74C2161C9DDA70DSHA164FD4E62A5C7155391984972BBE5814CDB947B8COther Common
Detection AliasesCompany NameDetection NameMicrosofttrojandownloader:win32/pangu.aAvert® Labs has observed
the following system activiti...
W32/Sdbot.worm!DB465CDA - W32/Sdbot.worm!DB465CDA at McAfee
File PropertyProperty ValueFile Nameda5c46db.exeMcAfee DetectionW32/Sdbot.wormLength13,764
bytesCRC32DB465CDAMD5000cd73d32a6785de4933e8da0eb8acbSHA1A26A993B500B848A21AF6B0710C15475FD15BB93Other Common
Detection AliasesCompany NameDetection NameMicrosofttrojan:win32/meredropNormanw32/ircbot.ycdPandaW32/Gaobot.
OXI.wormSymantecTrojan.Ki...
IRC/Flood.mirc!02033479 - IRC/Flood.mirc!02033479 at McAfee
File PropertyProperty ValueFile Namewindir32.exeMcAfee DetectionIRC/Flood.mircLength754,176
bytesCRC3202033479MD562045b2d984a3ada6103e334121b4742SHA19551066FC6338F2F7A261368EFB0EF6AA7883713Other Common
Detection AliasesCompany NameDetection NameF-Prot~W32/Heuristic-210!EldoradoAvert® Labs has observed the
following system activiti...
Troj/Clagger-BE - Troj/Clagger-BE at Sophos
...
Troj/Agent-HAQ - Troj/Agent-HAQ at Sophos
...
Troj/MDrop-BSU - Troj/MDrop-BSU at Sophos
Troj/MDrop-BSU is a Trojan dropper for the Windows platform. When run it
will drop other components to the current users temporary folder and run them.
...
Troj/RootKit-CQ - Troj/RootKit-CQ at Sophos
Troj/RootKit-CQ is a stealthing rookit Trojan with keylogging functionality for the Windows
platform. When run the Trojan will drop a stealthing kernel driver and a DLL to the
Windows system folder, which it will install as a service by modifying the following Netman registry entry:
...
W32/Autorun-EN - W32/Autorun-EN at Sophos
W32/Autorun-EN is a removable-media worm for the Windows platform. When run
the worm will copy itself to the current users Startup folder as HPser.exe while also dropping a secondary
component HPdate.exe to the same location. While running, the worm will attempt to copy
itself...
0 writebacks [06/01/2008 04:42]
[]
permanent link
|
|
| September 2010 |
|---|
| Sun |
Mon |
Tue |
Wed |
Thu |
Fri |
Sat |
| |
|
|
1 |
2 |
3 |
4 |
| 5 |
6 |
7 |
8 |
9 |
10 |
11 |
| 12 |
13 |
14 |
15 |
16 |
17 |
18 |
| 19 |
20 |
21 |
22 |
23 |
24 |
25 |
| 26 |
27 |
28 |
29 |
30 |
|
|
Rss version
|
