Virus Malware and Threat News for 20080730
Trojan-Downloader:HTML/Agent.KM - Trojan-Downloader:HTML/Agent.KM at F-Secure
Trojan-Downloader:HTML/Agent.KM is a detection for certain spammed emails claiming to contain a link to a
video, but actually link to a malicious executable.
...
RegistryDoctor2008 - RegistryDoctor2008 at Norton Symantec
BehaviorRegistryDoctor2008 is a misleading application that may give exaggerated reports of threats on the
computer....
Spyware.UltimateKeylog - Spyware.UltimateKeylog at Norton Symantec
BehaviorSpyware.UltimateKeylog is a spyware program that records keystrokes and takes screenshots of the
computer....
W32/Bagle.gen!Sality!7541CFF9 - W32/Bagle.gen!Sality!7541CFF9 at McAfee
File PropertyProperty ValueFile Namexxx_pornoupdates.exeMcAfee DetectionW32/Bagle.gen!SalityLength20,469
bytesCRC327541CFF9MD58d7f587c656c051d13824706278a5b53SHA1B93FDBD256322B407E5B7BB40CF0ECC46F28DA84Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)win32/salityMicrosoftworm:win32/bagle.
ie@mmNormanw32/bagle.hd@mm...
BackDoor-DKA!F987E731 - BackDoor-DKA!F987E731 at McAfee
File PropertyProperty ValueFile Namedfffaeee.exeMcAfee DetectionBackDoor-DKALength18,359
bytesCRC32F987E731MD5bb79f8b40b5d7132e3ae548c2f24eeffSHA1AEB46135B14E90B828A294D0EE03C59AD907C2BCOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/Autorun.18366AvastWin32:Trojan-gen
{Other}AviraTR/Drop.Agent.gxbBitDefenderW...
Generic.dx!E5E5F692 - Generic.dx!E5E5F692 at McAfee
File PropertyProperty ValueFile Namekdjfuej.exeMcAfee DetectionGeneric.dxLength229,376
bytesCRC32E5E5F692MD504872FE902E5900EF2013AD9E6EF17EDSHA172084413EBFBE3685453B84EDE831EA0786E0D98Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)Generic10.KNF (Trojan horse)AviraTR/Agent.
jisClamAVTrojan.Agent-19335Dr.WebTrojan....
PWS-OnlineGames.as!96BD86BA - PWS-OnlineGames.as!96BD86BA at McAfee
File PropertyProperty ValueFile Namejss10.exeMcAfee DetectionPWS-OnlineGames.asLength19,511
bytesCRC3296BD86BAMD5a0d9805ac3f01ff35b1bce6724bbf58cSHA14DB213E2C471399FEA2CAD77CF6501375D10C254Other Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTSPY_ONLIN...
PWS-OnlineGames.as!79D7E758 - PWS-OnlineGames.as!79D7E758 at McAfee
File PropertyProperty ValueFile Name080730-a1-89.exeMcAfee DetectionPWS-OnlineGames.asLength23,363
bytesCRC3279D7E758MD549b178d9e0078a3ce898c25b334f50faSHA109A39DB48B55EE3B1C984CB85052DE07ABA23CEDOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQPAVG
(GriSoft)PSW.Generic...
PWS-OnlineGames.as!F55EB78D - PWS-OnlineGames.as!F55EB78D at McAfee
File PropertyProperty ValueFile Name080730-a1-16.exeMcAfee DetectionPWS-OnlineGames.asLength20,071
bytesCRC32F55EB78DMD5ebcfcf501f6e76818ac55e3a027abb94SHA1E7D4301FD97C9B72DB037CBAB4AD172F7289D3DDOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQPAVG
(GriSoft)PSW.OnlineG...
PWS-OnlineGames.as!2059E799 - PWS-OnlineGames.as!2059E799 at McAfee
File PropertyProperty ValueFile Name99e75920.exeMcAfee DetectionPWS-OnlineGames.asLength19,751
bytesCRC322059E799MD54D92BF68D841703E6B42E1EB67366F2FSHA111B9B0DB3F998C20B197D58A0E233752613C25F0Other Common
Detection AliasesCompany NameDetection NameAvastWin32:OnLineGames-DQP [Trj]AVG (GriSoft)psw.onlinegames.
axpqAviraTR/Dropper.GenBit...
PWS-OnlineGames.as!2F23988D - PWS-OnlineGames.as!2F23988D at McAfee
File PropertyProperty ValueFile Name080730-a1-46.exeMcAfee DetectionPWS-OnlineGames.asLength20,191
bytesCRC322F23988DMD5197a796de0cfe2503501b4c4f99e25a1SHA10E24E29126CA861E8A4867F11BD019082B9E0942Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQPAVG
(GriSoft)psw.onlineg...
PWS-OnlineGames.as!3678DB75 - PWS-OnlineGames.as!3678DB75 at McAfee
File PropertyProperty ValueFile Name080730-a1-40.exeMcAfee DetectionPWS-OnlineGames.asLength20,603
bytesCRC323678DB75MD5cca4b685f4bbf0367e9224105133428aSHA16A87BE74FCAA252349AD6930FEBE462A58D4A33FOther Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTRO...
PWS-OnlineGames.as!B0A17A17 - PWS-OnlineGames.as!B0A17A17 at McAfee
File PropertyProperty ValueFile Name080730-a1-26.exeMcAfee DetectionPWS-OnlineGames.asLength19,987
bytesCRC32B0A17A17MD59953c5fbc8fe4ef9de8100ebb4ca6cb4SHA1C1DC39D1E9FC98AACABAB57F03A003C1308617BFOther Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTRO...
PWS-OnlineGames.as!0135D984 - PWS-OnlineGames.as!0135D984 at McAfee
File PropertyProperty ValueFile Name080730-a1-94.exeMcAfee DetectionPWS-OnlineGames.asLength19,651
bytesCRC320135D984MD589a343f13a76b2d1a86cd4a8566faa11SHA12682F7AB07E90D1CE26D81A9435DFBF8B2AF0496Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQPAVG
(GriSoft)PSW.Generic...
PWS-OnlineGames.as!B39CCD20 - PWS-OnlineGames.as!B39CCD20 at McAfee
File PropertyProperty ValueFile Name080730-a1-73.exeMcAfee DetectionPWS-OnlineGames.asLength19,623
bytesCRC32B39CCD20MD5fd9968681190ddb704149fbd214bb53cSHA17B8A44AD7E199770AD53BA252A4942CFB355E3D7Other Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTSP...
PWS-OnlineGames.as!9960B376 - PWS-OnlineGames.as!9960B376 at McAfee
File PropertyProperty ValueFile Name080730-a1-34.exeMcAfee DetectionPWS-OnlineGames.asLength19,591
bytesCRC329960B376MD5ad00d84bc4fcc31a765432ad3d7ac129SHA14036659539CD642B8DFAF595817A2111069BBDDAOther Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTSP...
PWS-OnlineGames.as!66E9BD9F - PWS-OnlineGames.as!66E9BD9F at McAfee
File PropertyProperty ValueFile Name080730-a1-35.exeMcAfee DetectionPWS-OnlineGames.asLength19,491
bytesCRC3266E9BD9FMD5c98d6a3e6097261153acdfbcf4996799SHA15DA74E60452D83544231C32190BDEC64340D21EFOther Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTSP...
PWS-OnlineGames.as!2C26A518 - PWS-OnlineGames.as!2C26A518 at McAfee
File PropertyProperty ValueFile Name18a5262c.exeMcAfee DetectionPWS-OnlineGames.asLength20,071
bytesCRC322C26A518MD5cb66a78de6ae7a156d13c6c1eec46592SHA163E7B2676B33B525E6CDEB6CE3C96F13922B85BDOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQPAVG
(GriSoft)psw.onlinegames...
PWS-OnlineGames.ax!0F266C9A - PWS-OnlineGames.ax!0F266C9A at McAfee
File PropertyProperty ValueFile Name9.exeMcAfee DetectionPWS-OnlineGames.axLength13,821
bytesCRC320F266C9AMD505319f564d52a5c48d334f8fb8aa0632SHA101D857C15558EDFED29E8117CBEB41E27BD25A07Other Common
Detection AliasesCompany NameDetection NameAvastWin32:Nilage-NP [Trj]AVG (GriSoft)generic11.buAviraTR/Dropper.
GenBitDefenderTrojan.PWS.Lm...
PWS-OnlineGames.ax!444BF127 - PWS-OnlineGames.ax!444BF127 at McAfee
File PropertyProperty ValueFile Name22.exeMcAfee DetectionPWS-OnlineGames.axLength14,370
bytesCRC32444BF127MD56295c70394e6e1e0690bd741bf234a41SHA13DA1A8DBBC61AFB9C84D5C21047678EA08419244Other Common
Detection AliasesCompany NameDetection NameAvastWin32:Nilage-NPAVG (GriSoft)PSW.Generic6.SJOAviraTR/Dropper.
GenBitDefenderTrojan.PWS.Lmi...
PWS-OnlineGames.as!FDD34734 - PWS-OnlineGames.as!FDD34734 at McAfee
File PropertyProperty ValueFile Name080730-a1-6.exeMcAfee DetectionPWS-OnlineGames.asLength20,079
bytesCRC32FDD34734MD52d040b702df88621b891bd9763e111fdSHA160AB7F2BB3900492DE72775A0E6F6AA669E15167Other Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTROJ...
PWS-OnlineGames.as!49A73F30 - PWS-OnlineGames.as!49A73F30 at McAfee
File PropertyProperty ValueFile Name080730-a1-11.exeMcAfee DetectionPWS-OnlineGames.asLength19,635
bytesCRC3249A73F30MD55c7e03e81d657d9a934be2cb41e323fdSHA114150A3174750B533A172BA33F2C29C4A622D2C8Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:
OnLineGames-DQPAviraTR/Dropper.GenBitDe...
PWS-OnlineGames.as!30F36B4D - PWS-OnlineGames.as!30F36B4D at McAfee
File PropertyProperty ValueFile Name080730-a1-10.exeMcAfee DetectionPWS-OnlineGames.asLength20,023
bytesCRC3230F36B4DMD551b813a8e9d8c9a11b2b0addf55b1ca5SHA1C501E5804E8AD196B4A0ECFC7EDD78A898FE8CCEOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQPAVG
(GriSoft)generic11.a...
PWS-OnlineGames.as!A178FB8E - PWS-OnlineGames.as!A178FB8E at McAfee
File PropertyProperty ValueFile Name080730-a1-41.exeMcAfee DetectionPWS-OnlineGames.asLength19,139
bytesCRC32A178FB8EMD5BD43085663C436B76C9FD7578330E450SHA1F0A983E69258046F5977AB6816F50D26B2DCAC57Other Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTSP...
PWS-OnlineGames.as!5A0B13A7 - PWS-OnlineGames.as!5A0B13A7 at McAfee
File PropertyProperty ValueFile Name080730-a1-31.exeMcAfee DetectionPWS-OnlineGames.asLength19,527
bytesCRC325A0B13A7MD59BBBEE38764142FC029B0B158E2A14B1SHA1636B73AEC4B16151EAFD9F23ACB72C4D8FF3429BOther Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTSP...
PWS-OnlineGames.as!C5A49397 - PWS-OnlineGames.as!C5A49397 at McAfee
File PropertyProperty ValueFile Name080730-a1-12.exeMcAfee DetectionPWS-OnlineGames.asLength19,607
bytesCRC32C5A49397MD507E7C624C9455248E7BE319D69EF7D3DSHA152A32D68EDE4DAF1C9E3B635F790188E0073B4EBOther Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTSP...
PWS-OnlineGames.as!EF3902E7 - PWS-OnlineGames.as!EF3902E7 at McAfee
File PropertyProperty ValueFile Name080730-a1-22.exeMcAfee DetectionPWS-OnlineGames.asLength19,523
bytesCRC32EF3902E7MD5BD27E01B90ABB6B8784EE47EB050D185SHA1B761AB9B2A6C31B4603E3AB27A94452B065DD7CFOther Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTSP...
PWS-OnlineGames.as!5C4FD27C - PWS-OnlineGames.as!5C4FD27C at McAfee
File PropertyProperty ValueFile Name080730-a1-42.exeMcAfee DetectionPWS-OnlineGames.asLength19,639
bytesCRC325C4FD27CMD5B8A3F63E9065998AB4A6BF3571AE6108SHA180B73D51EA3EA73085CABCB40FFBA43054701F85Other Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTSP...
PWS-OnlineGames.as!F485DD50 - PWS-OnlineGames.as!F485DD50 at McAfee
File PropertyProperty ValueFile Name080730-a3-1.exeMcAfee DetectionPWS-OnlineGames.asLength19,511
bytesCRC32F485DD50MD565d74e677d7308492013578059c087bdSHA166152C01E6B4A6373233DFDCA900A97062DF2CA5Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQPAVG
(GriSoft)generic11.am...
PWS-OnlineGames.as!92BDD9AF - PWS-OnlineGames.as!92BDD9AF at McAfee
File PropertyProperty ValueFile Name080730-a1-72.exeMcAfee DetectionPWS-OnlineGames.asLength19,519
bytesCRC3292BDD9AFMD53A2475C17A23682C7D7CD2AFF48E7A49SHA1358D451770DE7FD24B265AD7F7DABF793B1AE76COther Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTSP...
Vundo!7e18dec2 - Vundo!7e18dec2 at McAfee
This variant of Vundo may be detected as Generic.dx in earlier DAT versions.This trojan typically uses random
filename (e.g. ljJDvttq.dll) as created by its dropper. It then modifies the following registry entries to
ensure it executes at each Windows start:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows
NT\CurrentVersion\Windows\...
PWS-OnlineGames.as!A545C280 - PWS-OnlineGames.as!A545C280 at McAfee
File PropertyProperty ValueFile Name080730-a1-75.exeMcAfee DetectionPWS-OnlineGames.asLength19,487
bytesCRC32A545C280MD547db5de13349251868a1f7cf6ed156fcSHA1EAED785B73ADF7417EF26ED7F007A4C756671B1AOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:
OnLineGames-DQPAviraTR/Dropper.GenBitDe...
PWS-OnlineGames.as!30E3885B - PWS-OnlineGames.as!30E3885B at McAfee
File PropertyProperty ValueFile Name080730-a1-25.exeMcAfee DetectionPWS-OnlineGames.asLength19,627
bytesCRC3230E3885BMD528109C9679B0F864662CE7894774E900SHA1E075B899557B260669E20497B42A0E59667F9EDBOther Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTSP...
TROJ_DLOADR.HG - TROJ_DLOADR.HG at Trend Micro
...
TROJ_POPHOT.OJ - TROJ_POPHOT.OJ at Trend Micro
...
TROJ_RENOS.AEA - TROJ_RENOS.AEA at Trend Micro
...
TROJ_DROPPER.OAV - TROJ_DROPPER.OAV at Trend Micro
...
GetCodec.A - GetCodec.A at Panda
It modifies the files with an MP3, MP2, WMV and WMA extension it finds in the affected computer. Whenever
a file with these extensions is run, it connects to a website from which it downloads malware.
...
Troj/PWS-ASD - Troj/PWS-ASD at Sophos
...
Mal/ObfJS-AZ - Mal/ObfJS-AZ at Sophos
...
Troj/Qhost-V - Troj/Qhost-V at Sophos
Troj/Qhost-V modifies the Windows HOSTS file in:
<System>\drivers\etc\hosts...
Troj/Agent-HIF - Troj/Agent-HIF at Sophos
Troj/Agent-HIF is a Trojan for the Windows platform. The Trojan appears to
be a hacked version of advapi32.dll.
...
Troj/Agent-HIG - Troj/Agent-HIG at Sophos
...
Troj/Crack-M - Troj/Crack-M at Sophos
Troj/Crack-M is a Trojan for the Windows platform. The following registry
entry is set: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system
EnableLUA 0 Registry entries are created under:
HKCU\Softw...
Troj/FakeVir-EC - Troj/FakeVir-EC at Sophos
Troj/FakeVir-EC is a Trojan for the Windows platform. Troj/FakeVir-EC
includes functionality to access the internet and communicate with a remote server via HTTP.
When Troj/FakeVir-EC is installed the following files are created:
<User>\Application...
Troj/LowZone-EB - Troj/LowZone-EB at Sophos
Troj/LowZone-EB is a Trojan for the Windows platform. Registry entries
affecting internet security may be set under:
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones The following
registry entry is set, disabling system software: ...
0 writebacks [07/31/2008 04:48]
[]
permanent link
|
