Virus Malware and Threat News for 20080730
Trojan-Downloader:HTML/Agent.KM - Trojan-Downloader:HTML/Agent.KM at F-Secure
Trojan-Downloader:HTML/Agent.KM is a detection for certain spammed emails claiming to contain a link to a
video, but actually link to a malicious executable.
...
RegistryDoctor2008 - RegistryDoctor2008 at Norton Symantec
BehaviorRegistryDoctor2008 is a misleading application that may give exaggerated reports of threats on the
computer....
Spyware.UltimateKeylog - Spyware.UltimateKeylog at Norton Symantec
BehaviorSpyware.UltimateKeylog is a spyware program that records keystrokes and takes screenshots of the
computer....
W32/Bagle.gen!Sality!7541CFF9 - W32/Bagle.gen!Sality!7541CFF9 at McAfee
File PropertyProperty ValueFile Namexxx_pornoupdates.exeMcAfee DetectionW32/Bagle.gen!SalityLength20,469
bytesCRC327541CFF9MD58d7f587c656c051d13824706278a5b53SHA1B93FDBD256322B407E5B7BB40CF0ECC46F28DA84Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)win32/salityMicrosoftworm:win32/bagle.
ie@mmNormanw32/bagle.hd@mm...
BackDoor-DKA!F987E731 - BackDoor-DKA!F987E731 at McAfee
File PropertyProperty ValueFile Namedfffaeee.exeMcAfee DetectionBackDoor-DKALength18,359
bytesCRC32F987E731MD5bb79f8b40b5d7132e3ae548c2f24eeffSHA1AEB46135B14E90B828A294D0EE03C59AD907C2BCOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/Autorun.18366AvastWin32:Trojan-gen
{Other}AviraTR/Drop.Agent.gxbBitDefenderW...
Generic.dx!E5E5F692 - Generic.dx!E5E5F692 at McAfee
File PropertyProperty ValueFile Namekdjfuej.exeMcAfee DetectionGeneric.dxLength229,376
bytesCRC32E5E5F692MD504872FE902E5900EF2013AD9E6EF17EDSHA172084413EBFBE3685453B84EDE831EA0786E0D98Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)Generic10.KNF (Trojan horse)AviraTR/Agent.
jisClamAVTrojan.Agent-19335Dr.WebTrojan....
PWS-OnlineGames.as!96BD86BA - PWS-OnlineGames.as!96BD86BA at McAfee
File PropertyProperty ValueFile Namejss10.exeMcAfee DetectionPWS-OnlineGames.asLength19,511
bytesCRC3296BD86BAMD5a0d9805ac3f01ff35b1bce6724bbf58cSHA14DB213E2C471399FEA2CAD77CF6501375D10C254Other Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTSPY_ONLIN...
PWS-OnlineGames.as!79D7E758 - PWS-OnlineGames.as!79D7E758 at McAfee
File PropertyProperty ValueFile Name080730-a1-89.exeMcAfee DetectionPWS-OnlineGames.asLength23,363
bytesCRC3279D7E758MD549b178d9e0078a3ce898c25b334f50faSHA109A39DB48B55EE3B1C984CB85052DE07ABA23CEDOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQPAVG
(GriSoft)PSW.Generic...
PWS-OnlineGames.as!F55EB78D - PWS-OnlineGames.as!F55EB78D at McAfee
File PropertyProperty ValueFile Name080730-a1-16.exeMcAfee DetectionPWS-OnlineGames.asLength20,071
bytesCRC32F55EB78DMD5ebcfcf501f6e76818ac55e3a027abb94SHA1E7D4301FD97C9B72DB037CBAB4AD172F7289D3DDOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQPAVG
(GriSoft)PSW.OnlineG...
PWS-OnlineGames.as!2059E799 - PWS-OnlineGames.as!2059E799 at McAfee
File PropertyProperty ValueFile Name99e75920.exeMcAfee DetectionPWS-OnlineGames.asLength19,751
bytesCRC322059E799MD54D92BF68D841703E6B42E1EB67366F2FSHA111B9B0DB3F998C20B197D58A0E233752613C25F0Other Common
Detection AliasesCompany NameDetection NameAvastWin32:OnLineGames-DQP [Trj]AVG (GriSoft)psw.onlinegames.
axpqAviraTR/Dropper.GenBit...
PWS-OnlineGames.as!2F23988D - PWS-OnlineGames.as!2F23988D at McAfee
File PropertyProperty ValueFile Name080730-a1-46.exeMcAfee DetectionPWS-OnlineGames.asLength20,191
bytesCRC322F23988DMD5197a796de0cfe2503501b4c4f99e25a1SHA10E24E29126CA861E8A4867F11BD019082B9E0942Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQPAVG
(GriSoft)psw.onlineg...
PWS-OnlineGames.as!3678DB75 - PWS-OnlineGames.as!3678DB75 at McAfee
File PropertyProperty ValueFile Name080730-a1-40.exeMcAfee DetectionPWS-OnlineGames.asLength20,603
bytesCRC323678DB75MD5cca4b685f4bbf0367e9224105133428aSHA16A87BE74FCAA252349AD6930FEBE462A58D4A33FOther Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTRO...
PWS-OnlineGames.as!B0A17A17 - PWS-OnlineGames.as!B0A17A17 at McAfee
File PropertyProperty ValueFile Name080730-a1-26.exeMcAfee DetectionPWS-OnlineGames.asLength19,987
bytesCRC32B0A17A17MD59953c5fbc8fe4ef9de8100ebb4ca6cb4SHA1C1DC39D1E9FC98AACABAB57F03A003C1308617BFOther Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTRO...
PWS-OnlineGames.as!0135D984 - PWS-OnlineGames.as!0135D984 at McAfee
File PropertyProperty ValueFile Name080730-a1-94.exeMcAfee DetectionPWS-OnlineGames.asLength19,651
bytesCRC320135D984MD589a343f13a76b2d1a86cd4a8566faa11SHA12682F7AB07E90D1CE26D81A9435DFBF8B2AF0496Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQPAVG
(GriSoft)PSW.Generic...
PWS-OnlineGames.as!B39CCD20 - PWS-OnlineGames.as!B39CCD20 at McAfee
File PropertyProperty ValueFile Name080730-a1-73.exeMcAfee DetectionPWS-OnlineGames.asLength19,623
bytesCRC32B39CCD20MD5fd9968681190ddb704149fbd214bb53cSHA17B8A44AD7E199770AD53BA252A4942CFB355E3D7Other Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTSP...
PWS-OnlineGames.as!9960B376 - PWS-OnlineGames.as!9960B376 at McAfee
File PropertyProperty ValueFile Name080730-a1-34.exeMcAfee DetectionPWS-OnlineGames.asLength19,591
bytesCRC329960B376MD5ad00d84bc4fcc31a765432ad3d7ac129SHA14036659539CD642B8DFAF595817A2111069BBDDAOther Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTSP...
PWS-OnlineGames.as!66E9BD9F - PWS-OnlineGames.as!66E9BD9F at McAfee
File PropertyProperty ValueFile Name080730-a1-35.exeMcAfee DetectionPWS-OnlineGames.asLength19,491
bytesCRC3266E9BD9FMD5c98d6a3e6097261153acdfbcf4996799SHA15DA74E60452D83544231C32190BDEC64340D21EFOther Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTSP...
PWS-OnlineGames.as!2C26A518 - PWS-OnlineGames.as!2C26A518 at McAfee
File PropertyProperty ValueFile Name18a5262c.exeMcAfee DetectionPWS-OnlineGames.asLength20,071
bytesCRC322C26A518MD5cb66a78de6ae7a156d13c6c1eec46592SHA163E7B2676B33B525E6CDEB6CE3C96F13922B85BDOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQPAVG
(GriSoft)psw.onlinegames...
PWS-OnlineGames.ax!0F266C9A - PWS-OnlineGames.ax!0F266C9A at McAfee
File PropertyProperty ValueFile Name9.exeMcAfee DetectionPWS-OnlineGames.axLength13,821
bytesCRC320F266C9AMD505319f564d52a5c48d334f8fb8aa0632SHA101D857C15558EDFED29E8117CBEB41E27BD25A07Other Common
Detection AliasesCompany NameDetection NameAvastWin32:Nilage-NP [Trj]AVG (GriSoft)generic11.buAviraTR/Dropper.
GenBitDefenderTrojan.PWS.Lm...
PWS-OnlineGames.ax!444BF127 - PWS-OnlineGames.ax!444BF127 at McAfee
File PropertyProperty ValueFile Name22.exeMcAfee DetectionPWS-OnlineGames.axLength14,370
bytesCRC32444BF127MD56295c70394e6e1e0690bd741bf234a41SHA13DA1A8DBBC61AFB9C84D5C21047678EA08419244Other Common
Detection AliasesCompany NameDetection NameAvastWin32:Nilage-NPAVG (GriSoft)PSW.Generic6.SJOAviraTR/Dropper.
GenBitDefenderTrojan.PWS.Lmi...
PWS-OnlineGames.as!FDD34734 - PWS-OnlineGames.as!FDD34734 at McAfee
File PropertyProperty ValueFile Name080730-a1-6.exeMcAfee DetectionPWS-OnlineGames.asLength20,079
bytesCRC32FDD34734MD52d040b702df88621b891bd9763e111fdSHA160AB7F2BB3900492DE72775A0E6F6AA669E15167Other Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTROJ...
PWS-OnlineGames.as!49A73F30 - PWS-OnlineGames.as!49A73F30 at McAfee
File PropertyProperty ValueFile Name080730-a1-11.exeMcAfee DetectionPWS-OnlineGames.asLength19,635
bytesCRC3249A73F30MD55c7e03e81d657d9a934be2cb41e323fdSHA114150A3174750B533A172BA33F2C29C4A622D2C8Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:
OnLineGames-DQPAviraTR/Dropper.GenBitDe...
PWS-OnlineGames.as!30F36B4D - PWS-OnlineGames.as!30F36B4D at McAfee
File PropertyProperty ValueFile Name080730-a1-10.exeMcAfee DetectionPWS-OnlineGames.asLength20,023
bytesCRC3230F36B4DMD551b813a8e9d8c9a11b2b0addf55b1ca5SHA1C501E5804E8AD196B4A0ECFC7EDD78A898FE8CCEOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQPAVG
(GriSoft)generic11.a...
PWS-OnlineGames.as!A178FB8E - PWS-OnlineGames.as!A178FB8E at McAfee
File PropertyProperty ValueFile Name080730-a1-41.exeMcAfee DetectionPWS-OnlineGames.asLength19,139
bytesCRC32A178FB8EMD5BD43085663C436B76C9FD7578330E450SHA1F0A983E69258046F5977AB6816F50D26B2DCAC57Other Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTSP...
PWS-OnlineGames.as!5A0B13A7 - PWS-OnlineGames.as!5A0B13A7 at McAfee
File PropertyProperty ValueFile Name080730-a1-31.exeMcAfee DetectionPWS-OnlineGames.asLength19,527
bytesCRC325A0B13A7MD59BBBEE38764142FC029B0B158E2A14B1SHA1636B73AEC4B16151EAFD9F23ACB72C4D8FF3429BOther Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTSP...
PWS-OnlineGames.as!C5A49397 - PWS-OnlineGames.as!C5A49397 at McAfee
File PropertyProperty ValueFile Name080730-a1-12.exeMcAfee DetectionPWS-OnlineGames.asLength19,607
bytesCRC32C5A49397MD507E7C624C9455248E7BE319D69EF7D3DSHA152A32D68EDE4DAF1C9E3B635F790188E0073B4EBOther Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTSP...
PWS-OnlineGames.as!EF3902E7 - PWS-OnlineGames.as!EF3902E7 at McAfee
File PropertyProperty ValueFile Name080730-a1-22.exeMcAfee DetectionPWS-OnlineGames.asLength19,523
bytesCRC32EF3902E7MD5BD27E01B90ABB6B8784EE47EB050D185SHA1B761AB9B2A6C31B4603E3AB27A94452B065DD7CFOther Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTSP...
PWS-OnlineGames.as!5C4FD27C - PWS-OnlineGames.as!5C4FD27C at McAfee
File PropertyProperty ValueFile Name080730-a1-42.exeMcAfee DetectionPWS-OnlineGames.asLength19,639
bytesCRC325C4FD27CMD5B8A3F63E9065998AB4A6BF3571AE6108SHA180B73D51EA3EA73085CABCB40FFBA43054701F85Other Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTSP...
PWS-OnlineGames.as!F485DD50 - PWS-OnlineGames.as!F485DD50 at McAfee
File PropertyProperty ValueFile Name080730-a3-1.exeMcAfee DetectionPWS-OnlineGames.asLength19,511
bytesCRC32F485DD50MD565d74e677d7308492013578059c087bdSHA166152C01E6B4A6373233DFDCA900A97062DF2CA5Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQPAVG
(GriSoft)generic11.am...
PWS-OnlineGames.as!92BDD9AF - PWS-OnlineGames.as!92BDD9AF at McAfee
File PropertyProperty ValueFile Name080730-a1-72.exeMcAfee DetectionPWS-OnlineGames.asLength19,519
bytesCRC3292BDD9AFMD53A2475C17A23682C7D7CD2AFF48E7A49SHA1358D451770DE7FD24B265AD7F7DABF793B1AE76COther Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTSP...
Vundo!7e18dec2 - Vundo!7e18dec2 at McAfee
This variant of Vundo may be detected as Generic.dx in earlier DAT versions.This trojan typically uses random
filename (e.g. ljJDvttq.dll) as created by its dropper. It then modifies the following registry entries to
ensure it executes at each Windows start:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows
NT\CurrentVersion\Windows\...
PWS-OnlineGames.as!A545C280 - PWS-OnlineGames.as!A545C280 at McAfee
File PropertyProperty ValueFile Name080730-a1-75.exeMcAfee DetectionPWS-OnlineGames.asLength19,487
bytesCRC32A545C280MD547db5de13349251868a1f7cf6ed156fcSHA1EAED785B73ADF7417EF26ED7F007A4C756671B1AOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:
OnLineGames-DQPAviraTR/Dropper.GenBitDe...
PWS-OnlineGames.as!30E3885B - PWS-OnlineGames.as!30E3885B at McAfee
File PropertyProperty ValueFile Name080730-a1-25.exeMcAfee DetectionPWS-OnlineGames.asLength19,627
bytesCRC3230E3885BMD528109C9679B0F864662CE7894774E900SHA1E075B899557B260669E20497B42A0E59667F9EDBOther Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTSP...
TROJ_DLOADR.HG - TROJ_DLOADR.HG at Trend Micro
...
TROJ_POPHOT.OJ - TROJ_POPHOT.OJ at Trend Micro
...
TROJ_RENOS.AEA - TROJ_RENOS.AEA at Trend Micro
...
TROJ_DROPPER.OAV - TROJ_DROPPER.OAV at Trend Micro
...
GetCodec.A - GetCodec.A at Panda
It modifies the files with an MP3, MP2, WMV and WMA extension it finds in the affected computer. Whenever
a file with these extensions is run, it connects to a website from which it downloads malware.
...
Troj/PWS-ASD - Troj/PWS-ASD at Sophos
...
Mal/ObfJS-AZ - Mal/ObfJS-AZ at Sophos
...
Troj/Qhost-V - Troj/Qhost-V at Sophos
Troj/Qhost-V modifies the Windows HOSTS file in:
<System>\drivers\etc\hosts...
Troj/Agent-HIF - Troj/Agent-HIF at Sophos
Troj/Agent-HIF is a Trojan for the Windows platform. The Trojan appears to
be a hacked version of advapi32.dll.
...
Troj/Agent-HIG - Troj/Agent-HIG at Sophos
...
Troj/Crack-M - Troj/Crack-M at Sophos
Troj/Crack-M is a Trojan for the Windows platform. The following registry
entry is set: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system
EnableLUA 0 Registry entries are created under:
HKCU\Softw...
Troj/FakeVir-EC - Troj/FakeVir-EC at Sophos
Troj/FakeVir-EC is a Trojan for the Windows platform. Troj/FakeVir-EC
includes functionality to access the internet and communicate with a remote server via HTTP.
When Troj/FakeVir-EC is installed the following files are created:
<User>\Application...
Troj/LowZone-EB - Troj/LowZone-EB at Sophos
Troj/LowZone-EB is a Trojan for the Windows platform. Registry entries
affecting internet security may be set under:
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones The following
registry entry is set, disabling system software: ...
0 writebacks [07/31/2008 04:48]
[]
permanent link
|
Virus Malware and Threat News for 20080728
VBS.Repulik.A - VBS.Repulik.A at Norton Symantec
VBS.Repulik.A is a virus that infects .doc, .pps, .ppt, .rtf and .xls files on the compromised computer.
...
PWS-OnlineGames.as!9F06C69A - PWS-OnlineGames.as!9F06C69A at McAfee
File PropertyProperty ValueFile Name3.exeMcAfee DetectionPWS-OnlineGames.asLength20,275
bytesCRC329F06C69AMD5672cdc51c4575a8d989a746c00488a98SHA123D2AA36A2766A2397ACD6F199A36D9FD0E02384Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)psw.onlinegames.axzkNormanw32/suspicious_u.
genSophosMal/PackerSymantecInfostealer...
PWS-OnlineGames.as!B9AE1D87 - PWS-OnlineGames.as!B9AE1D87 at McAfee
File PropertyProperty ValueFile Name25.exeMcAfee DetectionPWS-OnlineGames.asLength20,571
bytesCRC32B9AE1D87MD5479e0756aaed45ff2681775d27713607SHA12A4B1C25689A7D4C00FEC6F3D32E93551209EB3BOther Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTROJ_ZLOB.LNA...
Downloader-BIS!BA99D501 - Downloader-BIS!BA99D501 at McAfee
File PropertyProperty ValueFile Namesvcos.exeMcAfee DetectionDownloader-BISLength21,776
bytesCRC32BA99D501MD5bc432ec3434d84e9104376834422539dSHA1A86FD8AFFEFBBF40D3E9939EB77E46E1DAEB5893Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:
Agent-ZMQAviraTR/Dropper.GenBitDefenderGeneric.Mal...
PWS-OnlineGames.ax!DD76D0A5 - PWS-OnlineGames.ax!DD76D0A5 at McAfee
File PropertyProperty ValueFile Namezzwd.exeMcAfee DetectionPWS-OnlineGames.axLength16,838
bytesCRC32DD76D0A5MD5fc00e262fade977b8f3e17143054956eSHA1A53F8C3EEDCCA9974FC94DE88394121F59022326Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)psw.agent.tytNormanw32/suspicious_u.
genSophosMal/PackerSymantecInfostealer.Gam...
PWS-OnlineGames.as!9A5A722C - PWS-OnlineGames.as!9A5A722C at McAfee
File PropertyProperty ValueFile Nameqngp14.exeMcAfee DetectionPWS-OnlineGames.asLength19,971
bytesCRC329A5A722CMD52120F039194591F9A1B2E702016337C4SHA179534F369E52B9CE728E8E0767E467A99F8D6746Other Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTROJ_ZLOB...
PWS-OnlineGames.as!6AD82A9C - PWS-OnlineGames.as!6AD82A9C at McAfee
File PropertyProperty ValueFile Namelaco6.exeMcAfee DetectionPWS-OnlineGames.asLength20,135
bytesCRC326AD82A9CMD5e2fefffe7caf8e28fe21541361aa9c9eSHA1520A50E5FFD4AEB6D6021A388476B467F247EA07Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQPAVG
(GriSoft)PSW.OnlineGames.AX...
PWS-OnlineGames.as!86CF231A - PWS-OnlineGames.as!86CF231A at McAfee
File PropertyProperty ValueFile Namelaco3.exeMcAfee DetectionPWS-OnlineGames.asLength20,235
bytesCRC3286CF231AMD51b42b21a0c36c4704aebd6aed042f274SHA1629ABA634B88AFCAF629DA9523CD555694EF0297Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQPAVG
(GriSoft)generic11.agAviraT...
PWS-OnlineGames.as!BE51571A - PWS-OnlineGames.as!BE51571A at McAfee
File PropertyProperty ValueFile Namelaco27.exeMcAfee DetectionPWS-OnlineGames.asLength19,495
bytesCRC32BE51571AMD5fb45a7e50ab898f6a84f0a2b7d9fe71cSHA11D6A8808EB195403AE2AB468D09A1629A7845097Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:
OnLineGames-DQPAviraTR/Dropper.GenBitDefender...
PWS-OnlineGames.as!F7406FB9 - PWS-OnlineGames.as!F7406FB9 at McAfee
File PropertyProperty ValueFile Namelaco19.exeMcAfee DetectionPWS-OnlineGames.asLength19,487
bytesCRC32F7406FB9MD5a024d6e42b87908a2037a330c780195fSHA1DDEDAB3B58562F89587347D194764F6DC0DD26D9Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQPAVG
(GriSoft)PSW.OnlineGames.A...
PWS-OnlineGames.as!2556AE3C - PWS-OnlineGames.as!2556AE3C at McAfee
File PropertyProperty ValueFile Namejss22.exeMcAfee DetectionPWS-OnlineGames.asLength20,607
bytesCRC322556AE3CMD57c9781e7c4c247d8cd8e2321feaa7977SHA1F561F28082350D90EDE83C4F0E829A1A4CBE5A47Other Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTROJ_ZLOB....
PWS-OnlineGames.as!C44C6757 - PWS-OnlineGames.as!C44C6757 at McAfee
File PropertyProperty ValueFile Namejss24.exeMcAfee DetectionPWS-OnlineGames.asLength19,383
bytesCRC32C44C6757MD590fd92f5accc490ee0c78edb035fd5d5SHA139196AE590D147CAFE457ED45C02460B542772BCOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQPAVG
(GriSoft)PSW.OnlineGames.AX...
PWS-OnlineGames.as!CD31FB73 - PWS-OnlineGames.as!CD31FB73 at McAfee
File PropertyProperty ValueFile Namejss14.exeMcAfee DetectionPWS-OnlineGames.asLength19,523
bytesCRC32CD31FB73MD529824b6ab4a891554460a990aa9ad427SHA1877D8C54D77519DB523150567827AB6D39D80AA8Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQPAVG
(GriSoft)PSW.OnlineGames.AX...
PWS-OnlineGames.as!F7B768AA - PWS-OnlineGames.as!F7B768AA at McAfee
File PropertyProperty ValueFile Namejss13.exeMcAfee DetectionPWS-OnlineGames.asLength20,099
bytesCRC32F7B768AAMD5b2a43f48de2a809ab36f90bf43f3c472SHA1C4788D8764223D63ACFA373EC7F2205F493399E0Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQPAVG
(GriSoft)PSW.OnlineGames.AX...
Troj/Agent-HHV - Troj/Agent-HHV at Sophos
...
Troj/DwnLdr-HGF - Troj/DwnLdr-HGF at Sophos
...
Troj/Agent-HHU - Troj/Agent-HHU at Sophos
Troj/Agent-HHU is a Trojan for the Windows platform. Troj/Agent-HHU
includes functionality to access the internet and communicate with a remote server via HTTP.
The following registry entry is created to run Troj/Agent-HHU on startup:
HKCU\Software\Micro...
Troj/Dload-CQ - Troj/Dload-CQ at Sophos
Troj/Dload-CQ includes functionality to access the internet and communicate with a remote server
via HTTP.
...
Troj/MDrop-BUI - Troj/MDrop-BUI at Sophos
Troj/MDrop-BUI is a Trojan for the Windows platform. Troj/MDrop-BUI
includes functionality to access the internet and communicate with a remote server via HTTP.
When first run Troj/MDrop-BUI copies itself to the temp folder and creates three randomly named files in
the temp f...
Troj/PWS-ARZ - Troj/PWS-ARZ at Sophos
Troj/PWS-ARZ is a password stealing Trojan for the Windows platform.
Troj/PWS-ARZ can arrive as a result of web browsing. Visiting certain web sites may initiate the download
process. Typically the user will be coerced into downloading Troj/PWS-ARZ by a web page popup claiming to
offer a free anti-v...
Troj/Spy-AU - Troj/Spy-AU at Sophos
Troj/Spy-AU is a Trojan for the Windows platform. When Troj/Spy-AU is
installed it creates the file <System>\ntos.exe. The following registry entry is
changed to run ntos.exe on startup: HKLM\SOFTWARE\Microsoft\Windows
NT\CurrentVersion\Winlogon ...
Mal/EncPk-EK - Mal/EncPk-EK at Sophos
...
Troj/Cbeplay-A - Troj/Cbeplay-A at Sophos
Troj/Cbeplay-A is a downloader Trojan for the Windows platform. When first
run Troj/Cbeplay-A copies itself to <System>\CbEvtSvc.exe. The file CbEvtSvc.exe
is registered as a new system driver service named "CbEvtSvc", with a display name of "CbEvtSvc" and a startup
type...
Bloodhound.Exploit.Shs - Bloodhound.Exploit.Shs at Norton Symantec
Bloodhound.Exploit.Shs is a general heuristic detection for reporting Microsoft Office files that may be
malicious....
Infostealer.Ldpinch.H - Infostealer.Ldpinch.H at Norton Symantec
Infostealer.Ldpinch.H is a Trojan horse that may steal information from the compromised computer.
...
SecureExpertCleaner - SecureExpertCleaner at Norton Symantec
BehaviorSecureExpertCleaner is a misleading application that may give exaggerated reports of threats on the
computer....
Trojan.Proscks.C!inf - Trojan.Proscks.C!inf at Norton Symantec
Trojan.Proscks.C!inf is a detection for files infected with Trojan.Proscks.C.
...
Trojan.Proscks.C - Trojan.Proscks.C at Norton Symantec
Trojan.Proscks.C is a Trojan horse that modifies files on the compromised computer and connects to a remote
server....
Generic.dx!E3C7A3EE - Generic.dx!E3C7A3EE at McAfee
File PropertyProperty ValueFile Namereadme.exeMcAfee DetectionGeneric.dxLength22,000
bytesCRC32E3C7A3EEMD5d3d01fa0a3eb3cc5f8c9ae7dffbd2c7fSHA100BB3D7FE62577F30B1FF881A7A41E5F0B038540Other Common
Detection AliasesCompany NameDetection NameAhnLabWin32/Mytob.worm.22000AvastWin32:Mytob-PY [Wrm]AVG
(GriSoft)I-Worm/Mydoom.DHAviraWorm/Mydoo...
W32/Bagle.gen!Sality!0EDCC922 - W32/Bagle.gen!Sality!0EDCC922 at McAfee
File PropertyProperty ValueFile Namexxx_livebabes.exeMcAfee DetectionW32/Bagle.gen!SalityLength19,867
bytesCRC320EDCC922MD5b0157ce0039f24445049408ec5ea950cSHA196C5D2E8237F7F135D3A625794612D715E3AAF14Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)win32/salityMicrosoftworm:win32/bagle.
ie@mmNormanw32/bagle.hd@mmPan...
PWS-OnlineGames.as!30E622CB - PWS-OnlineGames.as!30E622CB at McAfee
File PropertyProperty ValueFile Namefbi19.exeMcAfee DetectionPWS-OnlineGames.asLength19,179
bytesCRC3230E622CBMD552abe5387830b64d2466f9f2a00e1d81SHA12A5FC29237F8C3650AF63312910EEE40FE310E63Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQP
[Trj]AVG (GriSoft)psw.onlinega...
PWS-OnlineGames.as!83EB588A - PWS-OnlineGames.as!83EB588A at McAfee
File PropertyProperty ValueFile Namefbi13.exeMcAfee DetectionPWS-OnlineGames.asLength19,783
bytesCRC3283EB588AMD5f6fc8505ed6cbdcb93eae567fa661cd2SHA1DBF58A8FDCB8E95FFC8B25528BC1D5B62C6F5796Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQP
[Trj]AVG (GriSoft)psw.onlinega...
PWS-OnlineGames.as!3555F92A - PWS-OnlineGames.as!3555F92A at McAfee
File PropertyProperty ValueFile Namefbi14.exeMcAfee DetectionPWS-OnlineGames.asLength21,271
bytesCRC323555F92AMD59795074a4268e1de2b45cccad185d940SHA171540855C4C5AA817E1761F094B93722D76455CFOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQPAVG
(GriSoft)psw.onlinegames.ay...
PWS-OnlineGames.as!ECB1DC0B - PWS-OnlineGames.as!ECB1DC0B at McAfee
File PropertyProperty ValueFile Namefbi10.exeMcAfee DetectionPWS-OnlineGames.asLength20,547
bytesCRC32ECB1DC0BMD562e726c2b291f3e6cf38ba860fbb4b15SHA1105A888BFBC8E5CB003D75A24234727E9A54F553Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQP
[Trj]AVG (GriSoft)psw.onlinega...
PWS-OnlineGames.as!CB3D85FF - PWS-OnlineGames.as!CB3D85FF at McAfee
File PropertyProperty ValueFile Name080728-a2-17.exeMcAfee DetectionPWS-OnlineGames.asLength19,971
bytesCRC32CB3D85FFMD5ab24ab45c6cdb2441623d97fdefc6218SHA18EFBFCAA0F6C4B714554A97DD13CFF249BAB1372Other Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTRO...
PWS-OnlineGames.as!64BE9FBF - PWS-OnlineGames.as!64BE9FBF at McAfee
File PropertyProperty ValueFile Name080728-a2-122.exeMcAfee DetectionPWS-OnlineGames.asLength20,195
bytesCRC3264BE9FBFMD5ca22ec469dea411b9305866a46bfb892SHA11DD249A7961E59C8EAA3709994E19605CE9A2CD0Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQPAVG
(GriSoft)psw.online...
PWS-OnlineGames.f!41AF3AEE - PWS-OnlineGames.f!41AF3AEE at McAfee
File PropertyProperty ValueFile Name080728-a2-130.exeMcAfee DetectionPWS-OnlineGames.fLength17,791
bytesCRC3241AF3AEEMD551B87C51E35BE2739B5479D68349480CSHA18EC2EA461E2DC564C0982428E7F01C099D4621A7Other Common
Detection AliasesCompany NameDetection NameAhnLabDropper/OnlineGameHack.17791AvastWin32:OnLineGames-EEP
[Trj]AVG (GriSoft)Gene...
PWS-OnlineGames.as!EBCDEE4E - PWS-OnlineGames.as!EBCDEE4E at McAfee
File PropertyProperty ValueFile Name080728-a2-106.exeMcAfee DetectionPWS-OnlineGames.asLength20,199
bytesCRC32EBCDEE4EMD536640908aadecc62ac3927cbc2f468d3SHA14A19BA96E60AA00940CE6D29474F8D11DF0C7EE8Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQPAVG
(GriSoft)psw.online...
PWS-OnlineGames.as!B6D32A4E - PWS-OnlineGames.as!B6D32A4E at McAfee
File PropertyProperty ValueFile Name080728-a2-113.exeMcAfee DetectionPWS-OnlineGames.asLength21,555
bytesCRC32B6D32A4EMD5f702861fdf707d2ef6885266a8eba268SHA14006AC3250D32DCEB42EA9B322CEF06397B48C2BOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:
OnLineGames-DQPAviraTR/Dropper.GenBitD...
PWS-OnlineGames.as!49327CBA - PWS-OnlineGames.as!49327CBA at McAfee
...
PWS-OnlineGames.as!FAC334B6 - PWS-OnlineGames.as!FAC334B6 at McAfee
File PropertyProperty ValueFile Name080728-a2-9.exeMcAfee DetectionPWS-OnlineGames.asLength19,999
bytesCRC32FAC334B6MD5311f7ca3695620dd9531d7d3c89efcb2SHA1E61626B029FACC1E1F14F14D04F00E6A57F9D6EBOther Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTROJ...
PWS-OnlineGames.as!312EA39E - PWS-OnlineGames.as!312EA39E at McAfee
File PropertyProperty ValueFile Name080728-a2-109.exeMcAfee DetectionPWS-OnlineGames.asLength20,083
bytesCRC32312EA39EMD5d96c791a3e08434836dbda2ec2b7b6ffSHA11D57A5ED2E2B039E4D1336884BB0DAE917B72910Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQPAVG
(GriSoft)generic11....
PWS-OnlineGames.as!3972987A - PWS-OnlineGames.as!3972987A at McAfee
File PropertyProperty ValueFile Name080728-a2-121.exeMcAfee DetectionPWS-OnlineGames.asLength20,011
bytesCRC323972987AMD528c503ea1b2c31ba4a05044e9cd84cf5SHA1E2DB125C6489BD9C3F00F594DF7AE3EC8E2A395BOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:
OnLineGames-DQPAviraTR/Dropper.GenBitD...
PWS-OnlineGames.as!2F9283CB - PWS-OnlineGames.as!2F9283CB at McAfee
File PropertyProperty ValueFile Name080728-a2-15.exeMcAfee DetectionPWS-OnlineGames.asLength20,583
bytesCRC322F9283CBMD5aa124179721f5271a71827b5d24768eeSHA11EB31B52D4DE1DFD99760F635978450DDF246972Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)generic11.ooNormanw32/suspicious_u.
genSophosMal/PackerSymantecInfostea...
PWS-OnlineGames.as!8BF09BCF - PWS-OnlineGames.as!8BF09BCF at McAfee
File PropertyProperty ValueFile Name080728-a2-92.exeMcAfee DetectionPWS-OnlineGames.asLength20,191
bytesCRC328BF09BCFMD59c423d44e7f9e0a6af1577db67437384SHA1001FF88EA8F58CF8224AD63710B4ED4D261F4C6BOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:
OnLineGames-DQPAviraTR/Dropper.GenBitDe...
PWS-OnlineGames.ax!0A9E18B6 - PWS-OnlineGames.ax!0A9E18B6 at McAfee
File PropertyProperty ValueFile Name080728-a2-123.exeMcAfee DetectionPWS-OnlineGames.axLength16,394
bytesCRC320A9E18B6MD5eaabd7c2fec3c97577167feccb308b4cSHA12B777C4408AFAEC560AB136BEE658B1661D1EA00Other Common
Detection AliasesCompany NameDetection NameAvastWin32:Nilage-NPAVG (GriSoft)PSW.Agent.TZKAviraTR/Dropper.
GenBitDefenderTrojan...
Generic FakeAlert.a!7893CAD4 - Generic FakeAlert.a!7893CAD4 at McAfee
File PropertyProperty ValueFile Nameburitos.exeMcAfee DetectionGeneric FakeAlert.aLength9,216
bytesCRC327893CAD4MD5157bdb98737a672acc085b8cc36e859eSHA1786F88AD697A4561A4899214ADC955BBA174CBC2Other Common
Detection AliasesCompany NameDetection NameAvastWin32:Renos-KEAVG (GriSoft)Downloader.FraudLoad.CAviraTR/Dldr.
FraudLoa.ZGDr.WebTroj...
PWS-OnlineGames.ax!83A24FCE - PWS-OnlineGames.ax!83A24FCE at McAfee
File PropertyProperty ValueFile Name080728-a2-127.exeMcAfee DetectionPWS-OnlineGames.axLength15,098
bytesCRC3283A24FCEMD52276306c561bbdd571df3c097227ec3fSHA17CF83849922077D633F66506D282764F650C0933Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:Nilage-NP [Trj]AVG
(GriSoft)PSW.Agent....
PWS-OnlineGames.ax!52B9B8DD - PWS-OnlineGames.ax!52B9B8DD at McAfee
File PropertyProperty ValueFile Name080728-a2-126.exeMcAfee DetectionPWS-OnlineGames.axLength14,693
bytesCRC3252B9B8DDMD51fc5359ad091a45b9e7efe46acbba30cSHA1B92E7740BA345897D0E1721FFD91E68EBEC3F2E7Other Common
Detection AliasesCompany NameDetection NameAvastWin32:Nilage-NP [Trj]AVG (GriSoft)generic10.
bhsnAviraTR/Dropper.GenBitDefende...
PWS-OnlineGames.as!67ED73F7 - PWS-OnlineGames.as!67ED73F7 at McAfee
File PropertyProperty ValueFile Name16709796.exeMcAfee DetectionPWS-OnlineGames.asLength19,331
bytesCRC3267ED73F7MD51c32e31676a688a3923dabfef6ac8418SHA1A2305825ABDCAE3C4412650E713AD24D4E6DFD4COther Common
Detection AliasesCompany NameDetection NameAvastWin32:OnLineGames-DQP [Trj]AVG (GriSoft)psw.onlinegames.
avgsAviraTR/Crypt.XDR.GenB...
PWS-OnlineGames.bk!8EE3BF1F - PWS-OnlineGames.bk!8EE3BF1F at McAfee
File PropertyProperty ValueFile Name16643156.exeMcAfee DetectionPWS-OnlineGames.bkLength19,783
bytesCRC328EE3BF1FMD550CB8B0E1D80274C03C360C690612350SHA1770B18B6252916963C0A80F4FC05924E94CB0154Other Common
Detection AliasesCompany NameDetection NameAvastWin32:OnLineGames-DQP [Trj]AviraTR/Crypt.XDR.
GenBitDefenderTrojan.PWS.OnlineGames....
PWS-OnlineGames.as!604F92C9 - PWS-OnlineGames.as!604F92C9 at McAfee
File PropertyProperty ValueFile Name16699140.exeMcAfee DetectionPWS-OnlineGames.asLength19,051
bytesCRC32604F92C9MD5ca5a47d7dd48f465cc1ab20f10bb1cbaSHA1E6C0DF72C89A0F4108D14AE35734444929BE3126Other Common
Detection AliasesCompany NameDetection NameAvastWin32:OnLineGames-DQP [Trj]AVG (GriSoft)psw.onlinegames.
avgpAviraTR/Crypt.XDR.GenB...
PWS-OnlineGames.as!AE89BC3D - PWS-OnlineGames.as!AE89BC3D at McAfee
File PropertyProperty ValueFile Name16731859.exeMcAfee DetectionPWS-OnlineGames.asLength19,591
bytesCRC32AE89BC3DMD5c968611f1ef85818957fb264e25b5aaaSHA17B59C9B15AC76A9970B334CB005536C6D892F1ACOther Common
Detection AliasesCompany NameDetection NameAvastWin32:OnLineGames-DQP [Trj]AVG (GriSoft)psw.onlinegames.
avgxAviraTR/Crypt.XDR.GenB...
PWS-OnlineGames.as!DDC1C5DB - PWS-OnlineGames.as!DDC1C5DB at McAfee
File PropertyProperty ValueFile Name16519421.exeMcAfee DetectionPWS-OnlineGames.asLength20,251
bytesCRC32DDC1C5DBMD546923459182FC13123358361355CE2CCSHA1D379965D49032ABF34CBCC0584BAF380F7CE022EOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.20251AvastWin32:OnLineGames-DQP
[Trj]AVG (GriSoft)PSW.O...
PWS-OnlineGames.bn!5FDC3CC5 - PWS-OnlineGames.bn!5FDC3CC5 at McAfee
File PropertyProperty ValueFile Name1031687.exeMcAfee DetectionPWS-OnlineGames.bnLength21,223
bytesCRC325FDC3CC5MD53da379de97f5a12121aa2adddef417bfSHA14603114DACF41272B76286BC9326570AA07891ABOther Common
Detection AliasesCompany NameDetection NameAvastWin32:OnLineGames-DQP [Trj]AviraTR/Crypt.XDR.
GenBitDefenderTrojan.PWS.OnlineGames.Y...
PWS-OnlineGames.bn!F059F11C - PWS-OnlineGames.bn!F059F11C at McAfee
File PropertyProperty ValueFile Name1155343.exeMcAfee DetectionPWS-OnlineGames.bnLength19,415
bytesCRC32F059F11CMD59f3e28c54d328b9c54eaa69c97e5a7dbSHA1207E8307C5B8337C4CE3BAB66615F7BF1E47C671Other Common
Detection AliasesCompany NameDetection NameAvastWin32:OnLineGames-DQPAVG (GriSoft)psw.onlinegames.
awlvAviraTR/Crypt.XDR.GenBitDefen...
PWS-Mmorpg.gen!93E82F98 - PWS-Mmorpg.gen!93E82F98 at McAfee
File PropertyProperty ValueFile Name1113312.exeMcAfee DetectionPWS-Mmorpg.genLength24,256
bytesCRC3293E82F98MD5d0c03c56fdd1f0559330d5b5ace0c10dSHA111B59D46628DC4FBDE2E533807393B3DC7056C09Other Common
Detection AliasesCompany NameDetection NameAvastWin32:Agent-ZMAAviraTR/Downloader.GenBitDefenderTrojan.PWS.
OnlineGames.WMAClamAVPUA.Pac...
Banker.LGC - Banker.LGC at Panda
It steals confidential information related to a certain Spanish banking entity. It is being
distributed in an email message which contains a fake piece of news about a car accident suffered by the F1
racing driver Fernando Alonso.
...
Mal/RarMal-A - Mal/RarMal-A at Sophos
Mal/RarMal-A is a family of malicious self-extracting RAR files.
...
Mal/RarMal-B - Mal/RarMal-B at Sophos
Mal/RarMal-B is a family of malicious self-extracting RAR files, often seen in spam.
...
Troj/Agent-HIA - Troj/Agent-HIA at Sophos
...
W32/Dref-AV - W32/Dref-AV at Sophos
W32/Dref-AV is a worm for the Windows platform. W32/Dref-AV includes
functionality to access the internet and communicate with a remote server via HTTP.
When W32/Dref-AV is installed the following files are created:
<Temp>\uninst0011bff.bat ...
Troj/FakeVir-DY - Troj/FakeVir-DY at Sophos
...
Troj/Dloadr-BOZ - Troj/Dloadr-BOZ at Sophos
...
Troj/Dloadr-BPA - Troj/Dloadr-BPA at Sophos
...
Troj/Psyme-JL - Troj/Psyme-JL at Sophos
Troj/Psyme-JL is a Trojan for the Windows platform that attempts to download and execute a file by
exploiting a broswer vulnerability (MS06-014). The downloaded file is currently detected as Mal/Behav-144.
...
VBS/Lovebird-A - VBS/Lovebird-A at Sophos
...
Mal/Behav-276 - Mal/Behav-276 at Sophos
...
0 writebacks [07/29/2008 04:44]
[]
permanent link
|
Virus Malware and Threat News for 20080727
W32.Azero.A - W32.Azero.A at Norton Symantec
W32.Azero.A is a virus that infects .exe files.
...
XLGuarder - XLGuarder at Norton Symantec
BehaviorXLGuarder is a misleading application that may give exaggerated reports of threats on the computer.
...
PWS-OnlineGames.as!5BD8C497 - PWS-OnlineGames.as!5BD8C497 at McAfee
File PropertyProperty ValueFile Namespicalhook-331.exeMcAfee DetectionPWS-OnlineGames.asLength19,215
bytesCRC325BD8C497MD55e20dfc49b24a44c999a08b1639a7515SHA18C90A966AC247460C58C1040A368DC2BB39AC7CEOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.61440.CEAvastWin32:OnLineGames-DQP
[Trj]AVG (GriS...
PWS-OnlineGames.as!F48A3E69 - PWS-OnlineGames.as!F48A3E69 at McAfee
File PropertyProperty ValueFile Name25.exeMcAfee DetectionPWS-OnlineGames.asLength19,259
bytesCRC32F48A3E69MD5c0245b2eaf672d1419657dd500f08f1fSHA1F991045AA62DC4BD813BFF39CEC76ECADA5D5B2FOther Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTSPY_ONLINEG....
PWS-OnlineGames.bn!659C9EFE - PWS-OnlineGames.bn!659C9EFE at McAfee
File PropertyProperty ValueFile Name10.exeMcAfee DetectionPWS-OnlineGames.bnLength19,567
bytesCRC32659C9EFEMD52be2dab8a684aab4951e1b18233ce671SHA1D0CB6846705F439C43B2D9B2C26FB993CABFE2ECOther Common
Detection AliasesCompany NameDetection NameAvastWin32:OnLineGames-DQPAVG (GriSoft)psw.onlinegames.
axwhAviraTR/Dropper.GenBitDefenderTroj...
PWS-OnlineGames.as!BC255A00 - PWS-OnlineGames.as!BC255A00 at McAfee
File PropertyProperty ValueFile Name18.exeMcAfee DetectionPWS-OnlineGames.asLength19,671
bytesCRC32BC255A00MD5dba474fd933f9fb0c57c66dc7fbedf60SHA1B77B1686F117B688ED4801A9EF56B4D131318F41Other Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTSPY_ONLINEG....
Generic FakeAlert.b!BA9E0F15 - Generic FakeAlert.b!BA9E0F15 at McAfee
File PropertyProperty ValueFile Namedssc32.exeMcAfee DetectionGeneric FakeAlert.bLength1,489,920
bytesCRC32BA9E0F15MD5BE6C13EC10B6B317855DD3F4BACEEC35SHA16FEB6E53FCB8CDF89304EC552656A46F6D080822Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)sheur.bysrAvert® Labs has observed the following
system activities:Ac...
PWS-OnlineGames.as!558091D1 - PWS-OnlineGames.as!558091D1 at McAfee
File PropertyProperty ValueFile Named1918055.exeMcAfee DetectionPWS-OnlineGames.asLength20,599
bytesCRC32558091D1MD5110b5ea69028d1b97d36389d21d975b1SHA1DF9BFC2AFD0110837ABB0A2196862B66A6A67490Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQP
[Trj]AVG (GriSoft)generic10...
PWS-OnlineGames.as!6F24ECC2 - PWS-OnlineGames.as!6F24ECC2 at McAfee
File PropertyProperty ValueFile Namec2ec246f.exeMcAfee DetectionPWS-OnlineGames.asLength19,139
bytesCRC326F24ECC2MD54ab69514432afae5e233955115a2e238SHA15C0A390510D4D7F073102B3EAA299EF7DA4DDFA1Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQP
[Trj]AVG (GriSoft)psw.onlin...
PWS-OnlineGames.as!F4CD218A - PWS-OnlineGames.as!F4CD218A at McAfee
File PropertyProperty ValueFile Name8a21cdf4.exeMcAfee DetectionPWS-OnlineGames.asLength19,387
bytesCRC32F4CD218AMD58348351345e1424a4f02bde0c785cac6SHA1BC2E197AAA7B0D618A8F58231C1A60030EE75300Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQP
[Trj]AVG (GriSoft)psw.onlin...
PWS-OnlineGames.bn!8A92125D - PWS-OnlineGames.bn!8A92125D at McAfee
File PropertyProperty ValueFile Name080726-a2-41.exeMcAfee DetectionPWS-OnlineGames.bnLength19,239
bytesCRC328A92125DMD5a0c026283f0f0493865cb26790ea0801SHA1EC7215FB5DC4C92E6A11E3D50764E5AF7E4B65D0Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.57344.AAAvastWin32:OnLineGames-DQP
[Trj]AVG (GriSof...
PWS-OnlineGames.as!DA99818F - PWS-OnlineGames.as!DA99818F at McAfee
File PropertyProperty ValueFile Name080726-a2-35.exeMcAfee DetectionPWS-OnlineGames.asLength21,259
bytesCRC32DA99818FMD52A012D28D2D87A45F3002D02B4694459SHA1BF6C3B6B1EC7048836A226F74B1877C4D71D63FAOther Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassAvert® Labs...
PWS-OnlineGames.as!32464732 - PWS-OnlineGames.as!32464732 at McAfee
File PropertyProperty ValueFile Name080726-a2-83.exeMcAfee DetectionPWS-OnlineGames.asLength20,155
bytesCRC3232464732MD544764ddafe99a2ffa6d20ca0add10295SHA1B963AA79E2F6C17739BD682F48B585307B8FB66EOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQPAVG
(GriSoft)PSW.OnlineG...
PWS-OnlineGames.as!CCD890C7 - PWS-OnlineGames.as!CCD890C7 at McAfee
File PropertyProperty ValueFile Name080726-a2-89.exeMcAfee DetectionPWS-OnlineGames.asLength19,591
bytesCRC32CCD890C7MD54b9b2f3b144c01223c0d71f8b4010a77SHA152831B338B2532153C00E563469CC9DC86160579Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQPAVG
(GriSoft)PSW.OnlineG...
PWS-OnlineGames.as!DAA4BEAD - PWS-OnlineGames.as!DAA4BEAD at McAfee
File PropertyProperty ValueFile Name080726-a2-95.exeMcAfee DetectionPWS-OnlineGames.asLength20,019
bytesCRC32DAA4BEADMD5a98eaae4505e8100aadc7706bf0cf77dSHA194B31D7F86B3E1E1EFC0D0F4D86116192EFBEBA1Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQPAVG
(GriSoft)PSW.OnlineG...
PWS-OnlineGames.ax!8C59C106 - PWS-OnlineGames.ax!8C59C106 at McAfee
File PropertyProperty ValueFile Name080726-a2-102.exeMcAfee DetectionPWS-OnlineGames.axLength12,217
bytesCRC328C59C106MD550ab791292896d1e50886557772aa039SHA12A124D078C200E00549D30DF5D22611BB5CE5466Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:Trojan-gen {Other}AVG
(GriSoft)PSW.Gen...
PWS-OnlineGames.ax!4DAEAF5D - PWS-OnlineGames.ax!4DAEAF5D at McAfee
File PropertyProperty ValueFile Name080726-a2-11.exeMcAfee DetectionPWS-OnlineGames.axLength15,446
bytesCRC324DAEAF5DMD55BB035C73E03E3FAE053372328BC3D5ASHA1E623FC42355D29448E2409F79C37756373DC26ABOther Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSymantecInfostealer.GampassAvert® Labs
has observed th...
PWS-OnlineGames.bn!ACA7B5A0 - PWS-OnlineGames.bn!ACA7B5A0 at McAfee
File PropertyProperty ValueFile Name080726-a2-22.exeMcAfee DetectionPWS-OnlineGames.bnLength19,587
bytesCRC32ACA7B5A0MD5a2359abbaf6e671d6fb7f134880130fdSHA1D5BF31016CD72676D79F2198AF47B81A2BC864A1Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.19587.FAvastWin32:
OnLineGames-DQPAVG (GriSoft)psw.o...
PWS-OnlineGames.as!E7194AA3 - PWS-OnlineGames.as!E7194AA3 at McAfee
File PropertyProperty ValueFile Name080726-a2-16.exeMcAfee DetectionPWS-OnlineGames.asLength20,111
bytesCRC32E7194AA3MD5a79a37189978c6f663ce1672ec2f452aSHA140BD6B349BAD37C3EC36FF4C5262804BF4096113Other Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTRO...
PWS-OnlineGames.as!B8906599 - PWS-OnlineGames.as!B8906599 at McAfee
File PropertyProperty ValueFile Name996590b8.exeMcAfee DetectionPWS-OnlineGames.asLength19,267
bytesCRC32B8906599MD54896017d2daa894a01bfce8b0642509fSHA189A7A335ACE3DA661E1408AD344F680B8D4483F7Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQPAVG
(GriSoft)PSW.OnlineGames...
PWS-OnlineGames.as!EDD90528 - PWS-OnlineGames.as!EDD90528 at McAfee
File PropertyProperty ValueFile Name2805d9ed.exeMcAfee DetectionPWS-OnlineGames.asLength20,243
bytesCRC32EDD90528MD56fcd0226df4c51c9b890c475a5c1f6c6SHA1635500BC8B4D944AD78E1B034B2C8C9EE41BE45BOther Common
Detection AliasesCompany NameDetection NameAvastWin32:OnLineGames-DQPAVG (GriSoft)psw.onlinegames.
axqgAviraTR/Dropper.GenBitDefend...
PWS-OnlineGames.as!6BE5CD49 - PWS-OnlineGames.as!6BE5CD49 at McAfee
File PropertyProperty ValueFile Name49cde56b.exeMcAfee DetectionPWS-OnlineGames.asLength19,583
bytesCRC326BE5CD49MD5464197fc47aabae2ce04969564a9296aSHA1200A786BB8D99104341BE7408A4C270002342407Other Common
Detection AliasesCompany NameDetection NameAvastWin32:OnLineGames-DQPAVG (GriSoft)psw.onlinegames.
axqfAviraTR/Dropper.GenBitDefend...
Generic Downloader.x!BB87C28D - Generic Downloader.x!BB87C28D at McAfee
File PropertyProperty ValueFile Namebraviax.exeMcAfee DetectionGeneric Downloader.xLength9,216
bytesCRC32BB87C28DMD596572547af769d50692f717a5e1f77dcSHA1FAA858CE3AF75605CE42EC7AF045EAB1AC4C734DOther Common
Detection AliasesCompany NameDetection NameAvastWin32:Renos-KE [Trj]AVG (GriSoft)Downloader.FraudLoad.
CAviraTR/Dldr.Ag.KLI.9216Bit...
Vundo!40F01AF8 - Vundo!40F01AF8 at McAfee
File PropertyProperty ValueFile Namekeygen.exeMcAfee DetectionVundoLength100,864
bytesCRC3240F01AF8MD5608C5F9652C09BBDFB6695A76AEA5E2BSHA109FB1619CA67E88082946B63C5D724A48D2E3AA7Other Common
Detection AliasesCompany NameDetection NameAvastWin32:Trojan-gen {Other}AviraTR/Vundo.GeneSafe
(Alladin)Suspicious fileKasperskyTrojan.Win32.Mon...
W32/Bagle.gen!1CDF4421 - W32/Bagle.gen!1CDF4421 at McAfee
File PropertyProperty ValueFile Namemdelk.exeMcAfee DetectionW32/Bagle.genLength68,478
bytesCRC321CDF4421MD56985B118307CBEA59149237146BC3B19SHA18940AFF1EFF738DF1C155077B3A8F7DB5AEAAB95Other Common
Detection AliasesCompany NameDetection NameAvastWin32:Rootkit-genAVG (GriSoft)I-Worm/BagleAviraTR/Bagle.Gen.
BBitDefenderWin32.Bagle.SUQ@mm...
PWS-OnlineGames.f!3E85593B - PWS-OnlineGames.f!3E85593B at McAfee
File PropertyProperty ValueFile Namespicalhook-76vir.exeMcAfee DetectionPWS-OnlineGames.fLength16,727
bytesCRC323E85593BMD50a1a1e0dc3da2e7666340aaa55a1704eSHA1DF9477327B5B53D10F3E372D4E3A66C79D3A9002Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.16727.CAvastWin32:
OnLineGames-DZZAVG (GriSoft)Ge...
PWS-OnlineGames.f!CDAA0EBC - PWS-OnlineGames.f!CDAA0EBC at McAfee
File PropertyProperty ValueFile Namespicalhook-104vir.exeMcAfee DetectionPWS-OnlineGames.fLength15,596
bytesCRC32CDAA0EBCMD5dfbb63039a219366315d94763392ddfeSHA1DA2F3A7D3F187326B056D658E82E3DA8FF56D23FOther Common
Detection AliasesCompany NameDetection NameAvastWin32:OnLineGames-EEP [Trj]AVG (GriSoft)PSW.OnlineGames.AVMF
(Trojan horse...
PWS-OnlineGames.f!F0E4E140 - PWS-OnlineGames.f!F0E4E140 at McAfee
File PropertyProperty ValueFile Namespicalhook-53vir.exeMcAfee DetectionPWS-OnlineGames.fLength17,127
bytesCRC32F0E4E140MD52ae877e311b3b3ec6d4ef37d17bc17cdSHA1772572BA1319C2244C2A55C4EB5896873024433DOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.17127AvastWin32:OnLineGames-EEP
[Trj]AVG (GriSof...
PWS-QQRob!D5445B2C - PWS-QQRob!D5445B2C at McAfee
File PropertyProperty ValueFile Name080725-1-8.exeMcAfee DetectionPWS-QQRobLength23,188
bytesCRC32D5445B2CMD5B7FBA01BC7017979C7C2C98426399498SHA1FA8CD6BBA4B5D4CC0B749EA31B9FB671B2570B89Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/QQRob.23163AvastWin32:QQRob-CGAVG (GriSoft)PSW.
Generic.SAviraDR/QQRob.14.2.AB...
PWS-OnlineGames.as!E4C6004A - PWS-OnlineGames.as!E4C6004A at McAfee
File PropertyProperty ValueFile Name080725-a3-1.exeMcAfee DetectionPWS-OnlineGames.asLength19,807
bytesCRC32E4C6004AMD50aa0e2d48f6ad9024545a13a67ddf369SHA179FE2E1CC6C057AB16DE3187F2EA0857E64F544EOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQPAVG
(GriSoft)PSW.OnlineGa...
PWS-OnlineGames.as!683A4570 - PWS-OnlineGames.as!683A4570 at McAfee
File PropertyProperty ValueFile Name080725-a3-27.exeMcAfee DetectionPWS-OnlineGames.asLength19,571
bytesCRC32683A4570MD56368781C2079DE0572E2F3E5EF91DF94SHA19403A2D35DD390A0CFFD5163E6E0929D3C091350Other Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTSP...
PWS-OnlineGames.as!8CB72253 - PWS-OnlineGames.as!8CB72253 at McAfee
File PropertyProperty ValueFile Name080725-a3-34.exeMcAfee DetectionPWS-OnlineGames.asLength20,583
bytesCRC328CB72253MD5c5d12ed35d6c28f3c0c75c14f3bdc7cfSHA1F2397D51ECD5E21A378EDFE4F84EB70B55924ABAOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.BAvastWin32:OnLineGames-DQPAVG
(GriSoft)psw.onlineg...
TROJ_FAKECLEAN.A - TROJ_FAKECLEAN.A at Trend Micro
This Trojan may be downloaded from remote sites by other malware.It may be also be dropped by other malware.It
arrives masquerading as Trend Micro Virus Clean Tool with a Trend Micro logo as shown below:It drops files
detected as BKDR_POISON.GO. It also drops the original Virus Clean Tool.It then executes the dropped file(s).
As a re...
TROJ_RENOS.ACO - TROJ_RENOS.ACO at Trend Micro
This Trojan may be downloaded from remote sites by other malware. It may be dropped by other malware.It may be
downloaded unknowingly by a user when visiting malicious Web sites.Upon execution, it connects to a certain
URL to download and execute a file, which is also detected as TROJ_RENOS.ACO. It also drops a file which is
detected...
BKDR_POISON.GO - BKDR_POISON.GO at Trend Micro
This backdoor may be dropped by malware detected by Trend Micro as TROJ_FAKECLEAN.A.It drops files/components.
It registers itself as a system service to ensure its automatic execution at every system startup. It does
this by creating registry keys/entries.It opens a random port to allow a remote user to connect to the
affected syste...
Troj/Agent-HHP - Troj/Agent-HHP at Sophos
...
Mal/StartP-A - Mal/StartP-A at Sophos
Mal/StartP-A is a family of Trojans for the Windows platform.
Mal/StartP-A changes settings for Microsoft Internet Explorer by modifying values under:
HKCU\Software\Microsoft\Internet Explorer\Main\Start Page HKLM\SOFTWARE\Microsoft\Internet
Explorer\Mai...
Troj/Cinmus-D - Troj/Cinmus-D at Sophos
Troj/Cinmus-D is an adware related Trojan for the Windows platform.
Troj/Cinmus-D installs a Browser Helper Object that displays advertising popups when Microsoft Internet
Explorer is active....
Troj/Cinmus-E - Troj/Cinmus-E at Sophos
Troj/Cinmus-E is an adware Trojan for the Windows platform.
Troj/Cinmus-E displays advertising popups when Microsoft Internet Explorer is active.
Troj/Cinmus-E is typically installed to: <User>\Application
Data\Microsoft\PCTools\pctools...
Troj/Dloadr-BOV - Troj/Dloadr-BOV at Sophos
When first run Troj/Dloadr-BOV copies itself to: <Windows>\Sys16.exe
Troj/Dloadr-BOV attempts to download a file called Uninstaller.exe which is proactively
detected as Mal/FakeAle-A. Troj/Dloadr-BOV adds the following registry entries:
...
W32/Autorun-GT - W32/Autorun-GT at Sophos
W32/Autorun-GT is proactively detected as Mal/Packer. When first run
W32/Autorun-GT copies itself to: <System>\llzjy<random digits>.exe
and creates the following file: <System>\llsjy32.dll - proactively
detected a...
Mal/DwndLdr-AE - Mal/DwndLdr-AE at Sophos
...
Mal/Spy-A - Mal/Spy-A at Sophos
Mal/Spy-A is a file that has malicious characteristics, often a file that is a member of the Zbot
family of malware, and often a file seen in a zip file in spam.
...
0 writebacks [07/27/2008 05:22]
[]
permanent link
|
Virus Malware and Threat News for 20080723
Trojan.Wsnpoem - Trojan.Wsnpoem at Norton Symantec
Trojan.Wsnpoem is a Trojan horse that opens a back door on the compromised computer.
...
BackDoor-DKA!D5D91396 - BackDoor-DKA!D5D91396 at McAfee
File PropertyProperty ValueFile Nameauto.exeMcAfee DetectionBackDoor-DKALength17,173
bytesCRC32D5D91396MD5E227532863C90EF492C44D95AAB0C49FSHA1280A6F9D59440C82675E44F9516D73AFDDAEDACFOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/Popwin.17151AvastWin32:Trojan-gen {Other}AVG
(GriSoft)Dropper.Generic.UIRAviraWo...
W32/Sdbot.dr!690B20E9 - W32/Sdbot.dr!690B20E9 at McAfee
File PropertyProperty ValueFile Namesyul2d~1.exeMcAfee DetectionW32/Sdbot.drLength80,896
bytesCRC32690B20E9MD5a2a21d85c91f32d0ee3723c4028982d4SHA1DCC5EA63DBC44D506FDFCF99B77E19479177AC69Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/Backdoor.80896AvastWin32:Rbot-FRX [Trj]AVG
(GriSoft)IRC/BackDoor.SdBot3.WLDA...
TROJ_AGENT.AYZO - TROJ_AGENT.AYZO at Trend Micro
This Trojan may be downloaded unknowingly by a user when visiting malicious Web sites.It registers itself as a
system service to ensure its automatic execution at every system startup.It accesses Web sites to download and
execute files detected as TROJ_MUTANT.EW. As a result, malicious routines of the downloaded files are
exhibited o...
JS_EXPL.AH - JS_EXPL.AH at Trend Micro
...
Pushdo.C - Pushdo.C at Panda
It downloads a lot of malware to the affected computer and sends information about the computer and the Trojan
to its creator. It is being distributed in email messages which contain a congratulation card.
...
Banbra.FXT - Banbra.FXT at Panda
It steals confidential information related to certain Brazilian banking entities, as it logs the
keystrokes typed in the websites visited by the user. It is being distributed in an email message
which contains a notification coming from the Federal Public Department.
...
Troj/Dwnldr-HGA - Troj/Dwnldr-HGA at Sophos
...
Troj/Invo-Zip - Troj/Invo-Zip at Sophos
Troj/Invo-Zip is a family of zip files that contain malware. Members of Troj/Invo-Zip are
usually sent in spam pretending to relate to an invoice or receipt for an online transaction, often one
related to UPS....
Troj/Mdrop-BUC - Troj/Mdrop-BUC at Sophos
...
W32/Notwanted-A - W32/Notwanted-A at Sophos
...
Troj/Spy-AS - Troj/Spy-AS at Sophos
...
Troj/Dloadr-BON - Troj/Dloadr-BON at Sophos
...
Troj/Wimad-F - Troj/Wimad-F at Sophos
Troj/Wimad-F is a Windows Media Video file that uses features of the Microsoft Windows Digital
Rights Management (DRM) to download files related to adware. At the time of writing the
download is detected as the potentially unwanted application AdBand.
...
JS/Dloadr-BOM - JS/Dloadr-BOM at Sophos
...
Troj/Agent-HHC - Troj/Agent-HHC at Sophos
...
Troj/Delf-FAY - Troj/Delf-FAY at Sophos
Troj/Delf-FAY is a Trojan for the Windows platform.
Troj/Delf-FAY includes functionality to access the internet and communicate with a remote server via HTTP.
...
0 writebacks [07/24/2008 04:54]
[]
permanent link
|
Virus Malware and Threat News for 20080722
Bloodhound.Exploit.197 - Bloodhound.Exploit.197 at Norton Symantec
Bloodhound.Exploit.197 is a heuristic detection for the files which exploit the Microsoft Word Unspecified
Remote Code Execution Vulnerability (BID 30124).
...
VirusRemover2008 - VirusRemover2008 at Norton Symantec
BehaviorVirusRemover2008 is a misleading application that may give exaggerated reports of threats on the
computer....
W32/Sdbot.worm!CEB4F790 - W32/Sdbot.worm!CEB4F790 at McAfee
File PropertyProperty ValueFile Namew30010~1.exeMcAfee DetectionW32/Sdbot.wormLength66,560
bytesCRC32CEB4F790MD5C7C646ADE71C36553B3C510507FEEC9ASHA1A0660E72C9640A858B97DB6BB7F3C26460AF0238Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/Xema.variantAvastWin32:SdBot-4556 [Trj]AVG
(GriSoft)IRC/BackDoor.SdBot3.AN...
W32/IRCbot.gen.c!D615C4AA - W32/IRCbot.gen.c!D615C4AA at McAfee
File PropertyProperty ValueFile Namew32bac~1.exeMcAfee DetectionW32/IRCbot.gen.cLength56,832
bytesCRC32D615C4AAMD5683915aad800a7595b02d3987d5f5dd7SHA1D8251674DF352EBF31A158CF8877DB2E65F95432Other Common
Detection AliasesCompany NameDetection NameAhnLabWin32/IRCBot.worm.variantAvastWin32:Trojan-gen
{Other}AviraBDS/VanBot.T.1BitDefende...
PWS-Lineage!91659603 - PWS-Lineage!91659603 at McAfee
File PropertyProperty ValueFile Namevirus-~1.exeMcAfee DetectionPWS-LineageLength63,800
bytesCRC3291659603MD59a0369585864bbf2ce4f76e0df811857SHA1D9E5626E98E52D545112DA1E653E9D4D7C1ED2FCOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/Magania.63800AvastWin32:Trojan-gen {Other}AVG
(GriSoft)Generic10.AUIPAviraTR/...
W32/IRCbot.gen.b!2580C26E - W32/IRCbot.gen.b!2580C26E at McAfee
File PropertyProperty ValueFile Namew32bac~2.exeMcAfee DetectionW32/IRCbot.gen.bLength219,103
bytesCRC322580C26EMD51c3115cb89d8f714e661e554440b692fSHA15AACC009088FC37E9267B3B2019059EDB850300FOther Common
Detection AliasesCompany NameDetection NameAhnLabWin32/IRCBot.worm.variantAvastWin32:SdBot-4425 [Trj]AVG
(GriSoft)IRC/BackDoor.SdBo...
W32/Sdbot.worm.gen.ce!E95B10FD - W32/Sdbot.worm.gen.ce!E95B10FD at McAfee
File PropertyProperty ValueFile Namew30cd5~1.exeMcAfee DetectionW32/Sdbot.worm.gen.ceLength121,344
bytesCRC32E95B10FDMD596969da78791800efeae4f2ad0695c52SHA1FD511D226A01E19688F485C48FBBA2B9C98F83A0Other Common
Detection AliasesCompany NameDetection NameAhnLabWin32/IRCBot.worm.variantAvastWin32:Trojan-gen {Other}AVG
(GriSoft)BackDoor.G...
Generic Dropper.p!90392A99 - Generic Dropper.p!90392A99 at McAfee
File PropertyProperty ValueFile Namevideo0~1.exeMcAfee DetectionGeneric Dropper.pLength518,867
bytesCRC3290392A99MD567f1775d6d1da83812d5fe2321fa3791SHA16AE070EACC762E06D709687B05F98A7CAFAA4173Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)generic10.baybAviraTR/ATRAPS.GenFortiNetDropper.
P!trAvert® Labs has obs...
Generic Dropper!190AA1AB - Generic Dropper!190AA1AB at McAfee
File PropertyProperty ValueFile Name626247~1.exeMcAfee DetectionGeneric DropperLength43,537
bytesCRC32190AA1ABMD5c4d8530357166cb2c6fb10faa837b44bSHA1AF2B42C89714ECDDC3E253AC2309D401EA20884BOther Common
Detection AliasesCompany NameDetection NameAvastWin32:LdPinch-CTD [Trj]AVG (GriSoft)Dropper.Agent.
IACAviraDR/MicroJoiner.GenBitDefend...
Generic.dx!B34F0434 - Generic.dx!B34F0434 at McAfee
File PropertyProperty ValueFile Nameeag.exeMcAfee DetectionGeneric.dxLength66,056
bytesCRC32B34F0434MD516D7C031C57E093EB2576ED780E90FFCSHA149AE06076532732EE8196F67463202E165089773Other Common
Detection AliasesCompany NameDetection NameAvastWin32:Trojan-gen {Other}AVG (GriSoft)Downloader.Agent.
AINEAviraTR/Crypt.XPACK.GeneSafe (Alladin...
NTRootKit-J!58F4C9BD - NTRootKit-J!58F4C9BD at McAfee
Once execute ,it will copy itself to the following and delete the original:%windir%\system32\sysrest32.exeDrop
the following file :%windir%\system32\sysrest.sys(where %WinDir% is the default Windows directory, for example
C:\WINNT, C:\WINDOWS etc.)The following NTXXX functions are replaced with pointers to the rootkit code.
NtCreateTh...
PWS-OnlineGames.f!C7F4A23B - PWS-OnlineGames.f!C7F4A23B at McAfee
File PropertyProperty ValueFile Name09.exeMcAfee DetectionPWS-OnlineGames.fLength18,029
bytesCRC32C7F4A23BMD52C5F46268FFEE1EEE6FBF7A8187A0EC2SHA1F30CE7B68341E7955C1EBCC6527008F1AE23E7DBOther Common
Detection AliasesCompany NameDetection NameAhnLabDropper/OnlineGameHack.18029AvastWin32:OnLineGames-EEP
[Trj]AviraTR/Spy.GenBitDefenderTr...
PWS-OnlineGames.f!A5462A48 - PWS-OnlineGames.f!A5462A48 at McAfee
File PropertyProperty ValueFile Name08.exeMcAfee DetectionPWS-OnlineGames.fLength16,144
bytesCRC32A5462A48MD5DF9B3740374DFF45098BF975437740CASHA1C28C7ED766CD8EC7F86FFF74CF02A1A2569EF0F8Other Common
Detection AliasesCompany NameDetection NameAhnLabDropper/OnlineGameHack.16144AvastWin32:OnLineGames-EEP
[Trj]AVG (GriSoft)Generic10.BBJMA...
PWS-OnlineGames.f!B13F3137 - PWS-OnlineGames.f!B13F3137 at McAfee
File PropertyProperty ValueFile Name00.exeMcAfee DetectionPWS-OnlineGames.fLength17,484
bytesCRC32B13F3137MD522fe49bb41272b9c4c3244c13b3bfaafSHA1D1563D982E5BBCBD8D4CB737B415A50C9E523DEBOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.17484.CAvastWin32:OnLineGames-EEP
[Trj]AVG (GriSoft)PSW.Online...
PWS-OnlineGames.f!F8C72DFD - PWS-OnlineGames.f!F8C72DFD at McAfee
File PropertyProperty ValueFile Name02.exeMcAfee DetectionPWS-OnlineGames.fLength17,469
bytesCRC32F8C72DFDMD591930165E7B7248F02DAE69E29301140SHA1829A911C4654C7DB60D213F5E28DD58800D4CE0FOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.17469.DAvastWin32:OnLineGames-EEP
[Trj]AVG (GriSoft)Generic10....
PWS-OnlineGames.f!E61C715B - PWS-OnlineGames.f!E61C715B at McAfee
File PropertyProperty ValueFile Name07.exeMcAfee DetectionPWS-OnlineGames.fLength18,118
bytesCRC32E61C715BMD5e4a017e08c72b5cb10f14ffdb99cb524SHA117F7F8B15A592FECF86BE610079EB615809F6FECOther Common
Detection AliasesCompany NameDetection NameAhnLabDropper/OnlineGameHack.18118AvastWin32:OnLineGames-EEP
[Trj]AVG (GriSoft)Generic10.BACVA...
PWS-OnlineGames.f!3C89E284 - PWS-OnlineGames.f!3C89E284 at McAfee
File PropertyProperty ValueFile Name05.exeMcAfee DetectionPWS-OnlineGames.fLength16,389
bytesCRC323C89E284MD5F9DC58812EFA515E94C9E4D6FD4D8A34SHA1569E010148B7B04E47D0E97C8B621A5073C8A49FOther Common
Detection AliasesCompany NameDetection NameAhnLabDropper/OnlineGameHack.16389AvastWin32:OnLineGames-EEP
[Trj]AVG (GriSoft)Generic10.BBBQA...
PWS-OnlineGames.f!C177E883 - PWS-OnlineGames.f!C177E883 at McAfee
File PropertyProperty ValueFile Name03.exeMcAfee DetectionPWS-OnlineGames.fLength16,902
bytesCRC32C177E883MD5441A2DA685B2BA1F85D6CEEAFA259F49SHA1CCF41EDBA003C7C13A2B828E9D43F8B50DFA4404Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.16902AvastWin32:OnLineGames-EEP
[Trj]AVG (GriSoft)PSW.OnlineGa...
PWS-OnlineGames.f!EEE4AB1C - PWS-OnlineGames.f!EEE4AB1C at McAfee
File PropertyProperty ValueFile Name01.exeMcAfee DetectionPWS-OnlineGames.fLength18,970
bytesCRC32EEE4AB1CMD583DD2CDBB7A2E04509A6DA3056724076SHA1A713C88D88998FBA022DAC5FE3583CDD5DA14CAAOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.18970.BAvastWin32:Trojan-gen
{Other}AVG (GriSoft)Generic10.BAP...
PWS-OnlineGames.f!DEAB395D - PWS-OnlineGames.f!DEAB395D at McAfee
File PropertyProperty ValueFile Name04.exeMcAfee DetectionPWS-OnlineGames.fLength16,321
bytesCRC32DEAB395DMD532ffd57aece7f040045812a031404787SHA1A04D68E037317978793CE0E4FDEC8CD4FE7FB63DOther Common
Detection AliasesCompany NameDetection NameAvastWin32:OnLineGames-EEP [Trj]AVG (GriSoft)psw.onlinegames.
awkzAviraTR/Spy.GenBitDefenderTro...
Spy-Agent.bv!01f7cc2a - Spy-Agent.bv!01f7cc2a at McAfee
The trojan is designed to gathers email addresses and system information from the victim machine and send the
information to the remote site. This trojan registers a process creation notification rountine to monitor and
get notified when new process created.In order to hide network connections and capture the file system and
network ...
Agent.JEN - Agent.JEN at Panda
It downloads a rootkit in order to hide itself in the system and a rogue antivirus which alerts users of
unexisiting threats in the computer. It does not spread automatically using its own means.
...
Troj/DelfDrp-B - Troj/DelfDrp-B at Sophos
...
Troj/DwnLdr-HFY - Troj/DwnLdr-HFY at Sophos
Troj/DwnLdr-HFY is a Trojan for the Windows platform. Troj/DwnLdr-HFY
includes functionality to access the internet and communicate with a remote server via HTTP.
When first run Troj/DwnLdr-HFY copies itself to <System>\winds32.exe and creates the file
<System>\<...
Troj/FakeVir-DO - Troj/FakeVir-DO at Sophos
Troj/FakeVir-DO pretends to scan the computer and reports false infections. Troj/FakeVir-DO then
prompts the user to pay a license fee before pretending to clean the system.
Troj/FakeVir-DO drops the file <System>\scui.cpl which is detected as Troj/FakeVir-DE.
...
Troj/Mdrop-BTZ - Troj/Mdrop-BTZ at Sophos
...
Troj/Spywad-AY - Troj/Spywad-AY at Sophos
Troj/Spywad-AY is a Trojan for the Windows platform. Troj/Spywad-AY
includes functionality to access the internet and communicate with a remote server via HTTP.
Troj/Spywad-AY changes settings for Microsoft Internet Explorer, including search settings, by modifying
values unde...
Troj/BHO-GF - Troj/BHO-GF at Sophos
Troj/BHO-GF is registered as a COM object and Browser Helper Object (BHO) for Microsoft Internet
Explorer, creating registry entries under:
HKCR\CLSID\{ba6fd309-5936-8a4d-c47e-0b1874472763}
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper
Objects\{...
Troj/FakeAle-DK - Troj/FakeAle-DK at Sophos
...
Troj/FakeAV-AA - Troj/FakeAV-AA at Sophos
Troj/FakeAV-AA is a Trojan for the Windows platform. Troj/FakeAV-AA
fraudulently reports a users system as infected and will not clean up these fraudulent reports until the users
pays and registers the application. The Trojan may claim to detect a number of files.
These files ...
Troj/Agent-HGZ - Troj/Agent-HGZ at Sophos
...
Mal/Behav-119 - Mal/Behav-119 at Sophos
Mal/Behav-119 is a family of malicious downloaders for the Windows platform.
Members of Mal/Behav-119 typically include functionality to download and execute software from a remote
website. To bypass firewall restrictions they may inject code into a process such as internet explorer.
...
0 writebacks [07/23/2008 04:48]
[]
permanent link
|
Virus Malware and Threat News for 20080720
JS/Dloadr-BOJ - JS/Dloadr-BOJ at Sophos
...
Troj/PWS-ARY - Troj/PWS-ARY at Sophos
...
Troj/Agent-HGU - Troj/Agent-HGU at Sophos
...
Troj/Agent-HGX - Troj/Agent-HGX at Sophos
...
Troj/Agent-HGS - Troj/Agent-HGS at Sophos
...
Troj/Banhost-R - Troj/Banhost-R at Sophos
...
Troj/Buzus-G - Troj/Buzus-G at Sophos
...
Troj/Dload-CO - Troj/Dload-CO at Sophos
...
Troj/QHost-U - Troj/QHost-U at Sophos
...
W32/Autorun-GM - W32/Autorun-GM at Sophos
W32/Autorun-GM copies itself to <Root>\CDBoot.exe and <System>\System32.exe.
W32/Autorun-GM creates the file autorun.inf which is also detected as W32/Autorun-GM.
W32/Autorun-GM edits the registry entry: HKCR\exefile\Shell\open\command\
(Defau...
0 writebacks [07/21/2008 04:45]
[]
permanent link
|
Virus Malware and Threat News for 20080719
Troj/FakeAV-AM - Troj/FakeAV-AM at Sophos
Troj/FakeAV-AM is a Trojan for the Windows platform. Troj/FakeAV-AM
includes functionality to access the internet and communicate with a remote server via HTTP.
When Troj/FakeAV-AM is installed the following files are created: <Current
Folder>\%ORI...
Mal/Dorf-D - Mal/Dorf-D at Sophos
Mal/Dorf-D is a family of malware that attempts to download and execute files from a remote
location....
Troj/Bifrose-VY - Troj/Bifrose-VY at Sophos
Troj/Bifrose-VY is a Trojan for the Windows platform.
...
Troj/Ranky-BF - Troj/Ranky-BF at Sophos
Troj/Ranky-BF is a backdoor Trojan which allows a remote intruder to gain access and control over
the computer. The following registry entry is created to run Troj/Ranky-BF on startup:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run Advanced DHTML Enable
...
W32/SillyFDC-CL - W32/SillyFDC-CL at Sophos
W32/SillyFDC-CL is a worm for the Windows platform. When run
W32/SillyFDC-CL copies itself to <Temp>\WinUpdter.exe and creates the following registry entry:
HKCU\Software\Microsoft\Windows\CurrentVersion\Run WindowsUpdater
<Temp>\WinUpdter.
0 writebacks [07/20/2008 04:44]
[]
permanent link
|
Virus Malware and Threat News for 20080718
Trojan.Brisv.A!inf - Trojan.Brisv.A!inf at Norton Symantec
Trojan.Brisv.A!inf is a detection for the multimedia files infected with Trojan.Brisv.A.
...
Trojan.Brisv.A - Trojan.Brisv.A at Norton Symantec
Trojan.Brisv.A is aTrojan horse that infects multimedia files which may cause Windows Media Player to access a
malicious link....
PWS-Banker!4B5A30C8 - PWS-Banker!4B5A30C8 at McAfee
File PropertyProperty ValueFile Namemsm.scrMcAfee DetectionNew Malware.dqLength1,832,176
bytesCRC324B5A30C8MD54b694b9209396482c79caf42123bc666SHA13E6A8E44F062A2191DCCD1013ACE413CB7A4B347Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/Xema.variantAvastWin32:Banload-BDM [Trj]AVG
(GriSoft)PSW.Banker3.GDPAviraTR/...
Troj/BAds-A - Troj/BAds-A at Sophos
Troj/BAds-A is a Trojan for the Windows Platform Troj/BAds-A has the
functionality to communicate with a remote server via HTTP to report users browsing details and to download
and install additional code. Troj/BAds-A may create the following files:
<User>\Loc...
Troj/FakeAle-DJ - Troj/FakeAle-DJ at Sophos
Troj/FakeAle-DJ moves itself to the <System> folder. Troj/FakeAle-DJ
creates the registry entry: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
lphcrrsj0el6c Troj/FakeAle-DJ changes the wallpaper to show a warning that the computer
has been inf...
JS/Dloadr-BOI - JS/Dloadr-BOI at Sophos
...
Troj/Agent-HGP - Troj/Agent-HGP at Sophos
...
Troj/Agent-HGQ - Troj/Agent-HGQ at Sophos
Troj/Agent-HGQ is a Trojan for the Windows platform. When first run
Troj/Agent-HGQ copies itself to <System>\kdupu.exe. This file is stealthed. The
following registry entry is changed to run kdupu.exe on startup:
HKLM\SOFTWARE\Microsoft\Windows NT\...
Troj/Agent-HGR - Troj/Agent-HGR at Sophos
...
Troj/DwnLdr-HFT - Troj/DwnLdr-HFT at Sophos
...
Troj/FakeVir-DN - Troj/FakeVir-DN at Sophos
Troj/FakeVir-DN is a Trojan for the Windows platform. Troj/FakeVir-DN
includes functionality to access the internet and communicate with a remote server via HTTP.
When first run Troj/FakeVir-DN copies itself to <System>\winupdate.exe and creates the file
<System>\n...
0 writebacks [07/19/2008 04:44]
[]
permanent link
|
Virus Malware and Threat News for 20080717
AntiVirusXP2008 - AntiVirusXP2008 at Norton Symantec
BehaviorAntiVirusXP2008 is a misleading application that may give exaggerated reports of threats on the
computer....
W32/Nuwar@MM!83AC7A7C - W32/Nuwar@MM!83AC7A7C at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC3283AC7A7CMD50E3848095E29541D67F2FCD5FF6F19FDSHA1AF4761E2AEE91034F151CB1A357061E1C9A89CF6Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.tibs.9.abNormantibs.gen215SymantecTrojan.
PeacommTrend MicroTROJ_NUWAR.AB...
W32/Nuwar@MM!B4BDAE5B - W32/Nuwar@MM!B4BDAE5B at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32B4BDAE5BMD5D07735E8DE7647AC136238E33825FA7BSHA1E7430FDD1F982B9E7E2C1DD7A1D4A96EB73CF35BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.tibs.9.abNormantibs.gen215SymantecTrojan.
PeacommTrend MicroTROJ_NUWAR.AB...
W32/Nuwar@MM!15B3A49D - W32/Nuwar@MM!15B3A49D at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC3215B3A49DMD58E6AE248236F8658DB57A3CD9202F3BESHA15D5F770BE904D5AA7D3C22E3F1C134F22DDA114DOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.tibs.9.abNormantibs.gen215SymantecTrojan.
PeacommTrend MicroTROJ_NUWAR.AB...
W32/Nuwar@MM!E571F31C - W32/Nuwar@MM!E571F31C at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32E571F31CMD5C70FBFBC54761CBD33FB4A2785430FC9SHA11F4114AEA747B580B9C0CBC90C9E61356E388CAFOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.tibs.9.abNormantibs.gen215SymantecTrojan.
PeacommTrend MicroTROJ_NUWAR.AB...
W32/Nuwar@MM!3C96E1E9 - W32/Nuwar@MM!3C96E1E9 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC323C96E1E9MD5b6ecaf6c72793b4a4fa689edd377af12SHA1149962FE87D9446C4A89F4FBD11CB94E981E2957Other Common
Detection AliasesCompany NameDetection NameAhnLabNO_VIRUSAvastWin32:Zhelatin-DCO [Wrm]AVG (GriSoft)Downloader.
Tibs.9.ABAviraNO_VIRUSBitDefe...
W32/Nuwar@MM!D20354D5 - W32/Nuwar@MM!D20354D5 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32D20354D5MD561AD53742CB07252DC52B1766CD1930BSHA1A7ED53062AFFBDE1E9B404C14A5F2035BB125BE4Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.tibs.9.abNormantibs.gen215SymantecTrojan.
PeacommTrend MicroTROJ_NUWAR.AB...
W32/Nuwar@MM!4C2BECB5 - W32/Nuwar@MM!4C2BECB5 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC324C2BECB5MD5ff2c9a22352d939b301a36aa3387b32aSHA1D0ACE9D1FBA90650AF2F15A34D5C33A60BAA06CFOther Common
Detection AliasesCompany NameDetection NameAhnLabNO_VIRUSAvastWin32:Zhelatin-DCO [Wrm]AVG (GriSoft)Downloader.
Tibs.9.ABAviraNO_VIRUSBitDefe...
W32/Nuwar@MM!09E0B6A5 - W32/Nuwar@MM!09E0B6A5 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC3209E0B6A5MD59a08cbe25554582dd804b42b2cac5c6cSHA12722A66E5726372931EE17A3AF977BC53DB260A8Other Common
Detection AliasesCompany NameDetection NameAhnLabNO_VIRUSAvastWin32:Zhelatin-DCO [Wrm]AVG (GriSoft)Downloader.
Tibs.9.ABAviraNO_VIRUSBitDefe...
W32/Nuwar@MM!899B2862 - W32/Nuwar@MM!899B2862 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32899B2862MD564178fd9a97c57adea262c925a032bb7SHA16B73F175117C01C94DAD93730293FAB096D448C0Other Common
Detection AliasesCompany NameDetection NameAhnLabNO_VIRUSAvastWin32:Zhelatin-DCO [Wrm]AVG (GriSoft)Downloader.
Tibs.9.ABAviraNO_VIRUSBitDefe...
W32/Nuwar@MM!E3789A12 - W32/Nuwar@MM!E3789A12 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32E3789A12MD5fdecfec471d5dd09d374a8126105b7f4SHA188B33EF3DAA9782E43C1B8D47A87155BDE014870Other Common
Detection AliasesCompany NameDetection NameAvastWin32:Zhelatin-DCO [Wrm]AVG (GriSoft)Downloader.Tibs.9.
ABBitDefenderDropped:Trojan.Peed.JOQ...
W32/Nuwar@MM!C2D98BAC - W32/Nuwar@MM!C2D98BAC at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32C2D98BACMD5250b6ce88e5dce70c53cd1f27102981bSHA1D953B5C6E3FCBF95DA6F1DB09533BE1FF6C044B7Other Common
Detection AliasesCompany NameDetection NameAvastWin32:Zhelatin-DCO [Wrm]AVG (GriSoft)Downloader.Tibs.9.
ABBitDefenderDropped:Trojan.Peed.JOQ...
W32/Nuwar@MM!D472CF6E - W32/Nuwar@MM!D472CF6E at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32D472CF6EMD5c75f5196042465ca571a00e3e7f141cbSHA1637FDE4ECEE78469890A12E48FBEDC48E5D52EFBOther Common
Detection AliasesCompany NameDetection NameAvastWin32:Zhelatin-DCO [Wrm]AVG (GriSoft)Downloader.Tibs.9.
ABBitDefenderDropped:Trojan.Peed.JOQ...
W32/Nuwar@MM!EAC91E3C - W32/Nuwar@MM!EAC91E3C at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32EAC91E3CMD5fab4ed069b77f8421549cee6ca3d28deSHA1571FBE3F0B72803EBA66EA6975ACB23C29A7AB8FOther Common
Detection AliasesCompany NameDetection NameAvastWin32:Zhelatin-DCO [Wrm]AVG (GriSoft)Downloader.Tibs.9.
ABBitDefenderDropped:Trojan.Peed.JOQ...
W32/Nuwar@MM!5A3604C2 - W32/Nuwar@MM!5A3604C2 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC325A3604C2MD56c499428b3935cd05b715aa3a0c15b79SHA1FACA487401C4011E7CD7AF151718AC7DA6B219A9Other Common
Detection AliasesCompany NameDetection NameAvastWin32:Zhelatin-DCO [Wrm]AVG (GriSoft)Downloader.Tibs.9.
ABBitDefenderDropped:Trojan.Peed.JOQ...
PWS-OnlineGames.as!96E2C4AF - PWS-OnlineGames.as!96E2C4AF at McAfee
File PropertyProperty ValueFile Nametxtx20.exeMcAfee DetectionPWS-OnlineGames.asLength19,891
bytesCRC3296E2C4AFMD572c55630cb5884c453a33a326921c383SHA1D97FB07183C685F9B8A9974E483E66C2FA02EB07Other Common
Detection AliasesCompany NameDetection NameAvastWin32:OnLineGames-DQP [Trj]AVG (GriSoft)PSW.OnlineGames.
AXAMAviraTR/Crypt.XDR.GenBit...
W32/Nuwar@MM!E2BBCD86 - W32/Nuwar@MM!E2BBCD86 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength116,224
bytesCRC32E2BBCD86MD58d48fdbd5c059f0db043abb0d790e2daSHA12E8CC8E69E45FAA4C702BDC005207CAB9DEF051DOther Common
Detection AliasesCompany NameDetection NameAvastWin32:Zhelatin-DCO [Wrm]AVG (GriSoft)Downloader.Tibs.9.
ABBitDefenderDropped:Trojan.Peed.JOQ...
W32/Nuwar@MM!7960CD7E - W32/Nuwar@MM!7960CD7E at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC327960CD7EMD5e233caddc1ac4963d4f23da17df48f15SHA1C1BE0055BD66D6D7A733DACC345F0DB4B4FFC8DBOther Common
Detection AliasesCompany NameDetection NameAvastWin32:Zhelatin-DCO [Wrm]AVG (GriSoft)Downloader.Tibs.9.
ABBitDefenderDropped:Trojan.Peed.JOQ...
PWS-OnlineGames.as!EACBAA89 - PWS-OnlineGames.as!EACBAA89 at McAfee
File PropertyProperty ValueFile Namemzrp12.exeMcAfee DetectionPWS-OnlineGames.asLength20,935
bytesCRC32EACBAA89MD54b9ae24a1df919e00d6e5aafca1b05baSHA106A3443A8480B7731B65D3835730E7A5F6A53CCFOther Common
Detection AliasesCompany NameDetection NameAvastWin32:OnLineGames-DQP [Trj]AviraTR/Crypt.XDR.
GenBitDefenderTrojan.PWS.OnlineGames.YZ...
PWS-OnlineGames.p!4762163A - PWS-OnlineGames.p!4762163A at McAfee
File PropertyProperty ValueFile Namelvtv26.exeMcAfee DetectionPWS-OnlineGames.pLength28,224
bytesCRC324762163AMD52616e8f3a6788354a77473565339ffd5SHA1137E838E1BF76D89B01877271CA1DF097694E680Other Common
Detection AliasesCompany NameDetection NameAvastWin32:OnLineGames-CYO [Trj]AviraTR/Downloader.
GenBitDefenderTrojan.PWS.OnlineGames.WP...
PWS-OnlineGames.as!F8BE7E7C - PWS-OnlineGames.as!F8BE7E7C at McAfee
File PropertyProperty ValueFile Namejuje4.exeMcAfee DetectionPWS-OnlineGames.asLength19,191
bytesCRC32F8BE7E7CMD532013be85056627d3893e1eae0a85d2bSHA114145588C54C6B319B5EA90D37A9465E071946D6Other Common
Detection AliasesCompany NameDetection NameAvastWin32:OnLineGames-DQP [Trj]AVG (GriSoft)PSW.OnlineGames.
AWSAAviraTR/Crypt.XDR.GenBitD...
PWS-OnlineGames.as!C212FE1B - PWS-OnlineGames.as!C212FE1B at McAfee
File PropertyProperty ValueFile Namedwml8.exeMcAfee DetectionPWS-OnlineGames.asLength19,955
bytesCRC32C212FE1BMD50a5f314b164aa01d8209b1f5b0cb4b68SHA1F6AAD26570A1242301D6FC96C78591D0259C2C5DOther Common
Detection AliasesCompany NameDetection NameAvastWin32:OnLineGames-DQP [Trj]AVG (GriSoft)Generic10.
BCAXAviraTR/Crypt.XDR.GenBitDefende...
PWS-OnlineGames.p!59CFA7F1 - PWS-OnlineGames.p!59CFA7F1 at McAfee
File PropertyProperty ValueFile Namefgyn25.exeMcAfee DetectionPWS-OnlineGames.pLength23,936
bytesCRC3259CFA7F1MD59feed56169800a814694eceab1c3af32SHA1A14533DC8C143E859F8B4C38309732F1F723FDDCOther Common
Detection AliasesCompany NameDetection NameAvastWin32:Agent-ZMA [Trj]AviraTR/Dldr.Delphi.GenBitDefenderTrojan.
PWS.OnlineGames.WMAClam...
W32/Nuwar@MM!621CE10C - W32/Nuwar@MM!621CE10C at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32621CE10CMD557241702b052ca806c62fb0df803d750SHA1A56CEE7FD4A9CDBA8F5A70F512CAA21AA5ACFFA4Other Common
Detection AliasesCompany NameDetection NameAvastWin32:Zhelatin-DCO [Wrm]AVG (GriSoft)Downloader.Tibs.9.
ABBitDefenderDropped:Trojan.Peed.JOQ...
W32/Nuwar@MM!D9BCB680 - W32/Nuwar@MM!D9BCB680 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32D9BCB680MD5fc17837e38bbf7f2fa0477183d697f6eSHA1F221B894C2794F92B96B3D5E42DF9730EDC1F9D9Other Common
Detection AliasesCompany NameDetection NameAvastWin32:Zhelatin-DCO [Wrm]AVG (GriSoft)Downloader.Tibs.9.
ABBitDefenderDropped:Trojan.Peed.JOQ...
W32/Nuwar@MM!573D95A6 - W32/Nuwar@MM!573D95A6 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32573D95A6MD5799fd97eb2bdd9aa3ff03bd87a0a1400SHA14126BDC476E691FD14F3116AA34CBF017EE8EBC4Other Common
Detection AliasesCompany NameDetection NameAvastWin32:Zhelatin-DCO [Wrm]AVG (GriSoft)Downloader.Tibs.9.
ABBitDefenderDropped:Trojan.Peed.JOQ...
W32/Nuwar@MM!D94544F6 - W32/Nuwar@MM!D94544F6 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32D94544F6MD55a8b00b23275ad7b2337588f1eeceb84SHA1F363CBE735AFC5A5C69F92E1E5FEA8B03D3C328DOther Common
Detection AliasesCompany NameDetection NameAvastWin32:Zhelatin-DCO [Wrm]AVG (GriSoft)Downloader.Tibs.9.
ABBitDefenderDropped:Trojan.Peed.JOQ...
PWS-OnlineGames.as!39D76CE0 - PWS-OnlineGames.as!39D76CE0 at McAfee
File PropertyProperty ValueFile Nameaa10.exeMcAfee DetectionPWS-OnlineGames.asLength19,199
bytesCRC3239D76CE0MD5a643f234e29dfeed5bb33735cd92379aSHA1134EC218137D9F0430052C0741E376F9FBEC2C88Other Common
Detection AliasesCompany NameDetection NameAvastWin32:OnLineGames-DQP [Trj]AviraTR/Crypt.XDR.
GenBitDefenderTrojan.PWS.OnlineGames.YZLC...
Downloader.gen.a!91361DE8 - Downloader.gen.a!91361DE8 at McAfee
File PropertyProperty ValueFile Name16b46a~1.exeMcAfee DetectionDownloader.gen.aLength88,023
bytesCRC3291361DE8MD516b46a377217b7987ab16656515ef2bfSHA146BA6F9CE30CC62F1E66A28827FA35606EF5FE83Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)Downloader.Generic7.XBXAviraTR/Crypt.FKM.
GenBitDefenderTrojan.Downloader.VB....
PWS-Mmorpg.gen!838D25E6 - PWS-Mmorpg.gen!838D25E6 at McAfee
File PropertyProperty ValueFile Namexp-e4a~1.exeMcAfee DetectionPWS-Mmorpg.genLength1,227,891
bytesCRC32838D25E6MD5208ab3bbb385935b8088ca4275055ec3SHA19FBD19F05215C93843D5EC56DE1BC4FB17517412Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/Xema.variantAVG (GriSoft)PSW.OnlineGames.
AXEKAviraTR/Dldr.VB.fqtBitDefe...
Downloader.gen.a!3062557B - Downloader.gen.a!3062557B at McAfee
File PropertyProperty ValueFile Namee779ad~1.exeMcAfee DetectionDownloader.gen.aLength50,695
bytesCRC323062557BMD5e779ad721e76f55a41d11e121b990cb2SHA1E8E5F415511C1CA5E47AB3956A3CB14FF248C1ADOther Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/Injecter.50695AvastWin32:Adware-gen [Adw]AVG
(GriSoft)Downloader.Generic...
Troj/Agent-HGD - Troj/Agent-HGD at Sophos
Troj/Agent-HGD is a malicious PDF that exploits a vulnerability in Adobe Acrobat and Acrobat
Reader to drop malicious files. Troj/Agent-HGD drops the following file:
<System>\iexplore.exe - detected as
Troj/Agent-GVJ...
Troj/DwnLdr-HFM - Troj/DwnLdr-HFM at Sophos
...
Mal/TibsPk-F - Mal/TibsPk-F at Sophos
Mal/TibsPk-F is a malicious program.
...
Troj/Click-C - Troj/Click-C at Sophos
...
Troj/Delf-FAX - Troj/Delf-FAX at Sophos
...
Troj/IRCBot-ACH - Troj/IRCBot-ACH at Sophos
Troj/IRCBot-ACH copies itself to <Profile>\Application Data\dns.exe.
Troj/IRCBot-ACH creates the registry entry HKCU\Software\Microsoft\Windows\CurrentVersion\Run
Service Profile>\Application Data\dns.
exe...
Troj/PWS-ARX - Troj/PWS-ARX at Sophos
...
Troj/VB-EAJ - Troj/VB-EAJ at Sophos
...
W32/Autorun-GK - W32/Autorun-GK at Sophos
...
W32/Small-DHR - W32/Small-DHR at Sophos
W32/Small-DHR is a worm for the Windows platform.W32/Small-DHR may spread to locally accessible drives.When
first run W32/Small-DHR copies itself to <Windows>\WinDrives.EXE.The following registry entry is created
to run WinDrives.EXE on startup:
HKCU\Software\Microsoft\Windows\CurrentVersion\RunWinDrives<Windows>\WinDrives...
Generic Downloader.y!CB829343 - Generic Downloader.y!CB829343 at McAfee
File PropertyProperty ValueFile Name0_1_ex~1.exeMcAfee DetectionGeneric Downloader.yLength16,676
bytesCRC32CB829343MD54382866809da13bc0459f8507331cb6bSHA165D9C37E5F975C11642A47EB394B4F9385D975E6Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/Hupigon.GenAvastWin32:Steal-AC [Trj]AVG
(GriSoft)Worm/Delf.BTLAviraT...
Downloader-AZM!7ECF1AC3 - Downloader-AZM!7ECF1AC3 at McAfee
File PropertyProperty ValueFile Nameavp_1_~1.exeMcAfee DetectionDownloader-AZMLength42,496
bytesCRC327ECF1AC3MD53118F5B54A0744E71C410337003BE49CSHA1CA10972D5C5746CEACBA9B6EB51732C919CC2A8FOther Common
Detection AliasesCompany NameDetection NameAhnLabWin32/NSAnti.suspiciousAvastWin32:Detnat-AZ [Wrm]AVG
(GriSoft)Backdoor.Agent.fheAvira...
PWS-Onlinegames.dr!EFDB6F02 - PWS-Onlinegames.dr!EFDB6F02 at McAfee
File PropertyProperty ValueFile Name100_51~1.exeMcAfee DetectionPWS-Onlinegames.drLength628,093
bytesCRC32EFDB6F02MD56bc9fce7bed8d930f6096b645497a76eSHA147544DF11EF913E98D5D5FE20BEF261E71A08EE2Other Common
Detection AliasesCompany NameDetection NameAhnLabNO_VIRUSAvastWin32:Trojan-gen {Other}AVG
(GriSoft)NO_VIRUSAviraDR/Pacex.BLBitDef...
W32/Nuwar@MM!919161D1 - W32/Nuwar@MM!919161D1 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength90,624
bytesCRC32919161D1MD5d4205a4830176cd2ec01926d0572b94aSHA19E480FE3A358A5E1F7B71510F41940734E99E226Other Common
Detection AliasesCompany NameDetection NameAhnLabNO_VIRUSAvastNO_VIRUSAVG (GriSoft)Downloader.Tibs.9.
ABAviraNO_VIRUSBitDefenderTrojan.Peed.J...
W32/Nuwar@MM!CE8D25C5 - W32/Nuwar@MM!CE8D25C5 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength90,624
bytesCRC32CE8D25C5MD5462898ab34ebf1e7ba1bf6c5ffda940cSHA1E727BAFA20B4043C3C50CE9F56DDFEE2565DFF81Other Common
Detection AliasesCompany NameDetection NameAhnLabNO_VIRUSAvastNO_VIRUSAVG (GriSoft)Downloader.Tibs.9.
ABAviraNO_VIRUSBitDefenderTrojan.Peed.J...
W32/Nuwar@MM!AA396BB6 - W32/Nuwar@MM!AA396BB6 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32AA396BB6MD546533c8741e2e81f5cbe8ce927044e61SHA1E03221885AF1C24E0C0866067FE27C604DDE8012Other Common
Detection AliasesCompany NameDetection NameAhnLabNO_VIRUSAvastWin32:Zhelatin-DCO [Wrm]AVG (GriSoft)Downloader.
Tibs.9.ABAviraNO_VIRUSBitDefe...
PWS-Banker!6CC725B7 - PWS-Banker!6CC725B7 at McAfee
File PropertyProperty ValueFile Namewindow~1.exeMcAfee DetectionPWS-BankerLength4,059,142
bytesCRC326CC725B7MD5bf7ccb1bc544f8e5984c99ddf3b5527bSHA14105D9202C908DB6CC925C2222503F41D2BDEA02Other Common
Detection AliasesCompany NameDetection NameAhnLabNO_VIRUSAvastWin32:OnLineGames-DTK [Trj]AVG (GriSoft)SHeur.
BLOQAviraTR/Crypt.CFI.GenBi...
W32/Nuwar@MM!5917E4BB - W32/Nuwar@MM!5917E4BB at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength90,624
bytesCRC325917E4BBMD547a3f18b6d4fa308efd54df49fd63330SHA1F2FAD40140E86E3DC060635FF7D8A8E5D992D9C5Other Common
Detection AliasesCompany NameDetection NameAhnLabNO_VIRUSAvastNO_VIRUSAVG (GriSoft)Downloader.Tibs.9.
ABAviraNO_VIRUSBitDefenderTrojan.Peed.J...
W32/Nuwar@MM!42AC7951 - W32/Nuwar@MM!42AC7951 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength91,136
bytesCRC3242AC7951MD50c34dcaea452d16ffd9bca60ef86fc67SHA1E76CE65E931555F4C45A88663000582E80C59F41Other Common
Detection AliasesCompany NameDetection NameAhnLabNO_VIRUSAvastNO_VIRUSAVG (GriSoft)Downloader.Tibs.9.
ABAviraNO_VIRUSBitDefenderTrojan.Peed.J...
W32/PEPatcher.c!11EFA724 - W32/PEPatcher.c!11EFA724 at McAfee
File PropertyProperty ValueFile Nameservic~1.exeMcAfee DetectionW32/PEPatcher.cLength110,592
bytesCRC3211EFA724MD5657c36fbf4dc2e6967a9a1d8eb30a480SHA1AFEF2491BEA321D88787F5068267CDFCDDDC21F7Other Common
Detection AliasesCompany NameDetection NameAhnLabNO_VIRUSAvastWin32:Patched-CK [Trj]AVG (GriSoft)Win32/PEPatch.
AOAviraTR/Patched.AA....
Generic.dx!5ADACD6B - Generic.dx!5ADACD6B at McAfee
File PropertyProperty ValueFile Namebuk.exeMcAfee DetectionGeneric.dxLength9,728
bytesCRC325ADACD6BMD5A821A90D2CE178C47044B8AC0EB13FDESHA11C7015C9E366FD83F9AE9A89C8C9D5D7AD750D52Other Common
Detection AliasesCompany NameDetection NameAvastWin32:Trojan-gen {Other}AVG (GriSoft)Klone.WAviraTR/Crypt.
XPACK.GenBitDefenderBackdoor.Hamweq.AC...
W32/Nuwar@MM!5F1DC1F2 - W32/Nuwar@MM!5F1DC1F2 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength91,136
bytesCRC325F1DC1F2MD5BFA7CE1A5671DB38385B1B460B2CB108SHA1F6FFF645A5BA0D174B9F1B06E7A798B2E13796EFOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.tibs.9.abNormantibs.gen215SymantecTrojan.
PeacommTrend MicroWORM_NUWAR.ANA...
PWS-Banker.gen.i!068A1A93 - PWS-Banker.gen.i!068A1A93 at McAfee
This PWS Banker is a password stealing trojan that captures bank account information (username/password) and
sends this information to the author via HTTP POST method.It targets exclusively customers of Bank Caixa
Economica Federal.Once the user executes it, the malware application will show a window explaining that the
procedure is ...
Downloader-BAI!738AD979 - Downloader-BAI!738AD979 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionDownloader-BAILength91,136
bytesCRC32738AD979MD5c6a5f6980f429f4090c4a9108df7b6ebSHA1A786C1D6E3C712E11D42EAC66B5897FBBE3D2588Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.tibs.9.abNormantibs.gen215SymantecTrojan.
PeacommTrend MicroWORM_NUWAR.A...
Downloader-BAI!815D2852 - Downloader-BAI!815D2852 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionDownloader-BAILength90,624
bytesCRC32815D2852MD5E21CAAF059E09851CCF174DDC70030B6SHA10F2891F67AD03942C11D1F6196D36AF1650BB5B0Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.tibs.9.abNormantibs.gen215SymantecTrojan.
PeacommTrend MicroWORM_NUWAR.A...
Downloader-BAI!D087721F - Downloader-BAI!D087721F at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionDownloader-BAILength90,624
bytesCRC32D087721FMD5ee434aacdfa707e7f80f10853a35e859SHA123B8C1B6D47132F8D11C3FB7EB3E88252D60A2F4Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.tibs.9.abNormantibs.gen215SymantecTrojan.
PeacommTrend MicroWORM_NUWAR.A...
Downloader-BAI!02AC942A - Downloader-BAI!02AC942A at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionDownloader-BAILength90,624
bytesCRC3202AC942AMD52b54c4440690b48bd0e465f3b72b5d01SHA19D2C84C2C383C23EF8646AE4583295F9C23B6549Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.tibs.9.abNormantibs.gen215SymantecTrojan.
PeacommTrend MicroWORM_NUWAR.A...
Downloader-BAI!2484BAF5 - Downloader-BAI!2484BAF5 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionDownloader-BAILength90,624
bytesCRC322484BAF5MD5c66f8d25fe09c44886f44edea1d414dcSHA167825A47EEC7FF0C16EC4090819F3EF8E77A7055Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.tibs.9.abNormantibs.gen215SymantecTrojan.
PeacommTrend MicroWORM_NUWAR.A...
Downloader-BAI!8850AA37 - Downloader-BAI!8850AA37 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionDownloader-BAILength91,136
bytesCRC328850AA37MD570352c9e072b179c2c348632f40ca4e4SHA111484F51D701088FF3C2E8A1C8EA7BEC1C1A3A3DOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.tibs.9.abNormantibs.gen215SymantecTrojan.
PeacommTrend MicroWORM_NUWAR.A...
Downloader-BAI!C0CA813A - Downloader-BAI!C0CA813A at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionDownloader-BAILength90,624
bytesCRC32C0CA813AMD5c00b1d195ec6b28858efdd20110aefa4SHA160C36D09EC0426E8D8D2107290E58658DF2227BEOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.tibs.9.abNormantibs.gen215SymantecTrojan.
PeacommTrend MicroWORM_NUWAR.A...
Adware-180SA!9B88E0D6 - Adware-180SA!9B88E0D6 at McAfee
This software is not a virus or a Trojan. It is detected as a "potentially unwanted program" (PUP). PUPs are
any piece of software that a reasonably security- or privacy-minded computer user may want to be informed of
and, in some cases, remove. PUPs are often made by a legitimate corporate entity for some beneficial purpose,
but th...
Adware-180SA!664339BA - Adware-180SA!664339BA at McAfee
This software is not a virus or a Trojan. It is detected as a "potentially unwanted program" (PUP). PUPs are
any piece of software that a reasonably security- or privacy-minded computer user may want to be informed of
and, in some cases, remove. PUPs are often made by a legitimate corporate entity for some beneficial purpose,
but th...
Adware-180SA!47EF87F1 - Adware-180SA!47EF87F1 at McAfee
This software is not a virus or a Trojan. It is detected as a "potentially unwanted program" (PUP). PUPs are
any piece of software that a reasonably security- or privacy-minded computer user may want to be informed of
and, in some cases, remove. PUPs are often made by a legitimate corporate entity for some beneficial purpose,
but th...
W32/Nuwar@MM!B6A39315 - W32/Nuwar@MM!B6A39315 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32B6A39315MD5D2B10D84CDEB07A933E8FA77B5D54EBESHA1C43D51B952407DE25FAD0469625882E8C08B5DEBOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.tibs.9.abNormantibs.gen215SymantecTrojan.
PeacommTrend MicroTROJ_NUWAR.AB...
W32/Nuwar@MM!88E1E99C - W32/Nuwar@MM!88E1E99C at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC3288E1E99CMD5B7A2AE45E27D045592A62FF6B0C96D7BSHA19410C12AEE8755227BF564D666057E7CFE0E81CFOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.tibs.9.abNormantibs.gen215SymantecTrojan.
PeacommTrend MicroTROJ_NUWAR.AB...
W32/Nuwar@MM!49C03F0B - W32/Nuwar@MM!49C03F0B at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC3249C03F0BMD5309E5F2ED3950A0E488F1967C3366A3ASHA1882D178F83295E70055706CD11E6A7401A89679COther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.tibs.9.abNormantibs.gen215SymantecTrojan.
PeacommTrend MicroTROJ_NUWAR.AB...
W32/Nuwar@MM!B3BA61D5 - W32/Nuwar@MM!B3BA61D5 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32B3BA61D5MD5C8CFBAAD061CDBBA28ABDA0A42BB5D14SHA1465404C1EF87954FABDD44473899466C5EA68228Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.tibs.9.abNormantibs.gen215SymantecTrojan.
PeacommTrend MicroTROJ_NUWAR.AB...
W32/Nuwar@MM!67E53FCB - W32/Nuwar@MM!67E53FCB at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC3267E53FCBMD5ECACF63DE997C8C1521DF08E582B0F69SHA11841B9424127663730238B3F57AD629492595827Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.tibs.9.abNormantibs.gen215SymantecTrojan.
PeacommTrend MicroTROJ_NUWAR.AB...
Generic.dx!46CEEA02 - Generic.dx!46CEEA02 at McAfee
File PropertyProperty ValueFile Namewujie8~1.exeMcAfee DetectionGeneric.dxLength91,648
bytesCRC3246CEEA02MD5d2e86ccb87771e6d710ca25360585f14SHA1B3272FCC32BEF6C15D56A3DEB55F93AA9E22047COther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)Generic9.AYZNDr.WebTool.Proxy.2517NormanW32/Smalltroj.
CNPMPandaGenericSymantecTroj...
W32/Nuwar@MM!5D8BABE4 - W32/Nuwar@MM!5D8BABE4 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC325D8BABE4MD58048CA63F6662BC601389E08C175ACD5SHA132418840ABD5EF30A07DA1B9627D2A02C59C4042Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.tibs.9.abNormantibs.gen215SymantecTrojan.
PeacommTrend MicroWORM_NUWAR.AN...
Spammer.AIT - Spammer.AIT at Panda
It is designed to send spam messages to the email addresses it has gathered from the affected computer. It
does not spread automatically by its own means.
...
Troj/Dloadr-BOH - Troj/Dloadr-BOH at Sophos
...
Troj/FakeVir-DM - Troj/FakeVir-DM at Sophos
Troj/FakeVir-DM claims to detect threats on the computer and prompts the user for a license fee
before pretending to clean up threats. Troj/FakeVir-DM copies itself to the folder
<Programs>\Antivirus2008y. Troj/FakeVir-DM creates the registry entry
HKCU\Softwa...
Troj/Joofi-B - Troj/Joofi-B at Sophos
...
W32/Tilebot-GZ - W32/Tilebot-GZ at Sophos
W32/Tilebot-GZ is a worm for the Windows platform.W32/Tilebot-GZ spreads to other network computers by
exploiting common buffer overflow vulnerabilities, including: SRVSVC (MS06-040), WKS (MS03-049)
(CAN-2003-0812), PNP (MS05-039) and ASN.1 (MS04-007). The worm may also spreads via network shares protected
by weak passwords.W32/Til...
Troj/Agent-HGG - Troj/Agent-HGG at Sophos
...
Troj/Agent-HGH - Troj/Agent-HGH at Sophos
...
Troj/Joofi-A - Troj/Joofi-A at Sophos
Troj/Joofi-A is a backdoor Trojan which allows a remote intruder to gain access and control over
the computer. Troj/Joofi-A includes functionality to access the internet and
communicate with a remote server via HTTP and SMTP. When first run Troj/Joofi-A copies
itself to: ...
W32/MoonLig-J - W32/MoonLig-J at Sophos
...
Troj/Agent-HGF - Troj/Agent-HGF at Sophos
...
Troj/Zlob-AMO - Troj/Zlob-AMO at Sophos
...
0 writebacks [07/18/2008 04:45]
[]
permanent link
|
Virus Malware and Threat News for 20080715
Backdoor.Lancafdo - Backdoor.Lancafdo at Norton Symantec
Backdoor.Lancafdo is a Trojan horse that opens a back door on the compromised computer.
...
Downloader.Diliv - Downloader.Diliv at Norton Symantec
Downloader.Diliv is a Trojan horse program that attempts to download files from a remote location.
...
Packed.Generic.174 - Packed.Generic.174 at Norton Symantec
Packed.Generic.174 is a heuristic detection for files that may have been obfuscated or encrypted in order to
conceal them from antivirus software.
...
TROJ_MEDPINCH.A - TROJ_MEDPINCH.A at Trend Micro
This Trojan image file may arrive bundled with malware packages as a malware component. It may be downloaded
unknowingly by a user when visiting malicious Web sites. Below is a screenshot of the said image file: When
opened, it drops and executes a spyware file that Trend Micro detects as TSPY_LDPINCH.ASG. As a result,
malicious rou...
Antivirus2008Pro - Antivirus2008Pro at Panda
It deceives users and warns them of unexisting threats in their computers. In order to eliminate them, they
are enticed to purchase a certain program. It can be downloaded from the website belonging to the company that
has developed it....
Troj/FakeVir-CC - Troj/FakeVir-CC at Sophos
Troj/FakeVir-CC is a Trojan for the Windows platform. When first run,
Troj/FakeVir-CC copies itself to <Program Files>\Antivirus2008y\antvrs.exe
Troj/FakeVir-CC also creates <Adeministrator>\Start Menu\Antivirus2008y\Antivirus 2008.
lnk ...
VBS/Sasan-G - VBS/Sasan-G at Sophos
VBS/Sasan-G overwrites every VB Script file on the computer with a copy of itself. These files are
no longer recoverable. VBS/Sasan-G creates a companion vbs file for every .bmp, .doc, .
xls, .ppt file on the computer. These companion files are also detected as VBS/Sasan-G.
VBS...
Troj/Dialer-FL - Troj/Dialer-FL at Sophos
Troj/Dialer-FL creates the registry entries
HKCU\Software\Microsoft\Windows\CurrentVersion\Run uffck
HKCU\Software\Microsoft\Windows\CurrentVersion\Run uffck Troj/Dialer-FL
inserts entries into the hosts file.
...
Troj/Mdrop-BTY - Troj/Mdrop-BTY at Sophos
Troj/Mdrop-BTY is a Trojan for the Windows plaftorm. When first run, the
Trojan drops the following files: <Temp>\0.exe (detected as Mal/TibsPk-D)
<Temp>\1.exe (detected as Mal/TibsPk-A) Troj/Mdrop-BTY may attempt to download
and e...
Troj/Agent-HGB - Troj/Agent-HGB at Sophos
...
Troj/Agent-HGC - Troj/Agent-HGC at Sophos
Troj/Agent-HGC is a Trojan for the Windows platform. When Troj/Agent-HGC is
installed it creates the file <System>\<random>.dll. The file
<random>.dll is registered as a COM object and Browser Helper Object (BHO) for Microsoft Internet
Explorer, creating regi...
Troj/Dwnldr-HFJ - Troj/Dwnldr-HFJ at Sophos
...
Troj/Perfic-Gen - Troj/Perfic-Gen at Sophos
Troj/Perfic-Gen is a family of password stealer Trojans for the Windows platform.
Members of the Troj/Perfic-Gen family attempt to steal passwords for the Perfect World online game.
...
Troj/Zlob-AMM - Troj/Zlob-AMM at Sophos
...
Mal/Allaple-A - Mal/Allaple-A at Sophos
Mal/Allaple-A is a family of network worms for the Windows platform.
Members of Mal/Allaple-A spread to other network computers by exploiting common buffer overflow
vulnerabilities and by accessing network services protected by weak passwords. The worm
installs a modified copy...
0 writebacks [07/16/2008 04:44]
[]
permanent link
|
Virus Malware and Threat News for 20080714
TROJ_PIDIEF.JT - TROJ_PIDIEF.JT at Trend Micro
...
Sinowal.VPB - Sinowal.VPB at Panda
It is designed to steal passwords and banking data. When it is run, it causes the system to be restarted. It
does not spread automatically by its own means.
...
Troj/Agent-HFY - Troj/Agent-HFY at Sophos
Troj/Agent-HFY is a Trojan on the Windows platform. Troj/Agent-HFY includes
functionality to access the internet and communicate with a remote server via HTTP.
When first run Troj/Agent-HFY copies itself to <System>\lanmanwrk.exe and creates the following files:
...
Troj/BadBean-A - Troj/BadBean-A at Sophos
Troj/BadBean-A is a Trojan for the Windows platform.
...
Troj/BHO-GE - Troj/BHO-GE at Sophos
...
Troj/Dloadr-BOG - Troj/Dloadr-BOG at Sophos
...
VBS/Aredr-A - VBS/Aredr-A at Sophos
VBS/Aredr-A is a VBScript worm for the Windows platform that attempts to spread via copying itself
to other drives. When run VBS/Aredr-A attempts to create a shortcut link to itself as
<Favorites>\Phardera.lnk and sets the following registry entry: VBS/Aredr-A
...
W32/Sdbot-DKR - W32/Sdbot-DKR at Sophos
...
Troj/Rootkit-DB - Troj/Rootkit-DB at Sophos
Troj/Rootkit-DB intercepts network traffic to and from the computer.
Troj/Rootkit-DB copies itself to <System>\userinit.exe. It renames the original userinit.exe to sdjeavd.
tmp....
Troj/Agent-HFX - Troj/Agent-HFX at Sophos
...
Troj/BadSign-A - Troj/BadSign-A at Sophos
...
Troj/Bckdr-QOJ - Troj/Bckdr-QOJ at Sophos
Troj/Bckdr-QOJ is a Trojan for the Windows platform. Troj/Bckdr-QOJ
includes functionality to access the internet and communicate with a remote server via HTTP.
The Trojan creates registry entries under:
HKCU\Software\Microsoft\NetGetXP\Options...
0 writebacks [07/15/2008 04:49]
[]
permanent link
|
Virus Malware and Threat News for 20080713
Troj/Dloadr-BOC - Troj/Dloadr-BOC at Sophos
...
Troj/FakeAV-AJ - Troj/FakeAV-AJ at Sophos
Troj/FakeAV-AJ claims to be an anti-virus scanner called "Doctor Antivirus 2008".
Troj/FakeAV-AJ scans the computer and reports clean files as being infected with malware. Troj/FakeAV-AJ
then persistently prompts the user to purchase the full version of "Doctor Antivirus 2008" in order to cleanup
th...
Troj/PWS-ARV - Troj/PWS-ARV at Sophos
...
Troj/Renos-AW - Troj/Renos-AW at Sophos
...
Troj/Agent-HFU - Troj/Agent-HFU at Sophos
...
Troj/Bifrose-VX - Troj/Bifrose-VX at Sophos
Troj/Bifrose-VX is a Trojan for the Windows platform. When first run
Troj/Bifrose-VX copies itself to <Program Files>\Bifrost\server.exe. The
following registry entry is created to run server.exe on startup:
HKLM\SOFTWARE\Microsoft\Active Setup\Ins...
Troj/PhpShell-M - Troj/PhpShell-M at Sophos
...
Troj/QHost-R - Troj/QHost-R at Sophos
...
Troj/QHost-S - Troj/QHost-S at Sophos
...
Troj/Banker-EMJ - Troj/Banker-EMJ at Sophos
...
0 writebacks [07/14/2008 04:49]
[]
permanent link
|
Virus Malware and Threat News for 20080712
W32/Nuwar@MM!D39C2FDA - W32/Nuwar@MM!D39C2FDA at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32D39C2FDAMD535AE8D56A52D323A8BF4E19CB4C8088DSHA13D2856422DB63D5221E2EF130450ECB47F134EF0Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.UBitDefenderDropped:Trojan.Peed.JOQDr.
WebTrojan.Packed.555eSafe (Allad...
W32/Nuwar@MM!2F025260 - W32/Nuwar@MM!2F025260 at McAfee
File PropertyProperty ValueFile Nameform.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC322F025260MD57FF98697EDEA6E940E0DF9CF226852F4SHA1D351B38D11CF8D9574389156C33051468A3C2821Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.UBitDefenderDropped:Trojan.Peed.JOQDr.
WebTrojan.Packed.555eSafe (Allad...
W32/Nuwar@MM!DFAD90BD - W32/Nuwar@MM!DFAD90BD at McAfee
File PropertyProperty ValueFile Nameform.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32DFAD90BDMD55A56B3D80507C0CCDCB048E08F38A1FBSHA1B22490D6ACE0BED419F144D7D81A8A548C38E4DDOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.UBitDefenderDropped:Trojan.Peed.JOQDr.
WebTrojan.Packed.555eSafe (Allad...
Generic.dx!4D982FD3 - Generic.dx!4D982FD3 at McAfee
File PropertyProperty ValueFile Nameastry.exeMcAfee DetectionNew Malware.dqLength2,342,912
bytesCRC324D982FD3MD5e6367b3cf50d0e021df94b015fffec34SHA141D789F202AE20179B979621B4A38DB5AA814F7AOther Common
Detection AliasesCompany NameDetection NameAhnLabWin32/Xema.worm.154436AvastWin32:VB-EYD [Wrm]AVG
(GriSoft)Worm/VB.BWFAviraTR/Crypt.CF...
W32/Nuwar@MM!DA43A325 - W32/Nuwar@MM!DA43A325 at McAfee
File PropertyProperty ValueFile Name00000329.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32DA43A325MD59D000E31FE23B29984123D7291CA424CSHA1FA36E4BC97BE701A9529C71D47AC09862F24E0B1Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.UBitDefenderDropped:Trojan.Peed.JOQDr.
WebTrojan.Packed.555eSafe (A...
W32/Nuwar@MM!EBCF6808 - W32/Nuwar@MM!EBCF6808 at McAfee
File PropertyProperty ValueFile Nameform.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32EBCF6808MD5B9414434EFCC62BD822BDFB0D3B0EF86SHA189EA30C8F8DC395D3707DBC2DACC310FE0BE6692Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.UBitDefenderDropped:Trojan.Peed.JOQDr.
WebTrojan.Packed.555eSafe (Allad...
W32/Nuwar@MM!2C6AAD13 - W32/Nuwar@MM!2C6AAD13 at McAfee
File PropertyProperty ValueFile Nameform.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC322C6AAD13MD56cef88ff707a5644683a3e6111c62a02SHA1DFD20249F2CAFDCD7E668009BDDEE56D9EC0DB91Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.UBitDefenderDropped:Trojan.Peed.PMDr.
WebTrojan.Packed.555eSafe (Alladi...
W32/Nuwar@MM!A84FEEC3 - W32/Nuwar@MM!A84FEEC3 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32A84FEEC3MD5b94edeb31df352fa709ac9e79f4aa752SHA18A3282222F77CCD79EBED5A1C38600599438E373Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.UBitDefenderDropped:Trojan.Peed.PMDr.
WebTrojan.Packed.555eSafe (Alladi...
Troj/Mdrop-BTV - Troj/Mdrop-BTV at Sophos
Troj/Mdrop-BTV drops <System>\<Random name>.sys which is detected as Troj/Pushu-Gen.
...
Troj/Dloadr-BOA - Troj/Dloadr-BOA at Sophos
...
Troj/Keygen-CD - Troj/Keygen-CD at Sophos
Troj/Keygen-CD is a key generator for UltraISO software.
...
Troj/Zbot-AC - Troj/Zbot-AC at Sophos
...
Troj/Delf-FAW - Troj/Delf-FAW at Sophos
Troj/Delf-FAW is a backdoor Trojan for the Windows platform. When first run
Troj/Delf-FAW copies itself to <System>\msupdate.exe. The following registry
entries are created to run msupdate.exe on startup:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVers...
Troj/FakeAV-AI - Troj/FakeAV-AI at Sophos
Troj/FakeAV-AI is a Trojan for the Windows platform. When Troj/FakeAV-AI is
installed the following files are created: <User>\Application
Data\Microsoft\Internet Explorer\Quick Launch\Antivirus 2009.lnk <Desktop>\Antivirus 2009.lnk
<User>...
Troj/FakeVir-DG - Troj/FakeVir-DG at Sophos
Troj/FakeVir-DG is a Trojan for the Windows platform. When run the Trojan
will drop a Control Panel applet into the System folder as scui.dll and attempt to load a remote web page.
The dropped component is already detected as
Troj/FakeVir-DE...
Troj/Hazmat-A - Troj/Hazmat-A at Sophos
...
Troj/Lineag-DQ - Troj/Lineag-DQ at Sophos
Troj/Lineag-DQ is a dropper Trojan for the Windows platform. Troj/Lineag-DQ
includes functionality to access the internet and communicate with a remote server via HTTP.
When first run Troj/Lineag-DQ creates the following files: <Root>\ntdelect.
com ...
Troj/VB-EAG - Troj/VB-EAG at Sophos
Troj/VB-EAG is a worm for the Windows platform. When first run Troj/VB-EAG
copies itself to <System>\Winlogin.exe. The following registry entry is created
to run Winlogin.exe on startup: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
...
0 writebacks [07/13/2008 04:51]
[]
permanent link
|
Virus Malware and Threat News for 20080711
Trojan.Downexec.B - Trojan.Downexec.B at Norton Symantec
Trojan.Downexec.B is a Trojan horse that may download files on to the compromised computer.
...
X97M.Teteon - X97M.Teteon at Norton Symantec
X97M.Teteon is a Microsoft Excel macro virus that infects all worksheets opened.
...
MS08-040 - MS08-040 at Panda
It is a group of important vulnerabilities in several versions of SQL Server, which allows local privilege
escalation in the vulnerable computer.
...
MS08-039 - MS08-039 at Panda
It is a group of important vulnerabilities in Outlook Web Access for Exchange Server, which allows local
privilege escalation in the vulnerable computer.
...
MS08-038 - MS08-038 at Panda
It is an important vulnerability in Windows Explorer on Windows 2008/Vista computers, which allows hackers to
gain remote control of the affected computer with the same privileges as the logged on user.
...
MS08-037 - MS08-037 at Panda
It is a group of important spoofing vulnerabilities in Windows DNS Servers on Windows 2008/2003/XP/2000
computers, which allows the Internet traffic to be redirected from legitimate locations.
...
Fractalove.A - Fractalove.A at Panda
It controls the information entered by the user in different instant messaging programs, browsers and email
services, among others. This way, it could obtain passwords or other information about the user. It spreads
via email....
Buzus.AL - Buzus.AL at Panda
It obtains the passwords stored in the Internet temporary files and sends them to its author. It spreads via
MSN Messneger, IRC channels and removable drives.
...
WistaAntivirus - WistaAntivirus at Panda
It deceives users and warns them of unexisting threats in their computers. In order to eliminate them, they
are enticed to purchase a certain program. It can be downloaded from the website belonging to the company that
has developed it....
FJoiner.A - FJoiner.A at Panda
It steals information of any type, such as passwords, or email addresses. It disables several applications
such as the Task Manager and the Windows Registry Editor. It does not spread automatically by its own means.
...
Manyasu.A - Manyasu.A at Panda
It causes the slowdown of the system, preventing planned tasks from being carried out. It does not spread
automatically by its own means.
...
Sinowal.VNL - Sinowal.VNL at Panda
It is designed to steal passwords and banking data. It can also spoof or modify websites belonging to certain
banking entities. It does not spread automatically by its own means.
...
Troj/FakeAV-AH - Troj/FakeAV-AH at Sophos
Troj/FakeAV-AH claims to be an anti-virus scanner called "Advanced Antivirus".
Troj/FakeAV-AH reports clean files on the computer as infected with malware and spyware. Troj/FakeAV-AH
persistently prompts the user to purchase the full licensed version of Troj/FakeAV-AH in order to cleanup the
infect...
Troj/Sinowal-C - Troj/Sinowal-C at Sophos
Troj/Sinowal-C is a Trojan for the Windows platform. When run, the Trojan
creates the following files: <Temp>\2.tmp (detected as Troj/Sinowal-C)
<Temp>\4.tmp (detected as Troj/Sinowal-C) and copies itself to:
...
Troj/Zlob-AMH - Troj/Zlob-AMH at Sophos
When first run Troj/Zlob-AMH drops the files: <Current folder>\iebt.
dll - detected as Troj/Zlob-AMH <Current folder>\iebtmm.exe - detected as Troj/Zlob-AMH
The following registry entry is created to start Troj/Zlob-AMH on startup:
...
Troj/Zlob-AMI - Troj/Zlob-AMI at Sophos
When first run Troj/Zlob-AMI drops the file: <Current folder>wcm.exe
- detected as Troj/Zlob-AMI The following registry entry is created to run
Troj/Zlob-AMI: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer\run\
some ...
Troj/Zlob-AMJ - Troj/Zlob-AMJ at Sophos
...
Troj/Zlob-AMK - Troj/Zlob-AMK at Sophos
...
Mal/Emogen-N - Mal/Emogen-N at Sophos
Mal/Emogen-N is a malicious program for the Windows platform. Detection
for members of Mal/Emogen-N is behavior based. It is extremely important that customers report detections of
Mal/Emogen-N to Sophos and send a sample for analysis.
...
Troj/Buzus-F - Troj/Buzus-F at Sophos
Troj/Buzus-F is a Trojan for the Windows platform. Troj/Buzus-F includes
functionality to inject code into other processes and to communicate with a remote server via HTTP.
Troj/Buzus-F usually can be located as the file <Windows>\iexplorer.exe.
Th...
Troj/Dloadr-BNY - Troj/Dloadr-BNY at Sophos
Troj/Dloadr-BNY is a Trojan for the Windows platform. Troj/Dloadr-BNY
includes functionality to access the internet and communicate with a remote server via HTTP.
...
0 writebacks [07/12/2008 04:55]
[]
permanent link
|
Virus Malware and Threat News for 20080710
Downloader.Zlob!gen.3 - Downloader.Zlob!gen.3 at Norton Symantec
Downloader.Zlob!gen.3 is a generic detection for the Trojan.Zlob family.
...
W32/Nuwar@MM!334F1176 - W32/Nuwar@MM!334F1176 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32334F1176MD5EC3A8FEBA598F66B83461CB56F329A96SHA1809FC17579F737DA08BEDC4AE8E36D71BD4C53C7Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.UBitDefenderDropped:Trojan.Peed.PMDr.
WebTrojan.Packed.555eSafe (Alladi...
Generic Downlaoder.ab!1C15 - Generic Downlaoder.ab!1C15 at McAfee
Upon executing this trojan it will periodically contact a malicious website and will receive a list of URLs.
The trojan will then open an hidden window of Internet Explorer pointing to the previously downloaded URLs. In
some cases the URLs leads to webpages of questionable online shops and various advertisement pages. In other
cases ...
MachineDog.dr - MachineDog.dr at McAfee
Upon execution the virus drops and installs a device driver named "pcihdd.sys" from %system%\drivers directory.
Once the driver is installed the "pcihdd.sys" file is deleted from the disk and only resident in memory. The
user mode application communicates with the device driver to infect the "userinit.exe" file on disk. The
infected f...
TROJ_MDROPPER.ZT - TROJ_MDROPPER.ZT at Trend Micro
...
TROJ_PPDROP.M - TROJ_PPDROP.M at Trend Micro
This Trojan may be downloaded unknowingly by a user when visiting malicious Web sites.It takes advantage of an
unknown vulnerability in MS PowerPoint in order to drop possibly malicious files. The dropped files are
detected by Trend Micro as the following:BKDR_PCCLIEN.AFRBKDR_PCCLIEN.BBCBKDR_PCCLIEN.BBDIt then executes the
dropped fi...
TROJ_MDROPPER.ZY - TROJ_MDROPPER.ZY at Trend Micro
This Trojan may be downloaded unknowingly by a user when visiting malicious Web sites.It takes advantage of an
unknown vulnerability in Microsoft Excel in order to drop malicious files detected by Trend Micro as the
following: BKDR_PCCLIEN.BBBTROJ_SMALL.SYMIt then executes the dropped file(s). As a result, malicious routines
of the d...
Troj/Bckdr-QOH - Troj/Bckdr-QOH at Sophos
...
Troj/Dloadr-BNW - Troj/Dloadr-BNW at Sophos
...
Troj/DwnLdr-HFG - Troj/DwnLdr-HFG at Sophos
Troj/DwnLdr-HFG is a downloader Trojan on the Windows platform. When
Troj/DwnLdr-HFG is run, it will download code from a remote host and execute it. After execution,
Troj/DwnLdr-HFG will delete itself.
...
Troj/FakeAv-AG - Troj/FakeAv-AG at Sophos
...
Troj/FakeVir-DF - Troj/FakeVir-DF at Sophos
Troj/FakeVir-DF claims to be an anti-virus scanner called "Spy Shredder".
When first run Troj/FakeVir-DF displays a warning message: "STOP! Security status
Security errors detected. Remove these errors as soon as possible to prevent data loss and
private...
Troj/PDFex-J - Troj/PDFex-J at Sophos
...
Troj/FakeVir-DE - Troj/FakeVir-DE at Sophos
Troj/FakeVir-DE claims to be an anti-virus scanner called "Antivirus 2009".
Troj/FakeVir-DE scans the computer and reports clean files as being infected with malware. Troj/FakeVir-DE
then persistently prompts the user to purchase the full version of "Antivirus 2009" in order to cleanup the
infection...
Troj/Agent-HFO - Troj/Agent-HFO at Sophos
...
Troj/Agent-HFI - Troj/Agent-HFI at Sophos
Troj/Agent-HFI is a Trojan for the Windows platform. When first run
Troj/Agent-HFI copies itself to <System>\ubpr01.exe and creates the following files:
<Root>\42356d3.bat <Root>\tmp2.reg <System>\750623\750623.dll
...
0 writebacks [07/11/2008 04:51]
[]
permanent link
|
Virus Malware and Threat News for 20080709
Trojan.Ditsec - Trojan.Ditsec at Norton Symantec
Trojan.Ditsec is a Trojan horse that may download files on to the compromised computer.
...
SpywareScanner2008 - SpywareScanner2008 at Norton Symantec
BehaviorSpywareScanner2008 is a misleading application that may give exaggerated reports of threats on the
computer....
RegistryDefender - RegistryDefender at Norton Symantec
BehaviorRegistryDefender is a misleading application that may give exaggerated reports of threats on the
computer....
W32/Nuwar@MM!99D2E0E8 - W32/Nuwar@MM!99D2E0E8 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC3299D2E0E8MD560D1CDF62895ED02ECA8632BBE1C4627SHA17F7BDBCB81A79D928E0FEF024A00332E72FA4646Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DTrend Micr...
W32/Nuwar@MM!F9440AFF - W32/Nuwar@MM!F9440AFF at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32F9440AFFMD513B0B848D0088BFDDCC7F5B98EE9DB79SHA1C8C33AB92C3037AA06DD5CA938E9321C70A5D88FOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DTrend ...
W32/Nuwar@MM!E3B588A7 - W32/Nuwar@MM!E3B588A7 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC32E3B588A7MD51AAC2079247B1246CC7EA1D40619E022SHA183B0F34C3B657F52E1603B618534596589972548Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommTrend Mi...
W32/Nuwar@MM!6CEBEFE9 - W32/Nuwar@MM!6CEBEFE9 at McAfee
File PropertyProperty ValueFile Name000002e7.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC326CEBEFE9MD53632C16BBEE61864CE126F97652D6FB7SHA10299B01709240E8F951733D26F13BE0CAABDABA4Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DTrend ...
W32/Nuwar@MM!2287E69A - W32/Nuwar@MM!2287E69A at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC322287E69AMD597AA9769AC7D9376CA5859CBBD5C2D5ASHA169AF64111EA772039F47720FB663084103231381Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommTrend Mi...
W32/Nuwar@MM!72C32E42 - W32/Nuwar@MM!72C32E42 at McAfee
File PropertyProperty ValueFile Name000002db.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC3272C32E42MD59B36F108479EECDC01F1AF968C01D08ESHA16913E5059212E7216E2D5493AF2736D6C842271BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DTrend ...
W32/Nuwar@MM!9F21A7A2 - W32/Nuwar@MM!9F21A7A2 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC329F21A7A2MD59BF4737E46D2EA6B7EB4EF6605FB269DSHA137CCD58357AB31FC9D8833776733636F99E76757Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
Troj/Agent-HFE - Troj/Agent-HFE at Sophos
...
Troj/FakeAV-AE - Troj/FakeAV-AE at Sophos
...
Troj/FakeVir-DD - Troj/FakeVir-DD at Sophos
...
Mal/EncPk-EG - Mal/EncPk-EG at Sophos
Mal/EncPk-EG is a program packed with a protection system typically used by malware authors.
Files detected as Mal/EncPk-EG frequently drop more malware.
...
W32/Tilebot-GM - W32/Tilebot-GM at Sophos
W32/Tilebot-GM is a worm and IRC backdoor Trojan for the Windows platform.W32/Tilebot-GM spreads to other
network computers by exploiting common buffer overflow vulnerabilities.W32/Tilebot-GM runs continuously in the
background, providing a backdoor server which allows a remote intruder to gain access and control over the
computer vi...
Troj/Agent-HFC - Troj/Agent-HFC at Sophos
Troj/Agent-HFC is a Trojan for the Windows platform. When run,
Troj/Agent-HFC drops the following files onto the system (all of which are detected as Troj/Agent-HFC):
<System>\msliksurcredo.dll <System>\msliksurdns.dll
<system>\drivers\m...
Troj/Agent-HFD - Troj/Agent-HFD at Sophos
Troj/Agent-HFD is a Trojan for the Windows platform. Troj/Agent-HFD
includes functionality to access the internet and communicate with a remote server via HTTP.
When Troj/Agent-HFD is installed it creates the file <System>\univrs32.dat.
The file un...
Mal/TinyDL-U - Mal/TinyDL-U at Sophos
...
0 writebacks [07/10/2008 04:48]
[]
permanent link
|
Virus Malware and Threat News for 20080707
Packed.Generic.157 - Packed.Generic.157 at Norton Symantec
Packed.Generic.157 is a heuristic detection for files that may have been obfuscated or encrypted in order to
conceal them from antivirus software.
...
DiskKnight - DiskKnight at Norton Symantec
BehaviorDiskKnight is a potentially unwanted application that warns the user when executables are being run
from removable drives.
...
WinDefender - WinDefender at Norton Symantec
BehaviorWinDefender is a misleading application that may give exaggerated reports of threats on the computer.
...
WistaAntivirus - WistaAntivirus at Norton Symantec
BehaviorWistaAntivirus is a misleading application that may give exaggerated reports of threats on the
computer....
W32/Nuwar@MM!3C06334B - W32/Nuwar@MM!3C06334B at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC323C06334BMD5F58D027A991A195C1F09E08AC947C11ASHA13DCC3251B370FD6C8CD6C50933A39B42944E98D9Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!F5F2B712 - W32/Nuwar@MM!F5F2B712 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC32F5F2B712MD540A727F00CDA614159FDFA18B131D23DSHA1158B91485022E55B72A62895E1A149A6017EB8DBOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommTrend Mi...
W32/Nuwar@MM!0BF62EF3 - W32/Nuwar@MM!0BF62EF3 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength114,176
bytesCRC320BF62EF3MD5DF715CED91D2D97A0FC8076D489EC79FSHA163536D318BCE985029CDEC3F719B8D0790659CB8Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommTrend MicroT...
W32/Nuwar@MM!A3FF8EE4 - W32/Nuwar@MM!A3FF8EE4 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC32A3FF8EE4MD575C05ED8E4C64A81098C6EC3DD3240DDSHA1161D4577585DE9CDA0D8C2273043976C015A1BE4Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommTrend Mi...
W32/Nuwar@MM!748DB29F - W32/Nuwar@MM!748DB29F at McAfee
File PropertyProperty ValueFile Name000002b8.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC32748DB29FMD55D15B27E8B87610858D0CD9A6DB22D6FSHA1511BBB375D2B13D6B37D75F38DEA26AD5002EBF0Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommTrend Mi...
W32/Nuwar@MM!CEBBE98C - W32/Nuwar@MM!CEBBE98C at McAfee
File PropertyProperty ValueFile Name000002af.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC32CEBBE98CMD5F505BF3128A82C65D43F2CACD53BBD06SHA1FFDCC4105EB590133F8D7026B598BAD707470309Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommTrend Mi...
W32/Nuwar@MM!EBCA9E5B - W32/Nuwar@MM!EBCA9E5B at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC32EBCA9E5BMD5DAF2983172302AAE18F7EB2E4720DC6DSHA163B65E8EBA21F131F92D09BFEA56A3DE73BF5452Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommTrend MicroT...
W32/Nuwar@MM!89020A79 - W32/Nuwar@MM!89020A79 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC3289020A79MD567838577C840E7827B39D90677AEB647SHA198DAD87A6CEC066DD5017F38F02F6EB8E8A388E4Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!9E773865 - W32/Nuwar@MM!9E773865 at McAfee
File PropertyProperty ValueFile Name000002ab.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC329E773865MD53F6C8C9D20D24C8D27F98E57B5C936EBSHA1164902D1E74BFDBEBB30CF3FF64C6F269103EF1DOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommTrend Mi...
W32/Nuwar@MM!F2996978 - W32/Nuwar@MM!F2996978 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC32F2996978MD5107143C2B63835D3B87CAA224D9DF097SHA107C8463F0CF2B12EAECE9310350247DC1F2582B7Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommTrend MicroT...
W32/Nuwar@MM!6836ABA5 - W32/Nuwar@MM!6836ABA5 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC326836ABA5MD5E6F75E37A08D1D6F3223D65000E34C5CSHA1BB40A69C34FC8F6C3DD40E3F269BA31A2F8B3921Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommTrend Mi...
W32/Nuwar@MM!279D3D1F - W32/Nuwar@MM!279D3D1F at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC32279D3D1FMD56362FD6B17FF962A17B306F7B967408ASHA133001145D2A03AE2B0F9F7014C93A4B409688E1EOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommTrend MicroT...
W32/Nuwar@MM!6D27B4CF - W32/Nuwar@MM!6D27B4CF at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC326D27B4CFMD5DD13E377B5DD3F191837B384B3BF2ED2SHA169A01CA5AE2FE20AD4D52DDA4F2B3492CB78388EOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommTrend MicroT...
W32/Nuwar@MM!0F2AC2A1 - W32/Nuwar@MM!0F2AC2A1 at McAfee
File PropertyProperty ValueFile Name000002a0.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC320F2AC2A1MD596F9A95E876E85CEB3D281A3969784FBSHA1057B587EAA173F841178056A10C30989695035A3Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommTrend Mi...
W32/Nuwar@MM!6A81AEE8 - W32/Nuwar@MM!6A81AEE8 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC326A81AEE8MD5C46AA4A44DC11B4ED608BD3CD14CA643SHA10C6E116665F36C487C2546D072E8E8295CFA400BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!253FF659 - W32/Nuwar@MM!253FF659 at McAfee
File PropertyProperty ValueFile Name0000029b.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32253FF659MD5CBC7E69BA6619B43C8352A66F3D2105ASHA1AA62AF84D8183A3C787995CDD49C81812A174CA5Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!EF6D812A - W32/Nuwar@MM!EF6D812A at McAfee
File PropertyProperty ValueFile Name00000296.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32EF6D812AMD5af0f295123f00cfe0111838e304dd20eSHA1AE2A9449A918DBB1A16FFC7EECC3AB8C4A4D4F19Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!C728D590 - W32/Nuwar@MM!C728D590 at McAfee
File PropertyProperty ValueFile Name00000294.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC32C728D590MD5FC3B2818AF5471C7F78F7403480D308BSHA13BBC245CA18A5B7A0CC5FA5CAD175382598D6782Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommTrend Mi...
W32/Nuwar@MM!A9E13604 - W32/Nuwar@MM!A9E13604 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32A9E13604MD5AEA69B2681643D6EAAC4B91A6C18C5A5SHA186BC4F58D9BAE5048AD1BC922582607C0865B29DOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!85227C56 - W32/Nuwar@MM!85227C56 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC3285227C56MD5E243714AFE196B5A41C11F3D3AA36D27SHA1099085D42C0492962FB886BD4C06FEAD1EDD3F97Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert® La...
W32/Nuwar@MM!E009182A - W32/Nuwar@MM!E009182A at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC32E009182AMD5963DB10D36CCA48AB303D1D8808B4B4ASHA1A99EBA50E9416E72626FD726CA5903FAA072706COther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommTrend MicroT...
W32/Nuwar@MM!150B1C7D - W32/Nuwar@MM!150B1C7D at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32150B1C7DMD5514A219E092782DAD8762FE95A5DABCFSHA1E7608B60955E2A534F90D59767B06004786802F1Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!D8C6C163 - W32/Nuwar@MM!D8C6C163 at McAfee
File PropertyProperty ValueFile Name00000294.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32D8C6C163MD509155F2DE6158AE8FDEDE1B4DFF01903SHA1B4AC4CC36EAB32B0F20A44E0CEEE6EC03C04C451Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!6AC60585 - W32/Nuwar@MM!6AC60585 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC326AC60585MD50C57A531C05F5C1E21BDC995606592A8SHA1E7E83BCCC94F167E609177611F4C76B69EC92292Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!A020BAF1 - W32/Nuwar@MM!A020BAF1 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32A020BAF1MD513EC20229BF4CCBDB7AD960D58AE70C5SHA19F02A28F3694BB0089A616A00C6D871FDD2A643COther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!98A582F3 - W32/Nuwar@MM!98A582F3 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC3298A582F3MD5A02D9F82A8152B917187CEE1F5ACBDCASHA1B8FDEBA4C74DE58182F9850CDE09F3913EFEB64COther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
W32/Nuwar@MM!870C61FF - W32/Nuwar@MM!870C61FF at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32870C61FFMD5751294B93CCC2067C94A9EB7182AA32ASHA1A7CCB4F1967C9D2192B9A30E731BC11B2AAD91B7Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!C36094C6 - W32/Nuwar@MM!C36094C6 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32C36094C6MD5745D083BCFA8D4D386BE50D3C2B345BFSHA15C37E38F2A86E6AEF5B5298E4A744D4CCE3B768DOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!5F9BD83C - W32/Nuwar@MM!5F9BD83C at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC325F9BD83CMD50DC9B4ADD0DB81831B3943BD68F68CFCSHA1DD346DA758CDEB17768154B1479714FCA5940730Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!EEBBF863 - W32/Nuwar@MM!EEBBF863 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC32EEBBF863MD5008D7384D27C292F467A68A8BC8C68ABSHA19F65226BA5222976E48055815030C617BB675FB9Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommTrend Mi...
TROJ_DROPPER.OAC - TROJ_DROPPER.OAC at Trend Micro
This Trojan may be downloaded from a certain remote site.When exexuted, it drops components files. Trend
Micro detects some of these files as IRC_ZAPCHAST.BI and MAL_ZAP. As a result, routines of the dropped
malware are also exhibited on the affected system. This Trojan also displays the following image file to trick
users into thi...
Troj/Backdr-X - Troj/Backdr-X at Sophos
...
Troj/Proxy-IN - Troj/Proxy-IN at Sophos
...
Mal/Zapchas-A - Mal/Zapchas-A at Sophos
Mal/Zapchas-A is a family of Trojans for the Windows platform. Members of
Mal/Zapchas-A run continuously in the background, providing a backdoor server which allows a remote intruder
to gain access and control over the computer via IRC channels. When members of
Mal/Zapchas-A a...
Troj/Agent-HEV - Troj/Agent-HEV at Sophos
Troj/Agent-HEV is a Trojan for the Windows platform. When Troj/Agent-HEV is
installed the following files are created: - <Temp>\RarSFX0\2.sfx.exe - detected
as Troj/Agent-HEV - <Temp>\RarSFX0\2.txt - plain text, can be safely deleted -
<Win...
Troj/Dloadr-BNS - Troj/Dloadr-BNS at Sophos
At the time of writing, Troj/Dloadr-BNS downloads a file named green.exe which is detected as
Troj/Dorf-BP.
...
Troj/Dloadr-BNT - Troj/Dloadr-BNT at Sophos
At the time of writing, Troj/Dloadr-BNT downloads a file named flagfs.jpg which is detected as
Troj/Bancos-BEE.
...
Troj/Keylog-KK - Troj/Keylog-KK at Sophos
...
W32/AutoRun-FZ - W32/AutoRun-FZ at Sophos
...
W32/Autorun-GA - W32/Autorun-GA at Sophos
W32/Autorun-GA is a worm for the Windows platform. When first run
W32/Autorun-GA copies itself to <System>\csrsc.exe and creates the file <Windows>\jejekat.txt.
...
0 writebacks [07/08/2008 04:49]
[]
permanent link
|
Virus Malware and Threat News for 20080706
W32/Nuwar@MM!9134CB1E - W32/Nuwar@MM!9134CB1E at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC329134CB1EMD553296B95842DD9E0EB35011BCC829201SHA16ACEEF68B9479244F993DB8A39035628BFEF33EFOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
W32/Nuwar@MM!96E533AC - W32/Nuwar@MM!96E533AC at McAfee
File PropertyProperty ValueFile Name00000262.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC3296E533ACMD5F59D46F5EE278DE804025AB8D9278AA1SHA19B6EBE708906F694114F60C71315F1E11F204BADOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
W32/Nuwar@MM!E7DE22FA - W32/Nuwar@MM!E7DE22FA at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC32E7DE22FAMD5C7CDFC12FBFD6416CDA32C32F6878F2CSHA164B29EE416DA5294657C2A191D566F37DBFF636COther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
W32/Nuwar@MM!71EA9B76 - W32/Nuwar@MM!71EA9B76 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC3271EA9B76MD598E301F73F901DA4298AD48DC96DEC40SHA160EEE62DAC399038BFE22D3ECF57127FF2469CFEOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!4A3374B4 - W32/Nuwar@MM!4A3374B4 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC324A3374B4MD53aae236a46f5622b8a484e63ff89ef3cSHA13182654C6C7270A33B6D9FAC9D68FAC84C5FF63BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!E87F68AC - W32/Nuwar@MM!E87F68AC at McAfee
File PropertyProperty ValueFile Name00000257.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC32E87F68ACMD5F47329D96E8F683579080DA495D3CE76SHA18D0400C1EA442EA0CEEC04041F55949996F8BDA4Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
W32/Nuwar@MM!817674C2 - W32/Nuwar@MM!817674C2 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC32817674C2MD5001C951C1BC6A9363D80AB47E1DFE0B0SHA1FC01BD5C5723EAB8C4794CFE609A59439A08139DOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
W32/Nuwar@MM!C1633770 - W32/Nuwar@MM!C1633770 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC32C1633770MD5463F5F0185135E6291C211069752244CSHA172E740117566931B1BEFC79F90E631369522049DOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
W32/Nuwar@MM!79AE2C3E - W32/Nuwar@MM!79AE2C3E at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC3279AE2C3EMD5EFE5AC11E10B061D09B5863143E30633SHA14BB8A2ECEE19989527A0B659558C26C9925A731BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
W32/Nuwar@MM!9860F44A - W32/Nuwar@MM!9860F44A at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC329860F44AMD5C653F5C26A127DED3F6218D8031AB231SHA17CE8172B8472BA1D8F9809D1BE40C4962A2F5D02Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
W32/Nuwar@MM!0C4CCDDA - W32/Nuwar@MM!0C4CCDDA at McAfee
File PropertyProperty ValueFile Namefirewo~1.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC320C4CCDDAMD5F260675373F68DD6C6F19BAA9A2A3BC3SHA1885C332AC389524C51463C5B07C8CAB62E367FBFOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
W32/Nuwar@MM!CC513699 - W32/Nuwar@MM!CC513699 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC32CC513699MD50FC1F1474AF343C96288AD2345F81359SHA16A5BE714AF1362DAF7EA65CFEDA9DCB41CE4F549Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert® La...
W32/Nuwar@MM!5CF6ED03 - W32/Nuwar@MM!5CF6ED03 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC325CF6ED03MD53EBC250D1717477BA0E27F14B4EF9EBASHA17E152FF308B63EF91E41427A2564AC2C605379DFOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
W32/Nuwar@MM!C7CC8EE2 - W32/Nuwar@MM!C7CC8EE2 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC32C7CC8EE2MD5059B3F4B7114ADEA9143BCCC175001F7SHA1572B22016CF28BCEB7095B26BB7B03480CDF7708Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert® La...
W32/Nuwar@MM!AC4ABCF0 - W32/Nuwar@MM!AC4ABCF0 at McAfee
File PropertyProperty ValueFile Name0000023d.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC32AC4ABCF0MD591183678EE77C9FF1D1A303B65763440SHA1E505BC30BDD8372B6755822B5D7003688F13D6B4Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
W32/Nuwar@MM!D948186B - W32/Nuwar@MM!D948186B at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength115,712
bytesCRC32D948186BMD57925B8CC96920A3ACE04231F1BED3BE6SHA1BF4B15045F7B82D9AC801F1480247A3CB6B19A20Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
W32/Nuwar@MM!CCA0037E - W32/Nuwar@MM!CCA0037E at McAfee
File PropertyProperty ValueFile Name00000235.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32CCA0037EMD5681ED397C9BA505AD6067AAF7FCF867ASHA1DD3907FAA194C5FD4D3499DB8C1EBAD1525C49E5Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dAvert® Labs has observed th...
W32/Nuwar@MM!CF7A22A8 - W32/Nuwar@MM!CF7A22A8 at McAfee
File PropertyProperty ValueFile Name00000230.exeMcAfee DetectionW32/Nuwar@MMLength116,736
bytesCRC32CF7A22A8MD5ECD1F3948A24BFFB4F3E7692B2242C5FSHA1433F4898B00919C7257E6EC894EF4C12F9C6A9BFOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dAvert® Labs has observed th...
W32/Nuwar@MM!E14FD465 - W32/Nuwar@MM!E14FD465 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC32E14FD465MD5530E77FE4C0FF3213FBECB68B2C243B4SHA1C9F8D544FC582D2829D48D947EC9E3CCB9CE8C7FOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dAvert® Labs has observed the fo...
W32/Nuwar@MM!B7DB1E18 - W32/Nuwar@MM!B7DB1E18 at McAfee
File PropertyProperty ValueFile Name0000022d.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32B7DB1E18MD5FF22D0A2DAE08E9CBC08E6EA185BA3FBSHA15768DBF7AF555172863C368B0AA4DAC8606E9DDCOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dAvert® Labs has observed th...
W32/Nuwar@MM!02577266 - W32/Nuwar@MM!02577266 at McAfee
File PropertyProperty ValueFile Name0000022b.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC3202577266MD54186F4940D86269AA80D5A537F9ECDF9SHA139B5B6D688C001CD29D398575B92348B28085A95Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dAvert® Labs has observed th...
W32/Nuwar@MM!327B93F8 - W32/Nuwar@MM!327B93F8 at McAfee
...
W32/Nuwar@MM!96199A1D - W32/Nuwar@MM!96199A1D at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC3296199A1DMD517A0082D3B6F9161F383B8B4FE053A72SHA1F447DE26B216C323A9EFCE5E374F176202B8F422Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dAvert® Labs has observed th...
W32/Nuwar@MM!325091D8 - W32/Nuwar@MM!325091D8 at McAfee
File PropertyProperty ValueFile Name0000022a.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32325091D8MD5EF4704F7498044DF1E9F03193CE0E562SHA18F8E0687CE614480193D1201DD8962724FC250A8Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dAvert® Labs has observed th...
W32/Nuwar@MM!62829F40 - W32/Nuwar@MM!62829F40 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC3262829F40MD5737660eacf1ce03f35da47392556d8c3SHA1AE272CFE24C98CFD9A6579827DB73056C0944592Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dAvert® Labs has observed th...
W32/Nuwar@MM!B0907ED8 - W32/Nuwar@MM!B0907ED8 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32B0907ED8MD5EF17678CC928B3FF4EA04BCE023C860FSHA1ABDDFB9F8BE9C2D32FC70D8DB132B2DD3D130F43Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!64444850 - W32/Nuwar@MM!64444850 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC3264444850MD5065A645995C60DAB3232B8E14C384577SHA1B6ACF6D64BA2AE021B431B5FD8E42A048DF9D4A0Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!D22550EA - W32/Nuwar@MM!D22550EA at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32D22550EAMD57DC67E185FF07F80F85E7611D2FAB3B2SHA16867450084162977ADA39D6648127B5031B8836EOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!83213F83 - W32/Nuwar@MM!83213F83 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC3283213F83MD5FE1997988CC44CDFCA6D25F7D39324AASHA1DFBAFF96A5BAB820EA4D567134F2C72B3A7F3BDEOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!48C3E17C - W32/Nuwar@MM!48C3E17C at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC3248C3E17CMD5CAAC4B1C7768FB67E927C1B5C7E11C74SHA179AC7A052D140C1A343F9E4DFEC00255D888D480Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
Troj/Swizzor-NY - Troj/Swizzor-NY at Sophos
...
W32/AutoRun-FY - W32/AutoRun-FY at Sophos
...
Troj/FakeVir-CU - Troj/FakeVir-CU at Sophos
Troj/FakeVir-CU is a Trojan downloader for the Windows platform. When run
Troj/FakeVir-CU attempts to download code from a remote website to the location <Program
Files>\Antivirus 2009\av2009.exe and run it.
...
Troj/FakeVir-CV - Troj/FakeVir-CV at Sophos
...
Troj/Agent-HEP - Troj/Agent-HEP at Sophos
Troj/Agent-HEP is a Trojan for the Windows platform. When Troj/Agent-HEP is
installed the following files are created: <Current Folder>\vs2005.bat
<Common Files>\Microsoft Shared\MSInfo\mcvtrc.crm The file mcvtrc.crm (also
detected...
Troj/Agent-HEQ - Troj/Agent-HEQ at Sophos
...
Troj/Dloadr-BNR - Troj/Dloadr-BNR at Sophos
...
Troj/Zlob-AMB - Troj/Zlob-AMB at Sophos
...
Troj/Banker-EMG - Troj/Banker-EMG at Sophos
Troj/Banker-EMG is an information-stealing Trojan for the Windows platform.
Some samples of Troj/Banker-EMG have been infected to W32/Vetor-A prior to distribution.
...
Troj/Mdrop-BTS - Troj/Mdrop-BTS at Sophos
...
0 writebacks [07/07/2008 04:52]
[]
permanent link
|
Virus Malware and Threat News for 20080705
W32/Nuwar@MM!B1EA44A4 - W32/Nuwar@MM!B1EA44A4 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC32B1EA44A4MD58F5D8915DD3AE8145811DC1E152E3DF9SHA1D835A649749EA21402A43293A0A9F38F3F79CB3BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
W32/Nuwar@MM!DF28E028 - W32/Nuwar@MM!DF28E028 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC32DF28E028MD5B41A2358B32E69F2A9755EBEF797B4BFSHA1173DD6EC1F3E954CE7B31BCB47AB04C02A1C9A6FOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
W32/Nuwar@MM!56C076AC - W32/Nuwar@MM!56C076AC at McAfee
File PropertyProperty ValueFile Name000001dc.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC3256C076ACMD54F8CBD10A1A53749CD8D9290AED48EEASHA1691A1C419430C2D5FBB82FC824E4227739CD812DOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!57F72D07 - W32/Nuwar@MM!57F72D07 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC3257F72D07MD55AFB9CF8DCCD6481575F06CB21261688SHA16E5EA56D07E075D9D7ADB97F10426B355C6DAFB6Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
W32/Nuwar@MM!DB1B7C53 - W32/Nuwar@MM!DB1B7C53 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32DB1B7C53MD5D985D16A8AA073BD6A02D5CD0CB99C55SHA1EC4870E942243BAA3CAC62BD92948267AFB82E80Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!68F1A0E6 - W32/Nuwar@MM!68F1A0E6 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC3268F1A0E6MD52BAF8A859E7CEE50305AA92B0C4BB057SHA12CA1B25F71E6B857103D5B5EFF1F0ED137B6DA2AOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
W32/Nuwar@MM!E0163398 - W32/Nuwar@MM!E0163398 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC32E0163398MD5F40392848FDA02D3B841983CCB03EBC1SHA1BA77FA334A15D2B47AF6DC0BBDB583E34F8B632AOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dAvert® Labs has observed th...
W32/Nuwar@MM!AD80CB39 - W32/Nuwar@MM!AD80CB39 at McAfee
File PropertyProperty ValueFile Name000001d1.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC32AD80CB39MD5BE1426DB923183741CEFE79E02882857SHA18D53FB3123AD21371E19320FD4661C76209D1276Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dAvert® Labs has observed th...
W32/Nuwar@MM!9D30588B - W32/Nuwar@MM!9D30588B at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC329D30588BMD50BB6BED0B7824989703451B939E15A16SHA19B17C8CCB5252CF265806E12713614DEE603871EOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
W32/Nuwar@MM!6695D113 - W32/Nuwar@MM!6695D113 at McAfee
File PropertyProperty ValueFile Name000001c6.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC326695D113MD568B2E9959D3497A80F3C4FD8D7D7F01DSHA1DC8090B586C9129B01D804E5DAF05FB1EE38C35COther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
W32/Nuwar@MM!90E7A19D - W32/Nuwar@MM!90E7A19D at McAfee
File PropertyProperty ValueFile Name000001be.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC3290E7A19DMD54a5d1602e69c02d346da5c0f2d06c9e0SHA1062833E24702CE7B59210733D66CB8A6EE095A99Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
W32/Nuwar@MM!73795078 - W32/Nuwar@MM!73795078 at McAfee
File PropertyProperty ValueFile Name000001c2.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC3273795078MD58A70C51A21D6A85A6F22F67C5636083CSHA1DBA281E8CAC15B217BCB78559F2F3F0750460736Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
W32/Nuwar@MM!2BAAE829 - W32/Nuwar@MM!2BAAE829 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC322BAAE829MD52495DC89C5BB0B4C535390F7D028F27FSHA1F5B40F750EE42D86D97B0A957BF2BEAF73D90BD6Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
W32/Nuwar@MM!F7C2DC3C - W32/Nuwar@MM!F7C2DC3C at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC32F7C2DC3CMD5F8493812179480724F6A2DBA214A0120SHA17E6F4FEF793C126127CF3F70950EC64AA350CD81Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
W32/Nuwar@MM!0F83844C - W32/Nuwar@MM!0F83844C at McAfee
File PropertyProperty ValueFile Name000001bc.exeMcAfee DetectionW32/Nuwar@MMLength113,664
bytesCRC320F83844CMD5A36955F698A4E29DD06D284D6E9CE2F5SHA11F5EAD65787284C60FAE6076F1637A6282ED62F7Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
W32/Nuwar@MM!F6D44995 - W32/Nuwar@MM!F6D44995 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC32F6D44995MD5092D4BCCD00EE2F57A234E4323726C12SHA1CB26BB339515A6747583C143C240E33E12B0527DOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
W32/Nuwar@MM!1E438E1E - W32/Nuwar@MM!1E438E1E at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC321E438E1EMD524c7cf21634d46a15507c89183788112SHA1DC58A3EF5E3A75EC43152493E29BCA75D33C625COther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!6153B389 - W32/Nuwar@MM!6153B389 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC326153B389MD5BDFD49BBBA70F0D75273A8B9D59CE585SHA168BAE88C17AD91E240858ACE7D3DA2D66FABEF16Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert® La...
W32/Nuwar@MM!5BBD274A - W32/Nuwar@MM!5BBD274A at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC325BBD274AMD5FF59C16FD781A63F9064CC32531EF036SHA118B2996D5C0856E56ED37AD3A176C2B4CEAB2E13Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
W32/Nuwar@MM!6321104E - W32/Nuwar@MM!6321104E at McAfee
File PropertyProperty ValueFile Name000001a8.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC326321104EMD5E668187D3EEE6C3CE63C2FA4757C45D7SHA1C47F4A50C2EFA52FCEA9C382023D71DE13743C73Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
W32/Nuwar@MM!59C17B12 - W32/Nuwar@MM!59C17B12 at McAfee
File PropertyProperty ValueFile Name000001ab.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC3259C17B12MD5e938ef633eb0396b72b0333ef9c07e94SHA1FC93BADC40946F8BEA7F0B6A4564D5C39D3B42DCOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!4625C7CA - W32/Nuwar@MM!4625C7CA at McAfee
File PropertyProperty ValueFile Name000001a9.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC324625C7CAMD55181ECDEF5598EA40BB825A287C3EAA4SHA180BA467194D587DC90AEB51D324C2D968C77411COther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!DAC0A641 - W32/Nuwar@MM!DAC0A641 at McAfee
File PropertyProperty ValueFile Name000001a9.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC32DAC0A641MD5346A542D30CFBCB54EE0C3B6A85D54DDSHA13B0608F27BBE5AA2C8769DF85939081C860A4303Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
W32/Nuwar@MM!85B53C61 - W32/Nuwar@MM!85B53C61 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC3285B53C61MD5a6849fcb1d137a074f11d794e5a2df7fSHA1B81BBB5CD51187823A3BB8514DFF406C0F8F3DE6Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
W32/Nuwar@MM!7822B7A1 - W32/Nuwar@MM!7822B7A1 at McAfee
File PropertyProperty ValueFile Name000001a7.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC327822B7A1MD5020e9f90ffc9d99a5c72bab4f4f17c27SHA1A6C7F584C5610906BE5546877507A888AFC7F409Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!5CBE9951 - W32/Nuwar@MM!5CBE9951 at McAfee
File PropertyProperty ValueFile Name000001a6.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC325CBE9951MD5d4b125e3284e3fc63d652ab32c678ab2SHA1C23B0B68C0C7F0CDDC444913401AAC4463314654Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!C2B6D3CB - W32/Nuwar@MM!C2B6D3CB at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32C2B6D3CBMD5A601F70D7EBA84172A5D32283EA0ADE4SHA15D05FBBD66967A2380F8E138F29228B91E333EF3Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!D8CE2752 - W32/Nuwar@MM!D8CE2752 at McAfee
File PropertyProperty ValueFile Name000001a1.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32D8CE2752MD555ea4e1700a0e2f26f127bd0b6355989SHA15D2BEE54FECA0773360856BC15BA374FEB242B4BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!249B0229 - W32/Nuwar@MM!249B0229 at McAfee
File PropertyProperty ValueFile Name00000199.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32249B0229MD5ACC14B962A5B86C20D7FE70544993F23SHA170CF6BC4B0E3D3C5EFAEEC4CCF2A27E152F27D22Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!38EFC8D0 - W32/Nuwar@MM!38EFC8D0 at McAfee
File PropertyProperty ValueFile Name0000019f.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC3238EFC8D0MD5094BFE4A73AF930C1A5B7AEC96A0F68DSHA14089F89F0D74072D99805FAA93B5A9E2FF6CECA0Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
Troj/Turkoj-A - Troj/Turkoj-A at Sophos
...
Troj/Turkoj-Gen - Troj/Turkoj-Gen at Sophos
...
Troj/AdClick-EW - Troj/AdClick-EW at Sophos
...
Troj/Bdoor-AMM - Troj/Bdoor-AMM at Sophos
...
Troj/Dloadr-BNQ - Troj/Dloadr-BNQ at Sophos
Troj/Dloadr-BNQ is a Trojan for the Windows platform. When run,
Troj/Dloadr-BNQ copies itself as XPUPDATE.EXE to the Windows folder: %WINDOWS%\xpupdate.
exe Troj/Dloadr-BNQ sets the following Registry entry is set to run itself at startup:
...
Troj/DNSBust-S - Troj/DNSBust-S at Sophos
...
Troj/FakeAle-CY - Troj/FakeAle-CY at Sophos
...
Troj/FakeAle-CZ - Troj/FakeAle-CZ at Sophos
...
Troj/FakeAle-DA - Troj/FakeAle-DA at Sophos
Troj/FakeAle-DA claims to be anti-virus software. After scanning the system, the Trojan reports
spurious malware infections and invites the user to pay to have the fictional threats removed.
...
Troj/FakeAle-DB - Troj/FakeAle-DB at Sophos
...
0 writebacks [07/06/2008 04:47]
[]
permanent link
|
Virus Malware and Threat News for 20080704
W32.Xpiro - W32.Xpiro at Norton Symantec
W32.Xpiro is a virus that infects .exe files. It also downloads and executes additional files from remote
locations....
W32/Nuwar@MM!7E6656AB - W32/Nuwar@MM!7E6656AB at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC327E6656ABMD50B04F95FB61A996885E6BD6101E7B4D8SHA1D9A02A45001A0C99D8F11E562B6DE331A498E004Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!F24CDCA9 - W32/Nuwar@MM!F24CDCA9 at McAfee
File PropertyProperty ValueFile Name0000011f.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32F24CDCA9MD5F959D1416D5FF1C428C1F8D7EDBFEB9ASHA185C89C85F0EB8FDD16E0692AAB73C8AACE331F18Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!E8EDA7CE - W32/Nuwar@MM!E8EDA7CE at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32E8EDA7CEMD558578EB2E213AC4D65755C669FADAAC5SHA11E8F240957416DED899B93669A6C15B6BF36DE00Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!622661E2 - W32/Nuwar@MM!622661E2 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32622661E2MD516096EEE24094D206D8A527B08466024SHA115E76B2C3089F282F271F7F1CEEEFD77E8F2ACC2Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!3FCDDC23 - W32/Nuwar@MM!3FCDDC23 at McAfee
File PropertyProperty ValueFile Name0000010f.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC323FCDDC23MD56BF01D1B9677690D94E0A649C35DF14FSHA17C6909276AD2276D5B088E5D641F4AAC21D37658Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!77620818 - W32/Nuwar@MM!77620818 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3277620818MD5D1BA22EBCDCEEAC9D29116D8A69DDCB2SHA17A74F4451CDDCCCE301F0CE0320166854387C989Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!F8E5ABD0 - W32/Nuwar@MM!F8E5ABD0 at McAfee
File PropertyProperty ValueFile Name00000101.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32F8E5ABD0MD5D72F73011D421C550C0F164B8E28C61BSHA17FF644FB74223E1A0CBA35456DA8D5F932B98522Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!60FAD826 - W32/Nuwar@MM!60FAD826 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3260FAD826MD51BC4ED54FB28FE4738C5E60F5D306F83SHA1402B77A26610558C8DB27EE05B4AB06DFA02A961Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!455254C4 - W32/Nuwar@MM!455254C4 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32455254C4MD52CD10979D7ADB65E8E69370F8D2BD5C5SHA12BDAF3F9999B09B9F758851463AD10AC19F24768Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!5814DC49 - W32/Nuwar@MM!5814DC49 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC325814DC49MD5630D00824FB9F4E50E8780F010F34AF8SHA1E82D6FE641B34BDA54CB642BB6B2946DF27A92FAOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!13032403 - W32/Nuwar@MM!13032403 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3213032403MD52E9F4F1D62B8098161C59C1A9767F18DSHA192F63BA3B37C71AF43E2E4E934B7451C0BF08C29Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!4A5D2667 - W32/Nuwar@MM!4A5D2667 at McAfee
File PropertyProperty ValueFile Name000000f4.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC324A5D2667MD50E2C6421D35BDAC48E897E7723D5CE7ASHA12395339C625B2A2F100ED69769A7ECB358D50B47Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!620FDD55 - W32/Nuwar@MM!620FDD55 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,272
bytesCRC32620FDD55MD5ECC0E9E0493FAA1C25D8DA1B0573F166SHA14248AF5552A8EC38D0979E2D109ABCB325AD6DE0Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!34780CAA - W32/Nuwar@MM!34780CAA at McAfee
File PropertyProperty ValueFile Name000000ea.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3234780CAAMD5F6FB5907F5A4818AD12CE6F9031CF62ESHA16D69458989123890DA2EE56B740E615962642BA3Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!DDB0E640 - W32/Nuwar@MM!DDB0E640 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32DDB0E640MD53D9B3C33AE2495865A3C5FD0D1598561SHA123061E0DFFB52398AE05E4DDCF5DB016423D7555Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!89BBB778 - W32/Nuwar@MM!89BBB778 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3289BBB778MD51FED6A89399021DB057025AE2B021726SHA1757ADA6FED833A03E12F8ED899FD08A2612531BFOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert&re...
W32/Nuwar@MM!4D3A7E48 - W32/Nuwar@MM!4D3A7E48 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC324D3A7E48MD5213F358D3C469CC178DF3401CDB2BE8DSHA1BF12C8F6F2DF6026790880115929024ADBE214E3Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!7444EC53 - W32/Nuwar@MM!7444EC53 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC327444EC53MD50E00BF2AC3F49A0820966182AB785BF2SHA164014C40C334D500891E309A9289AA52DBD90936Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!C9006ADC - W32/Nuwar@MM!C9006ADC at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32C9006ADCMD55BC640ADE8ABB27D02F1BAE26A358E56SHA12305050D354788CA69B82DBB8F0CAEB8047761DAOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dSymantecTrojan.Peacomm.
DAvert® Labs has observed the follo...
W32/Nuwar@MM!53EF38C6 - W32/Nuwar@MM!53EF38C6 at McAfee
File PropertyProperty ValueFile Name000000d6.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3253EF38C6MD5562E591A1F0BEDD2E68CE0A087097DC8SHA15A4F1CB6B02925C391A66F7E1D30D9A464916339Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!B1D0B297 - W32/Nuwar@MM!B1D0B297 at McAfee
File PropertyProperty ValueFile Name000000d3.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32B1D0B297MD5CD96A34EC0EF7616F13E19ECF68A0A07SHA106037D7D3D9144D66D8DA02CE273402F659657C7Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!B38C063D - W32/Nuwar@MM!B38C063D at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32B38C063DMD57467C098BA084DA87D2ECEC72E35162ASHA173280B26A73F1BC6463B74905BE73A19E427712EOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!2461816B - W32/Nuwar@MM!2461816B at McAfee
File PropertyProperty ValueFile Name000000d1.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC322461816BMD5C81397C22DEFF662C87992F5A796CC98SHA184CD37490C7D76E28E23079429CEA3A3F6800340Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!D82F88CE - W32/Nuwar@MM!D82F88CE at McAfee
File PropertyProperty ValueFile Name000000d1.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32D82F88CEMD50A2C14201822FC6531E0BC7D3218B6DCSHA1936BB0FCDE0C5A1548FA9BBC830E2613B3934682Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!73BBAE5F - W32/Nuwar@MM!73BBAE5F at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3273BBAE5FMD5564261DC695B766F7D9B824FE2CF3785SHA137407DCB6D402F99DE00FDBD5D0E601D15E81D1BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!C97C8804 - W32/Nuwar@MM!C97C8804 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32C97C8804MD53C8BD8EB89DD759FC34E9C932EC1DE48SHA19C882F7145FA27CBF22B457170DACDFB1259D715Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dSymantecTrojan.Peacomm.
DAvert® Labs has observed the f...
W32/Nuwar@MM!E0611BE4 - W32/Nuwar@MM!E0611BE4 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32E0611BE4MD52D0790F21F3E1AF2592551120EA00D9CSHA1FBFC06F69EBF4F8AA57F636937214F3644430E3BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!1CAB0600 - W32/Nuwar@MM!1CAB0600 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC321CAB0600MD5C73A4BBE9E52DF8B89A610FF4F194910SHA1B0A8C9D4E501E1BBF52220CE2E0383972A9A85ACOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!364F3CEE - W32/Nuwar@MM!364F3CEE at McAfee
File PropertyProperty ValueFile Name000000be.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32364F3CEEMD5497AF211C133D93935AFF12DE204C5FFSHA135B581A40F3BAAF0C5D48D1844299F02DBB16FFDOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!83108402 - W32/Nuwar@MM!83108402 at McAfee
File PropertyProperty ValueFile Name000000bd.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3283108402MD5BA19D3C82CD842EDF710CC52FD63EC8ASHA1547B62450BC7FC92D8D230EEDFEA184DEC6F2304Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
Troj/Banker-EMF - Troj/Banker-EMF at Sophos
...
Troj/FakeVir-CT - Troj/FakeVir-CT at Sophos
Troj/FakeVir-CT is a Trojan for the Windows platform. Troj/FakeVir-CT
pretends to be a spyware and malware detection program, but will always report the presence of unwanted files,
in an attempt to trick the user into paying to register the software. Troj/FakeVir-CT
creates th...
Troj/DNSCha-C - Troj/DNSCha-C at Sophos
Troj/DNSCha-C changes which DNS and DHCP name servers the computer uses.
...
Troj/Agent-HEM - Troj/Agent-HEM at Sophos
Troj/Agent-HEM is a Trojan for the Windows platform. Troj/Agent-HEM
includes functionality to access the internet and communicate with a remote server via HTTP.
When Troj/Agent-HEM is installed the following files are created:
<System>\<random&g...
Troj/BHO-GA - Troj/BHO-GA at Sophos
Troj/BHO-GA is a Trojan for the Windows platform. The Troj/BHO-GA is
registered as a COM object and Browser Helper Object (BHO) for Microsoft Internet Explorer, creating registry
entries under: HKCR\CLSID\{B4BCDA27-FD23-4399-B076-093624C1BE7E}
HKLM\SOFTWAR...
Troj/FakeVir-CR - Troj/FakeVir-CR at Sophos
Troj/FaveVir-CR is a Trojan for the Windows platform. This program masquerades as genuine
anti-virus software while reporting the false detection of viruses and spyware. The user is enticed to
purchase the ability to remove the imaginary detected threats. The following registry
entry is created to r...
Troj/FakeVir-CS - Troj/FakeVir-CS at Sophos
Troj/FakeVir-CS is a Trojan for the Windows platform. Troj/FakeVir-CS
includes functionality to access the internet and communicate with a remote server via HTTP.
The following registry entries are created to run Troj/FakeVir-CS on startup:
HKCU\Software...
Troj/PWS-ART - Troj/PWS-ART at Sophos
...
0 writebacks [07/05/2008 04:49]
[]
permanent link
|
Virus Malware and Threat News for 20080703
Trojan.Brojack - Trojan.Brojack at Norton Symantec
Trojan.Brojack is a Trojan horse that modifies Internet settings on the compromised computer.
...
Trojan.Proscks.B!inf - Trojan.Proscks.B!inf at Norton Symantec
Trojan.Proscks.B!inf is a detection for the files infected with Trojan.Proscks.B.
...
W32/Nuwar@MM!20CDAED4 - W32/Nuwar@MM!20CDAED4 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3220CDAED4MD51234D45AB5A92B1F18393E3D74A3BBC4SHA1BAAB9AD6A45FBC72A18D2C585C1B7731596C911EOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dSymantecTrojan.Peacomm.
DAvert® Labs has observed the f...
W32/Nuwar@MM!73F386A3 - W32/Nuwar@MM!73F386A3 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3273F386A3MD51EB1E30C6FDDF9185709B039234E9791SHA16EF1A294C1B0F37FACBD6F85BE4A5169C50A32A7Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!56C54293 - W32/Nuwar@MM!56C54293 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3256C54293MD53BDF44F53A0D8F412EFD94FE0EE24F79SHA1B9AF94E17CEA36E824D50A645295B7BF62008370Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!ADAF3997 - W32/Nuwar@MM!ADAF3997 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32ADAF3997MD5D39C28077CDF09C044E203ABAC83D9E2SHA147E115498CF91D0FF6BFB316810E137D39B711C6Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert® La...
W32/Nuwar@MM!F5BDFCF0 - W32/Nuwar@MM!F5BDFCF0 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32F5BDFCF0MD5CE36AA991BD4F88B3D9EBD47A9317334SHA10C35CB255A7107B361EDD6831B1E748E67056775Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert® La...
W32/Nuwar@MM!BAC18DA4 - W32/Nuwar@MM!BAC18DA4 at McAfee
File PropertyProperty ValueFile Namefirework.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32BAC18DA4MD5CD3F9ADCDE0F11B3C252A7FC8A1DC8A0SHA166B112C6D86EB842E14E1A7A9A46C70024CC2F2BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!62CB82D3 - W32/Nuwar@MM!62CB82D3 at McAfee
File PropertyProperty ValueFile Namemylove.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3262CB82D3MD5C475AAD0D0ABA2E2428DF61F42197364SHA1C02B10146193300039F4FA07355013FDC81ABDF6Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dSymantecTrojan.Peacomm.
DAvert® Labs has observed the fol...
W32/Nuwar@MM!861E0EE9 - W32/Nuwar@MM!861E0EE9 at McAfee
File PropertyProperty ValueFile Name00000044.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32861E0EE9MD5195DA935404FEDFB1E3E43E3BAA32050SHA13423FEBC30CDCEB3FFD65D21D73DE4A3825A31E6Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
Tool-Jailbreak - Tool-Jailbreak at McAfee
This application has been observed along with the installation of CoreFlood.dr and CoreFlood.
dll where a file named sstore2K.exe is observed to have been downloaded from mcupdate.net.sstore2K.
exe is an application used to export certificates from the windows certificate store (assuming
administrator pr...
W32/Nuwar@MM!2EB182C8 - W32/Nuwar@MM!2EB182C8 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC322EB182C8MD5F6F71B6DBFF11B2508970F60FA28BBCFSHA153DDB19A8170291C4AA47C9D00E32E8926560F16Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!CD283873 - W32/Nuwar@MM!CD283873 at McAfee
File PropertyProperty ValueFile Namewinner.exeMcAfee DetectionW32/Nuwar@MMLength117,760
bytesCRC32CD283873MD510F4043E2BE23EC51F9168AA3FDE3BF3SHA1F9534B66992363E300766F3EC8D2B10BA85FB8C0Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.PeacommAvert® ...
W32/Nuwar@MM!6A9515B6 - W32/Nuwar@MM!6A9515B6 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC326A9515B6MD50201A2F60047E28B36D7EAABE2C2C5DCSHA1E12C52B2B352EEF17769D2AE245F0783987728B5Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!AF143C1C - W32/Nuwar@MM!AF143C1C at McAfee
File PropertyProperty ValueFile Namemylove.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32AF143C1CMD552E572D38B489949F361059E9DE91D5DSHA10C3AA0A93F7AA9BD574765862C815CCF7BC4B9E3Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&re...
W32/Nuwar@MM!5BC5BF6E - W32/Nuwar@MM!5BC5BF6E at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC325BC5BF6EMD5BF21588FC3585B189D8CFE4CB9E2BFAFSHA13969A34BC4D0FE69F6334314912A3CD9AD170B1BOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dSymantecTrojan.PeacommAvert®
Labs has observed the followi...
PHP_SDBOT.CUZ - PHP_SDBOT.CUZ at Trend Micro
...
BKDR_SDBOT.CTZ - BKDR_SDBOT.CTZ at Trend Micro
This backdoor may be downloaded from remote sites by other malware. It may be downloaded unknowingly by a
user when visiting malicious Web sites.When executed, it drops a component file that Trend Micro detects as
BKDR_SDBOT.RV. As a result, routines of the dropped backdoor are also exhibited on the affected system.It
opens ports w...
JAVA_KLOG.A - JAVA_KLOG.A at Trend Micro
This malware may be installed manually by a user. It may also be downloaded unknowingly by a user when
visiting malicious Web site(s).When executed, it asks for the root password and logs keystrokes on the
affected system. It then saves the gathered information on an encrypted log file specified by the user or
using a certain file.T...
Troj/Agent-HEJ - Troj/Agent-HEJ at Sophos
...
Troj/Bancos-BEE - Troj/Bancos-BEE at Sophos
Troj/Bancos-BEE is a banking-related Trojan for the Windows platform.
...
Troj/Dloadr-BNO - Troj/Dloadr-BNO at Sophos
Troj/Dloadr-BNO is a Trojan downloader for the Windows platform.
Troj/Dloadr-BNO attempts to download two files from a remote server to the following locations, and then
execute them: <Windows>\regsvr.exe <Windows>\spoolsv.exe
At t...
Troj/Dwnldr-HEZ - Troj/Dwnldr-HEZ at Sophos
...
Troj/Mdrop-BTP - Troj/Mdrop-BTP at Sophos
Troj/Mdrop-BTP drops the file <Windows>\Debug\<Random filename>.dll which is detected
as Mal/LineDLL-B.
...
Mal/Spyzee-A - Mal/Spyzee-A at Sophos
...
Mal/TSlip-A - Mal/TSlip-A at Sophos
...
0 writebacks [07/04/2008 04:49]
[]
permanent link
|
Virus Malware and Threat News for 20080702
Trojan-Spy:HTML/Trojan-Spy:HTML/Fraud - Trojan-Spy:HTML/Trojan-Spy:HTML/Fraud at F-Secure
Trojan-Spy.HTML.Fraud detects fraudulent e-mail messages and website HTML.
...
Trojan.Proscks.B - Trojan.Proscks.B at Norton Symantec
Trojan.Proscks.B is a Trojan horse that infects files and displays advertisements on the compromised computer.
...
Backdoor.Lusillon - Backdoor.Lusillon at Norton Symantec
Backdoor.Lusillon is a Trojan horse that opens a back door on the compromised computer.
...
XF.Gydhex - XF.Gydhex at Norton Symantec
XF.Gydhex is a Microsoft Excel macro virus that infects all worksheets opened.
...
Packed.Generic.123 - Packed.Generic.123 at Norton Symantec
Packed.Generic.123 is a heuristic detection for files that may have been obfuscated or encrypted in order to
conceal them from antivirus software.
...
Packed.Generic.35 - Packed.Generic.35 at Norton Symantec
Packed.Generic.35 is a heuristic detection for files that may have been obfuscated or encrypted in order to
conceal them from antivirus software.
...
PWS-OnlineGames.as!11001B1A - PWS-OnlineGames.as!11001B1A at McAfee
File PropertyProperty ValueFile Nameqjsz2.exeMcAfee DetectionPWS-OnlineGames.asLength20,335
bytesCRC3211001B1AMD5abccd0a668734158890f157a8a598f15SHA12779654D35DB2A8474C0D7F985CFDC10E783A9DEOther Common
Detection AliasesCompany NameDetection NameNormanw32/suspicious_u.genSophosMal/PackerSymantecInfostealer.
GampassTrend MicroTROJ_ZLOB....
W32/Nuwar@MM!569EBB30 - W32/Nuwar@MM!569EBB30 at McAfee
File PropertyProperty ValueFile Namemylove.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32569EBB30MD54BC93A3A91A7F5789F3F7275EC5FF629SHA13D8FDE96ACE4130C938F83F7D9E91F902C19B2F7Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dAvert® Labs has observed the
following system activities...
W32/Nuwar@MM!6CD5F5E5 - W32/Nuwar@MM!6CD5F5E5 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC326CD5F5E5MD5154B9E862A59508C443EED1EF93CB4BDSHA1F907B17DD42B1713758B8B7FB62EAD671FD9903FOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!BF6B7C98 - W32/Nuwar@MM!BF6B7C98 at McAfee
File PropertyProperty ValueFile Namewinner.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32BF6B7C98MD55826E0259526AF292DE6F07565C2DB6DSHA1D6829F91D53567259403222EF7506B64CEBBCFB3Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&re...
W32/Nuwar@MM!5BB1691B - W32/Nuwar@MM!5BB1691B at McAfee
File PropertyProperty ValueFile Namewinner.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC325BB1691BMD50F65CEDB7A5BB29A650BB57AC13449FESHA16B6299D4980841CE70EA28167C7DAAC7272917A0Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&re...
W32/Nuwar@MM!D3951B7A - W32/Nuwar@MM!D3951B7A at McAfee
File PropertyProperty ValueFile Namemylove.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32D3951B7AMD509ad441ba91ee9edced439096048489bSHA10C6ABE7EA54B6BEAD2E4A17AF33BC4491194F584Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&re...
W32/Nuwar@MM!A0C14F4A - W32/Nuwar@MM!A0C14F4A at McAfee
File PropertyProperty ValueFile Name0000001d.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32A0C14F4AMD5D7FEBBA4CAA393E89FE7D1A99A2E00B8SHA1C40CD350FF9936634A1ADB59964BB5CB71EDF73AOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&...
W32/Nuwar@MM!968ADF41 - W32/Nuwar@MM!968ADF41 at McAfee
File PropertyProperty ValueFile Namemylove.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32968ADF41MD5C34482BCD60DF12D291FADEE0C750841SHA1ABC8BB0272950BFC76F6F8CC668BCB9A18C47B00Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&re...
W32/Nuwar@MM!54E9AE8B - W32/Nuwar@MM!54E9AE8B at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC3254E9AE8BMD59E618E0BBC831653A6F6EFFF5B6EF16ASHA1BDFBADB10932E966A55F5640EDA47F5D473A14E9Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dSymantecTrojan.Peacomm.
DAvert® Labs has observed the follo...
W32/Nuwar@MM!BC1D9DFF - W32/Nuwar@MM!BC1D9DFF at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength118,784
bytesCRC32BC1D9DFFMD55CEFC2B224AE875BBD14FA600B9A5425SHA192F362797CEC327607AC78288F5136AD5DF59BD5Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dSymantecTrojan.Peacomm.
DAvert® Labs has observed the follo...
W32/Nuwar@MM!FDBD0C81 - W32/Nuwar@MM!FDBD0C81 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32FDBD0C81MD58B8222546201AD57026822CECF04F9EASHA1ED221AF697958CA4353E2765B6E8FDE9C1BB4561Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert® ...
W32/Nuwar@MM!3DFA8E13 - W32/Nuwar@MM!3DFA8E13 at McAfee
File PropertyProperty ValueFile Namemylove.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC323DFA8E13MD5D6F40DE152FE853AC7BD71DBF594DE5ESHA1B1B1C7C8CA15828B90957954044B37597ABA01C5Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.uMicrosoftbackdoor:win32/nuwar.
gen!dSymantecTrojan.Peacomm.DAvert&re...
Troj/Agent-HEH - Troj/Agent-HEH at Sophos
...
Troj/Bckdr-QOD - Troj/Bckdr-QOD at Sophos
When first run Troj/Bckdr-QOD copies itself to: - <Startup>\userinit.
exe - <User>\svchost.exe - <System>\drivers\services.
exe...
Troj/Dloadr-BNN - Troj/Dloadr-BNN at Sophos
...
Troj/Zbot-Z - Troj/Zbot-Z at Sophos
...
Troj/DNSCha-B - Troj/DNSCha-B at Sophos
Troj/DNSChan-B includes functionality to modify the DNS setting, access the internet and
communicate with a remote server via HTTP. When first run Troj/DNSChan-B copies itself
to <System>\<random filename>.exe. The following registry entries are
created to run Troj...
Troj/Dloadr-BNM - Troj/Dloadr-BNM at Sophos
...
Troj/FakeAle-CW - Troj/FakeAle-CW at Sophos
Troj/FakeAle-CW inserts its filename in the registry entry
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer\run
start...
Troj/FakeVir-CO - Troj/FakeVir-CO at Sophos
Troj/FakeVir-CO falsely reports the computer is infected and prompts the user to pay a license fee
before pretending to clear the threats. Troj/FakeVir-CO installs creates the registry
value HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Antivirus...
Mal/Behav-266 - Mal/Behav-266 at Sophos
...
Mal/BHO-K - Mal/BHO-K at Sophos
...
0 writebacks [07/03/2008 04:48]
[]
permanent link
|
Virus Malware and Threat News for 20080701
Trojan:W32/Agent.SQT - Trojan:W32/Agent.SQT at F-Secure
Trojans are malicious programs that pretend be to benign. Trojans do not replicate themselves.
...
FakeAlert-XPSecurityCenter - FakeAlert-XPSecurityCenter at McAfee
These are general defaults for typical path variables. (Although they may differ, these examples are common.):
%WinDir% = \WINDOWS (Windows 9x/ME/XP/Vista), \WINNT (Windows NT/2000)%SystemDir% = \WINDOWS\SYSTEM (Windows
98/ME), \WINDOWS\SYSTEM32 (Windows XP/Vista), \WINNT\SYSTEM32 (Windows NT/2000)%ProgramFiles% = \Program
FilesFakeAl...
Generic.dx!3A7A0665 - Generic.dx!3A7A0665 at McAfee
File PropertyProperty ValueFile Name3_1_ex~1.exeMcAfee DetectionGeneric.dxLength18,768
bytesCRC323A7A0665MD5471E629361166A78B4FC73BF1EA6D2C3SHA17FFFCE00BF9A7487A8E56B892A06C150A884886AOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)psw.onlinegames.arzqNormanw32/suspicious_u.
genSophosMal/PackerSymantecInfostealer....
W32/Nuwar@MM!7DC304D8 - W32/Nuwar@MM!7DC304D8 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC327DC304D8MD5CB6DA76170A1784F85A4E40554D5F8A0SHA12A2E421258547877094E3AFD8056B3701AF4179DOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dSymantecTrojan.PeacommTrend
MicroWORM_NUWAR.AALAvert® Labs...
W32/Nuwar@MM!3D240A11 - W32/Nuwar@MM!3D240A11 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC323D240A11MD5C389FED2D1B7FA25F33FFC31D0D4B174SHA1657B1FCF857E829A932C11B19963DDC48912A98DOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dSymantecTrojan.PeacommTrend
MicroWORM_NUWAR.AALAvert® Labs...
W32/Nuwar@MM!CAFBCCBA - W32/Nuwar@MM!CAFBCCBA at McAfee
File PropertyProperty ValueFile Namewinner.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32CAFBCCBAMD53EC239034C9A1F1600C26D6557AFC087SHA14A85A6107F511F5B8FB9B6241148598FF75FA11AOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dSymantecTrojan.PeacommTrend
MicroWORM_NUWAR.AALAvert® La...
W32/Nuwar@MM!B5BD169B - W32/Nuwar@MM!B5BD169B at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32B5BD169BMD5BF5DAFFF4F0E2F73BB1347DB3E0D074ESHA1B0A4F9062186079401EF0D8ACDC0DDDBA84E4658Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dSymantecTrojan.PeacommTrend
MicroWORM_NUWAR.AALAvert® Labs...
W32/Nuwar@MM!9A40333D - W32/Nuwar@MM!9A40333D at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC329A40333DMD54DC243670D367936CBF44906C50E56EASHA1040C87F357512AF558167A6F724FDBBE1FE567B8Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dTrend MicroWORM_NUWAR.
AALAvert® Labs has observed the foll...
W32/Nuwar@MM!D0AD5E84 - W32/Nuwar@MM!D0AD5E84 at McAfee
File PropertyProperty ValueFile Namewinner.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32D0AD5E84MD55E57BAB628F884FD5CE6837649E6F07ESHA18A3CB48E7447225AEF073B0B477CA13332473D13Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dSymantecTrojan.PeacommTrend
MicroWORM_NUWAR.AALAvert® La...
W32/Nuwar@MM!C42DDEA9 - W32/Nuwar@MM!C42DDEA9 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32C42DDEA9MD5EC7B20DDBC555AFA5147A07E6D0F191BSHA135BCEE1EB371DA3FC77131DD305EF5E43D313A14Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dTrend MicroWORM_NUWAR.
AALAvert® Labs has observed the foll...
W32/Nuwar@MM!108B1DEB - W32/Nuwar@MM!108B1DEB at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32108B1DEBMD511E37F1B3A668A67A368AC3E40EBCC31SHA1F36BFCE7D20DEE197CDFBA95FFD6D3CD4BD4A59AOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dSymantecTrojan.PeacommTrend
MicroWORM_NUWAR.AALAvert® Labs...
W32/Nuwar@MM!2657AFFA - W32/Nuwar@MM!2657AFFA at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC322657AFFAMD503d6842a2d7304bcc3ff3c5d743f44a5SHA12696A84E8A19E56F33173F910CBC6B76711C39B2Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dSymantecTrojan.PeacommAvert®
Labs has observed the followi...
W32/Nuwar@MM!C911CE07 - W32/Nuwar@MM!C911CE07 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32C911CE07MD5810B84238D282FF89DDFD417604DEF82SHA1B477CDECC7C1E126B8852B48D5DC9AD24599A5D8Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dSymantecTrojan.PeacommTrend
MicroWORM_NUWAR.AALAvert® Labs...
W32/Nuwar@MM!B01B22FE - W32/Nuwar@MM!B01B22FE at McAfee
File PropertyProperty ValueFile Namewinner.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32B01B22FEMD59221F085FF4B71C41045B29C565C9E75SHA1F32F572AA2DC79D5693A0E09DD03EC262645001FOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dSymantecTrojan.PeacommTrend
MicroWORM_NUWAR.AALAvert® La...
W32/Nuwar@MM!9398F62A - W32/Nuwar@MM!9398F62A at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC329398F62AMD5C4B9E9239C2DC19FCBB160FC1D1C1C99SHA1F2149A2132C6C0A5DFC09DE2D065017FD8C11AC6Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dTrend MicroWORM_NUWAR.
AALAvert® Labs has observed the foll...
IRC/Flood.mirc!3BB55F6F - IRC/Flood.mirc!3BB55F6F at McAfee
File PropertyProperty ValueFile Namefvist.exeMcAfee DetectionIRC/Flood.mircLength2,032,640
bytesCRC323BB55F6FMD574C60B22A352DF1508078B3C2AA5A8F3SHA11F16C6945D6BA798D88A52CC261430188B745E67Avert®
Labs has observed the following system activities:ActivityRisk LevelRegisters DLLsInformationalSystem
ChangesThese are general defaults f...
W32/Nuwar@MM!2F280B64 - W32/Nuwar@MM!2F280B64 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC322F280B64MD574ABED1F966B96516F78BB4CE42536F3SHA1F7EFA2696E2DF8B444F89D11460ACC7EDFCCD98BOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dSymantecTrojan.PeacommTrend
MicroWORM_NUWAR.AALAvert® Labs...
W32/Nuwar@MM!4A2B83AC - W32/Nuwar@MM!4A2B83AC at McAfee
File PropertyProperty ValueFile Namewinner.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC324A2B83ACMD52E926B14D4142D596420D0676CC59DB1SHA13633E38BFD24198853ED7F9796034C2D9258AF51Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dTrend MicroWORM_NUWAR.
AALAvert® Labs has observed the fo...
W32/Virut.a!9BFCFE19 - W32/Virut.a!9BFCFE19 at McAfee
File PropertyProperty ValueFile Namevil_139473_virut.a_ggwppfkv.exeMcAfee DetectionW32/Virut.aLength46,197
bytesCRC329BFCFE19MD5e0a73d7f4ccfcae9b28bcd799eca2bd1SHA12642FE89D9A338E06858B4B8143CA5FF6D7CF170Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)win32/virut.aMicrosoftvirus:win32/virut.
aNormanw32/virut.aPand...
W32/Nuwar@MM!3A1E4E5D - W32/Nuwar@MM!3A1E4E5D at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC323A1E4E5DMD51BCE905649769BCBF3309283C58EC709SHA13608B5A5AE7D8C2C0479C4EC3C2FD766FA99261EOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dSymantecTrojan.PeacommTrend
MicroWORM_NUWAR.AALAvert® Labs...
W32/Virut.gen!C33F18E0 - W32/Virut.gen!C33F18E0 at McAfee
File PropertyProperty ValueFile Namevil_142592_virut.gen_love_me_now.exeMcAfee DetectionW32/Virut.genLength40,
216 bytesCRC32C33F18E0MD5833681447273a5a9c7d112c06e34859eSHA16AE900C3F4BB2F2FAD4DDC60352E5D7CB93D01D1Other
Common Detection AliasesCompany NameDetection NameAVG (GriSoft)win32/salityMicrosoftvirus:win32/virut.
aeNormanw32/viru...
AdClicker-BA!D106701E - AdClicker-BA!D106701E at McAfee
File PropertyProperty ValueFile Namemalign~1.exeMcAfee DetectionAdClicker-BALength150,016
bytesCRC32D106701EMD584c51570890b5a1c2c0a55ccf1b87324SHA1D7E845054282FD3142DFECD9BFA642686E7CE5CDOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)dropper.agent.5.baMicrosofttrojandropper:win32/agent.
hzNormanw32/agent.hldPanda...
W32/Nuwar@MM!FAE2B1B2 - W32/Nuwar@MM!FAE2B1B2 at McAfee
File PropertyProperty ValueFile Namewinner.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32FAE2B1B2MD538423AAB403E4EBE48FB96FCA02E48D5SHA1EF2D5E646F247679E1D3F176971BD485C5305CA8Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dSymantecTrojan.PeacommTrend
MicroWORM_NUWAR.AALAvert® La...
W32/Nuwar@MM!7C4333D8 - W32/Nuwar@MM!7C4333D8 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC327C4333D8MD50B5C22F1D3B9941CD2C0C08EA736498BSHA1FECC25232D037F10F3E5D10D95967BFB5C2D2E8EOther Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dSymantecTrojan.PeacommTrend
MicroWORM_NUWAR.AALAvert® Labs...
W32/Nuwar@MM!4C5C06DF - W32/Nuwar@MM!4C5C06DF at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC324C5C06DFMD5039197CFCF4672A947B522B138B77CBBSHA1CF93F5887CD198BB030B71DB2A709F42FB4A12B8Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dTrend MicroWORM_NUWAR.
AALAvert® Labs has observed the foll...
W32/Nuwar@MM!13317298 - W32/Nuwar@MM!13317298 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3213317298MD584FA1F44318EFC42052C576A712576C4SHA1AE580B0ACBAE9B124442357BCEE20AC8143CB1B8Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dTrend MicroWORM_NUWAR.
AALAvert® Labs has observed the foll...
W32/Nuwar@MM!F5240285 - W32/Nuwar@MM!F5240285 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32F5240285MD552b307899686e06e44c5e3096a11fd0fSHA1438E4DE71378A5D372F5BC11B82B61D49C201A60Other Common
Detection AliasesCompany NameDetection NameTrend MicroWORM_NUWAR.AALAvert® Labs has observed the following
system activities:ActivityRis...
W32/Nuwar@MM!D362BC5B - W32/Nuwar@MM!D362BC5B at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC32D362BC5BMD59EA0FA0A2F1DB77E10B7478E8C06D4F0SHA18539904FB121DCE02512F303F4CE06D4366A5A44Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dTrend MicroWORM_NUWAR.
AALAvert® Labs has observed the foll...
W32/Nuwar@MM!57D162C7 - W32/Nuwar@MM!57D162C7 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC3257D162C7MD5F2E1B767799170F46B8D9A5C06256A89SHA1B6624FC4B67D35788B85B3FFC4082CC2336D81D1Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dTrend MicroWORM_NUWAR.
AALAvert® Labs has observed the foll...
W32/Nuwar@MM!1CE79345 - W32/Nuwar@MM!1CE79345 at McAfee
File PropertyProperty ValueFile Nameback.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC321CE79345MD5ec05c82bc934b9692107bc7dba8b6f78SHA19C2FDF4CC8216D19C4599B269ABE4BCB6E93CD2COther Common
Detection AliasesCompany NameDetection NameTrend MicroWORM_NUWAR.AALAvert® Labs has observed the following
system activities:ActivityRis...
W32/Nuwar@MM!3CB586BB - W32/Nuwar@MM!3CB586BB at McAfee
File PropertyProperty ValueFile Namewinner.exeMcAfee DetectionW32/Nuwar@MMLength119,296
bytesCRC323CB586BBMD5E774A1887BD4A45D1AE2509A7859EE34SHA14AA0B709E41A80F6DD43A0ED8C040A74EFE9F5C8Other Common
Detection AliasesCompany NameDetection NameMicrosoftbackdoor:win32/nuwar.gen!dSymantecTrojan.PeacommTrend
MicroWORM_NUWAR.AALAvert® La...
WORM_GAEL.B - WORM_GAEL.B at Trend Micro
This memory-resident worm arrives via removable drives.When executed, it drops a copy of itself in the Windows
system folder. The dropped copy uses the same file name as the originally executed worm. It also uses the icon
of the normal Windows folder to trick users that it is a legitimate folder.This worm adds a registry entry to
ena...
Mal/VB-X - Mal/VB-X at Sophos
Mal/VB-X is a malicious program.
...
Troj/Dropr-T - Troj/Dropr-T at Sophos
...
Troj/Dloadr-BNK - Troj/Dloadr-BNK at Sophos
...
Troj/FakeAle-CV - Troj/FakeAle-CV at Sophos
Troj/FakeAle-CV changes the background on the computer to show the warning message:
"Spyware detected on your computer! Install an antivirus or spyware remover to clean your computer"
Troj/FakeAle-CV installs a screensaver that gives the impression of the computer crashing and
rebooting o...
Troj/VB-EAE - Troj/VB-EAE at Sophos
Troj/VB-EAE is a Trojan for the Windows platform. When Troj/VB-EAE is
installed the following files are created: <Windows>\Config\csrss.exe (also
detected as Troj/VB-EAE) <System>\mswinsck.ocx (clean Microsoft file)
The following r...
W32/Lafon-A - W32/Lafon-A at Sophos
...
Mal/Behav-262 - Mal/Behav-262 at Sophos
...
Mal/Behav-264 - Mal/Behav-264 at Sophos
...
Mal/Behav-265 - Mal/Behav-265 at Sophos
...
0 writebacks [07/02/2008 04:47]
[]
permanent link
|
|
| July 2010 |
|---|
| Sun |
Mon |
Tue |
Wed |
Thu |
Fri |
Sat |
| |
|
|
|
1 |
2 |
3 |
| 4 |
5 |
6 |
7 |
8 |
9 |
10 |
| 11 |
12 |
13 |
14 |
15 |
16 |
17 |
| 18 |
19 |
20 |
21 |
22 |
23 |
24 |
| 25 |
26 |
27 |
28 |
29 |
30 |
31 |
Rss version
|
