Virus Malware and Threat News for 20080926
Backdoor:W32/IRCBot - Backdoor:W32/IRCBot at F-Secure
Backdoors are Remote Administration Tools (RAT) that expose infected machines to external control via the
Internet. IRCBots are a type of "bot" that receive commands and are controlled via Internet Relay Chat (IRC).
Botnets have been used for sending spam remotely, installing more malware without consent, and other illicit
purposes...
PersonalAntispy - PersonalAntispy at Norton Symantec
Behavioris a misleading application that may give exaggerated reports of threats on the computer.
...
Bloodhound.Exploit.208 - Bloodhound.Exploit.208 at Norton Symantec
Bloodhound.Exploit.208 is a heuristic detection for WebEx Meeting Manager 'atucfobj.dll' ActiveX Control
Remote Buffer Overflow Vulnerability (BID 30578).
...
Bloodhound.Olexe!JI - Bloodhound.Olexe!JI at Norton Symantec
Bloodhound.Olexe!JI is a heuristic detection for reporting JustSystems Ichitaro files that contain an embedded
executable file....
Bloodhound.Pdexe - Bloodhound.Pdexe at Norton Symantec
Bloodhound.Pdexe is a heuristic detection for reporting PDF files that contain an embedded executable file.
...
W32.Werly.A - W32.Werly.A at Norton Symantec
W32.Werly.A is a virus that spreads by infecting files on the compromised computer.
...
W32/Sality!E7D6045D - W32/Sality!E7D6045D at McAfee
File PropertyProperty ValueFileNameccfm.exeMcAfee DetectionW32/SalityLength171,519
bytesCRCE7D6045DMD5CF213EC1B47EE3C15743B848BBBAD2A0SHA1D1C34E1A1592C7FFA74DB61F358E1C441FB90162Other Common
Detection AliasesCompany NameDetection NameahnlabWin32/Kashu.BavastWin32:
Sality-genAviraHEUR/MalwareBitDefenderWin32.Sality.OGeSafe (Alladin)Sus...
BKDR_AGENT.AWAF - BKDR_AGENT.AWAF at Trend Micro
This backdoor arrives as an attachment to email messages spammed by another malware or a malicious user.It may
be downloaded from remote sites by other malware. It may be downloaded unknowingly by a user when visiting
malicious Web sites.It drops a file detected by Trend Micro as TROJ_ROOTKIT.FX.It installs its dropped Trojan
as a se...
TROJ_DELF.GSZ - TROJ_DELF.GSZ at Trend Micro
This Trojan may be downloaded from certain remote sites.It downloads files. It saves the downloaded files
using certain file names. It then executes the downloaded files. As a result, malicious routines of the
downloaded files are exhibited on the affected system.
...
WORM_AGENT.AHQV - WORM_AGENT.AHQV at Trend Micro
...
Troj/Dloadr-BTY - Troj/Dloadr-BTY at Sophos
...
Troj/Psyme-KD - Troj/Psyme-KD at Sophos
...
Troj/PWS-ATW - Troj/PWS-ATW at Sophos
...
Troj/Swizzor-OE - Troj/Swizzor-OE at Sophos
...
Troj/Zlob-AOQ - Troj/Zlob-AOQ at Sophos
...
Troj/Zlob-AOR - Troj/Zlob-AOR at Sophos
...
Troj/Agent-HTF - Troj/Agent-HTF at Sophos
Troj/Agent-HTF steals mail and ICQ contact information from the infected computer.
...
Troj/Agent-HTG - Troj/Agent-HTG at Sophos
...
Troj/Agent-HTT - Troj/Agent-HTT at Sophos
Troj/Agent-HTT is a Trojan for the Windows platform. When Troj/Agent-HTT is
installed the following files are created: <Temp>\rsysinit.exe
<Temp>\temp_70671.bat <System>\cxkbu.dll The file cxkbu.dll was
detected as...
Troj/Danmec-AA - Troj/Danmec-AA at Sophos
Troj/Danmec-AA is a Trojan for the Windows platform. Troj/Danmec-AA
includes functionality to access the internet and communicate with a remote server via HTTP.
When Troj/Danmec-AA is installed the following files are created:
<Temp>\_check32.bat ...
0 writebacks [09/27/2008 04:44]
[]
permanent link
|
