Virus Malware and Threat News for 20080929
Packed.Generic.169 - Packed.Generic.169 at Norton Symantec
Packed.Generic.169 is a heuristic detection for files that may have been obfuscated or encrypted in order to
conceal them from antivirus software.
...
Packed.Generic.97 - Packed.Generic.97 at Norton Symantec
Packed.Generic.97 is a heuristic detection for files that may have been obfuscated or encrypted in order to
conceal them from antivirus software.
...
Packed.Generic.86 - Packed.Generic.86 at Norton Symantec
Packed.Generic.86 is a heuristic detection for files that may have been obfuscated or encrypted in order to
conceal them from antivirus software.
...
Packed.Generic.85 - Packed.Generic.85 at Norton Symantec
Packed.Generic.85 is a heuristic detection for files that may have been obfuscated or encrypted in order to
conceal them from antivirus software.
...
PWS-OnlineGames.cn!2B9CCF36 - PWS-OnlineGames.cn!2B9CCF36 at McAfee
File PropertyProperty ValueFileNamezz.exeMcAfee DetectionPWS-OnlineGames.cnLength125,440
bytesCRC2B9CCF36MD59CAA6F8CD4F57CB092B344CC899D3D6ASHA1E47F2475E264E1F478248E758812EA142C172D03Other Common
Detection AliasesCompany NameDetection NameAviraTR/Crypt.XPACK.GeneSafe (Alladin)Suspicious File
[100]F-Prot~W32/Vaklik.genmicrosoftPWS:Wi...
PWS-OnlineGames.bp!9A3E98C9 - PWS-OnlineGames.bp!9A3E98C9 at McAfee
File PropertyProperty ValueFileNamemicsusk.exeMcAfee DetectionPWS-OnlineGames.bpLength14,848
bytesCRC9A3E98C9MD5CB3BD85D57B05E92B9B7DBB3EE77C607SHA17D342F52D4A3D56BDB71E72456D7EC049EE572A7Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)psw.onlinegames.bakxKasperskyTrojan-GameThief.Win32.
OnLineGames.tkoznormanw32/...
PWS-OnlineGames.x!20B76DBE - PWS-OnlineGames.x!20B76DBE at McAfee
File PropertyProperty ValueFileName940477~1.exeMcAfee DetectionPWS-OnlineGames.xLength52,909
bytesCRC20B76DBEMD529D7E09DBC247E088F31BA38F8DC0203SHA15C40B2FB9F9F84D87E320E615404CB33F54A5A05Other Common
Detection AliasesCompany NameDetection NameavastWin32:Lmir-EZAVG (GriSoft)Win32/CryptExeAviraTR/ATRAPS.
GenBitDefenderTrojan.PWS.Online...
Generic FakeAlert.d!C08CC3C8 - Generic FakeAlert.d!C08CC3C8 at McAfee
File PropertyProperty ValueFileNameburitos.exeMcAfee DetectionGeneric FakeAlert.dLength9,216
bytesCRCC08CC3C8MD50099012BD499A5D33C16211DB56B0BCCSHA1B5F29608610A41BC8822B97D02CAA3009A030BADOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)dropper.bravix.cKasperskyBackdoor.Win32.
UltimateDefender.genmicrosofttrojandow...
Generic Downloader.x!BEAB6A77 - Generic Downloader.x!BEAB6A77 at McAfee
File PropertyProperty ValueFileName0xf9.exeMcAfee DetectionGeneric Downloader.xLength20,480
bytesCRCBEAB6A77MD5C6722C1CC576E1570052DDC03032C44BSHA1718741BE90DCE0BA44C355E632B95805A986E2BEOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.generic7.atlyAviraTR/Crypt.XPACK.
GenBitDefenderBehavesLike:Trojan.Ta...
Generic Dropper.bl - Generic Dropper.bl at McAfee
*.HWP files are documents created with Hangul Word Processor, which is a popular Korean word processor similar
to Open Office or Microsoft Word.These files can contain files, such as *.VBS , *.EXE, *.SCR, *.PIF or *.
ZIP archives or any other format.Generic Dropper.bl is a generic detection that covers those kind of malicious
doc...
Generic Downloader.x!3DD08D7B - Generic Downloader.x!3DD08D7B at McAfee
File PropertyProperty ValueFileNameloader~1.exeMcAfee DetectionGeneric Downloader.xLength7,056
bytesCRC3DD08D7BMD522977B3266DF327C3A0D53E07AD9FB3DSHA18536BDF02B9768DCB647905B290F21CB52717AC2Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.generic7.asinAviraTR/Crypt.XPACK.GenDr.
WebTrojan.Packed.155eSafe ...
PWS-Mmorpg.gen!F1467D39 - PWS-Mmorpg.gen!F1467D39 at McAfee
File PropertyProperty ValueFileNamenew27.exeMcAfee DetectionPWS-Mmorpg.genLength21,187
bytesCRCF1467D39MD55716E6BEDDDD1D19EF2707ABA580B23ASHA1DD31F0E4B6545C0F201F61E67332D5E105FFA258Other Common
Detection AliasesCompany NameDetection NameavastWin32:Spyware-genAVG (GriSoft)generic11.ajeeAviraTR/Spy.
GenBitDefenderTrojan.PWS.OnlineGames...
PWS-OnlineGames.cn!EDE95B58 - PWS-OnlineGames.cn!EDE95B58 at McAfee
File PropertyProperty ValueFileNamezz.exeMcAfee DetectionPWS-OnlineGames.cnLength125,952
bytesCRCEDE95B58MD5A72F8BAECB0CB717D958D7134AC28019SHA1A475BB8AA07AE4068D6F685BE30B05A7D82CF25FOther Common
Detection AliasesCompany NameDetection NameAviraTR/Crypt.XPACK.GeneSafe (Alladin)Suspicious File
[100]F-Prot~W32/Vaklik.genKasperskyWorm.W...
PWS-Mmorpg.gen!4206D301 - PWS-Mmorpg.gen!4206D301 at McAfee
File PropertyProperty ValueFileName100_24~1.exeMcAfee DetectionPWS-Mmorpg.genLength185,344
bytesCRC4206D301MD5467DE6A7E089757A6ECC99E9BE719328SHA1A40B917094CFB281C1B8540FFCA8F9A0FC9C3C4FOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)Win32/NSAntiAviraTR/Crypt.XPACK.GenBitDefenderTrojan.
Crypt.Delf.AFeSafe (Alladin...
TROJ_DROPPER.ED - TROJ_DROPPER.ED at Trend Micro
This Trojan may be dropped by other malware.It may be downloaded unknowingly by a user when visiting malicious
Web sites.It drops files/components.It then executes the dropped file(s). As a result, malicious routines of
the dropped files are exhibited on the affected system.It creates registry entries to enable its automatic
executio...
Earanc.A - Earanc.A at Panda
...
Mal/Dial-W - Mal/Dial-W at Sophos
...
Mal/Dorf-P - Mal/Dorf-P at Sophos
...
Mal/Dorf-Q - Mal/Dorf-Q at Sophos
...
Mal/Flux-A - Mal/Flux-A at Sophos
...
Mal/Mdrop-G - Mal/Mdrop-G at Sophos
...
Troj/Agent-HUA - Troj/Agent-HUA at Sophos
Troj/Agent-HUA is a Trojan for the Windows platform. When first run
Troj/Agent-HUA copies itself to <System>\csrcs.exe and creates the following files:
<Temp>\ <Temp>\suicide.bat The following registry entry is
created to run...
Troj/Autorun-KP - Troj/Autorun-KP at Sophos
...
Troj/Bdoor-AOG - Troj/Bdoor-AOG at Sophos
Troj/Bdoor-AOG is a Trojan for the Windows platform. Troj/Bdoor-AOG runs
continuously in the background, providing a backdoor server which allows a remote intruder to gain access and
control over the computer via IRC channels. When first run Troj/Bdoor-AOG copies itself
to <...
Troj/Bdoor-AOH - Troj/Bdoor-AOH at Sophos
When first run Troj/Bdoor-AOH copies itself to <Windows>\WindowsUpdate.exe and
creates the file: <Windows>\admintxt.txt Troj/Bdoor-AOH creates the
following registry entries to run itself at startup:
HKLM\Software\Microsoft\Windows\CurrentVers...
Troj/Dloadr-BUD - Troj/Dloadr-BUD at Sophos
...
0 writebacks [09/30/2008 04:47]
[]
permanent link
|
Virus Malware and Threat News for 20080928
Generic.dx!24F052AC - Generic.dx!24F052AC at McAfee
File PropertyProperty ValueFileNameisbcmzjj.exeMcAfee DetectionGeneric.dxLength22,016
bytesCRC24F052ACMD5E62B1477739CEF0BD16014B92475D363SHA13353A277A737F7C575C1E66EF99AE7C63366E551Other Common
Detection AliasesCompany NameDetection NameavastWin32:Trojan-gen {Other}AVG (GriSoft)sheur.
ckulBitDefenderPacker.Malware.Lighty.FmicrosoftTro...
Generic BackDoor!57F5302C - Generic BackDoor!57F5302C at McAfee
File PropertyProperty ValueFileNamepvwwxk.exeMcAfee DetectionGeneric BackDoorLength96,768
bytesCRC57F5302CMD552DDD8B95718A1912045ED9D17EAF002SHA18BC7CC133AA62BCA2D3D23FAA92240FD04178925Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/Agent.96768.AEavastWin32:Trojan-gen {Other}AVG
(GriSoft)backdoor.agent.utcAvi...
Generic FakeAlert.d.dr!6B9E4C53 - Generic FakeAlert.d.dr!6B9E4C53 at McAfee
File PropertyProperty ValueFileNamee-card.exeMcAfee DetectionGeneric FakeAlert.d.drLength454,656
bytesCRC6B9E4C53MD5F031B18A0512DF766C96A1EC924D216FSHA154996616C9B77160DC2AFEA89951D1434FF25418Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.zlob.acvdBitDefenderTrojan.Crypt.gcEseta
variant of Win32/Troja...
W32/Sality!1FDCABD4 - W32/Sality!1FDCABD4 at McAfee
File PropertyProperty ValueFileNameicesword.exeMcAfee DetectionW32/SalityLength766,464
bytesCRC1FDCABD4MD515859CA9C9366C768342F0C03C7983D6SHA14BF6A81463F9D553011CF7B9384D7A1B83712C10Other Common
Detection AliasesCompany NameDetection NameavastWin32:Sality-genBitDefenderWin32.Sality.OGEseta variant of
Win32/Sality.NARF-ProtW32/Sality....
PWS-OnlineGames.cn!CD6D7D5C - PWS-OnlineGames.cn!CD6D7D5C at McAfee
File PropertyProperty ValueFileNamezz.exeMcAfee DetectionPWS-OnlineGames.cnLength127,488
bytesCRCCD6D7D5CMD59C2152A1E875A73070A02F07A88EC709SHA1D6E244C2F58B66DFCAE43597EE972C9DF155CB06Other Common
Detection AliasesCompany NameDetection NameAviraTR/Crypt.XPACK.GenBitDefenderTrojan.Dropper.Onlinegames.
AYeSafe (Alladin)Suspicious File [...
Tibs-Packed!92F13BA7 - Tibs-Packed!92F13BA7 at McAfee
File PropertyProperty ValueFileName100_11~1.exeMcAfee DetectionTibs-PackedLength27,136
bytesCRC92F13BA7MD56BEDAA6A025545C34B93C9168D9DAD59SHA13EB27B99EDD231C76BB8FE21507B28793194D327Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.XAviraWORM/Zhelatin.GenBitDefenderTrojan.
Agent.AKFFeSafe (Alladin)Suspi...
Tibs-Packed!F2FE37E6 - Tibs-Packed!F2FE37E6 at McAfee
File PropertyProperty ValueFileName100_11~1.exeMcAfee DetectionTibs-PackedLength27,136
bytesCRCF2FE37E6MD54B01FBC5E446DA05AF21B802D038FC9ESHA1922789A2AC07A0A79195B81744839E2FC2C28A48Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.xAviraWORM/Zhelatin.GenBitDefenderTrojan.
Agent.AKFFeSafe (Alladin)Suspi...
Generic BackDoor!618090BD - Generic BackDoor!618090BD at McAfee
File PropertyProperty ValueFileNameyurc.exeMcAfee DetectionGeneric BackDoorLength25,088
bytesCRC618090BDMD5F7924822B86AAFE817EB4A6B0E629B1ESHA10092697A3674C3394BC21C824F7D66C2D29234F1Other Common
Detection AliasesCompany NameDetection NameavastWin32:Frauder-F [Trj]AVG (GriSoft)BackDoor.Generic10.
IRGAviraTR/Crypt.XPACK.GenBitDefenderT...
Generic PUP.x!FAF0FDF4 - Generic PUP.x!FAF0FDF4 at McAfee
This software is not a virus or a Trojan. It is detected as a "potentially unwanted program" (PUP). PUPs are
any piece of software that a reasonably security- or privacy-minded computer user may want to be informed of
and, in some cases, remove. PUPs are often made by a legitimate corporate entity for some beneficial purpose,
but th...
Generic PUP.x!C6FA9E92 - Generic PUP.x!C6FA9E92 at McAfee
This software is not a virus or a Trojan. It is detected as a "potentially unwanted program" (PUP). PUPs are
any piece of software that a reasonably security- or privacy-minded computer user may want to be informed of
and, in some cases, remove. PUPs are often made by a legitimate corporate entity for some beneficial purpose,
but th...
Generic BackDoor!6BCB3C3C - Generic BackDoor!6BCB3C3C at McAfee
File PropertyProperty ValueFileNameyure.exeMcAfee DetectionGeneric BackDoorLength24,064
bytesCRC6BCB3C3CMD556B2489252E4B70544E16308BBB8B5ABSHA1C856918FF747F6ADBD30444962EF0A25F3978A94Other Common
Detection AliasesCompany NameDetection NameavastWin32:Frauder-F [Trj]AVG (GriSoft)BackDoor.Generic10.
IRJAviraTR/Crypt.XPACK.GenBitDefenderT...
Troj/Dloadr-BTZ - Troj/Dloadr-BTZ at Sophos
...
Troj/Dropr-AG - Troj/Dropr-AG at Sophos
...
Troj/Agent-HTO - Troj/Agent-HTO at Sophos
...
Troj/Agent-HTN - Troj/Agent-HTN at Sophos
...
Troj/Banhost-Z - Troj/Banhost-Z at Sophos
Troj/Banhost-Z alters the file <System>\Drivers\etc\hosts so that attempts to visit banking
websites will be redirected to another server.
...
Troj/Dropr-AH - Troj/Dropr-AH at Sophos
Troj/Dropr-AH is a Trojan for the Windows platform. When first run
Troj/Dropr-AH copies itself to <Windows>\service.exe. The following registry
entry is created to run service.exe on startup:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ...
Troj/Geezo-E - Troj/Geezo-E at Sophos
Troj/Geezo-E is a Trojan for the Windows platform. When Troj/Geezo-E is
installed it creates the file <System>\comsa32.sys.
...
Troj/Agent-HTL - Troj/Agent-HTL at Sophos
...
Troj/Agent-HTM - Troj/Agent-HTM at Sophos
...
Troj/AOYSpy-Gen - Troj/AOYSpy-Gen at Sophos
...
0 writebacks [09/29/2008 04:47]
[]
permanent link
|
Virus Malware and Threat News for 20080927
W32/Sality!B35B7457 - W32/Sality!B35B7457 at McAfee
File PropertyProperty ValueFileNamecculp.exeMcAfee DetectionW32/SalityLength222,207
bytesCRCB35B7457MD5F63CB16575153EB95FBCC3150C055B49SHA1B67514628BE0D1664B9250C9C6185F9E67D6F648Other Common
Detection AliasesCompany NameDetection NameahnlabWin32/Kashu.BavastWin32:
Sality-genAviraHEUR/MalwareBitDefenderWin32.Sality.OGEsetWin32/Sality....
W32/Sality!EA773658 - W32/Sality!EA773658 at McAfee
File PropertyProperty ValueFileNamecdtd.exeMcAfee DetectionW32/SalityLength171,519
bytesCRCEA773658MD53814D813F25C83F1377812C474D4F1E0SHA129654FC1A505902F772AE03216E21B200AA5B956Other Common
Detection AliasesCompany NameDetection NameahnlabWin32/Kashu.BavastWin32:
Sality-genAviraHEUR/MalwareBitDefenderWin32.Sality.OGeSafe (Alladin)Sus...
W32/Sality!63D5C045 - W32/Sality!63D5C045 at McAfee
File PropertyProperty ValueFileNamecbrg.exeMcAfee DetectionW32/SalityLength171,519
bytesCRC63D5C045MD5B723B460B46DA5F985B4E8860A35BE9ASHA1CA734DD3EDC8F36CC2DB4B9635CB8B72D0F9B0BAOther Common
Detection AliasesCompany NameDetection NameahnlabWin32/Kashu.BavastWin32:
Sality-genAviraHEUR/MalwareBitDefenderWin32.Sality.OGeSafe (Alladin)Sus...
Troj/MDrop-BVZ - Troj/MDrop-BVZ at Sophos
...
Troj/Pushdo-V - Troj/Pushdo-V at Sophos
...
Troj/PWS-ATY - Troj/PWS-ATY at Sophos
...
Mal/Bifrose-M - Mal/Bifrose-M at Sophos
...
Troj/Agent-HSY - Troj/Agent-HSY at Sophos
...
Troj/Agent-HTJ - Troj/Agent-HTJ at Sophos
...
Troj/Agent-HTK - Troj/Agent-HTK at Sophos
...
Troj/FakeA-Gen - Troj/FakeA-Gen at Sophos
...
Troj/Rootkit-DT - Troj/Rootkit-DT at Sophos
...
Troj/AAV-A - Troj/AAV-A at Sophos
Troj/AAV-A downloads more malware.
...
0 writebacks [09/28/2008 04:44]
[]
permanent link
|
Virus Malware and Threat News for 20080926
Backdoor:W32/IRCBot - Backdoor:W32/IRCBot at F-Secure
Backdoors are Remote Administration Tools (RAT) that expose infected machines to external control via the
Internet. IRCBots are a type of "bot" that receive commands and are controlled via Internet Relay Chat (IRC).
Botnets have been used for sending spam remotely, installing more malware without consent, and other illicit
purposes...
PersonalAntispy - PersonalAntispy at Norton Symantec
Behavioris a misleading application that may give exaggerated reports of threats on the computer.
...
Bloodhound.Exploit.208 - Bloodhound.Exploit.208 at Norton Symantec
Bloodhound.Exploit.208 is a heuristic detection for WebEx Meeting Manager 'atucfobj.dll' ActiveX Control
Remote Buffer Overflow Vulnerability (BID 30578).
...
Bloodhound.Olexe!JI - Bloodhound.Olexe!JI at Norton Symantec
Bloodhound.Olexe!JI is a heuristic detection for reporting JustSystems Ichitaro files that contain an embedded
executable file....
Bloodhound.Pdexe - Bloodhound.Pdexe at Norton Symantec
Bloodhound.Pdexe is a heuristic detection for reporting PDF files that contain an embedded executable file.
...
W32.Werly.A - W32.Werly.A at Norton Symantec
W32.Werly.A is a virus that spreads by infecting files on the compromised computer.
...
W32/Sality!E7D6045D - W32/Sality!E7D6045D at McAfee
File PropertyProperty ValueFileNameccfm.exeMcAfee DetectionW32/SalityLength171,519
bytesCRCE7D6045DMD5CF213EC1B47EE3C15743B848BBBAD2A0SHA1D1C34E1A1592C7FFA74DB61F358E1C441FB90162Other Common
Detection AliasesCompany NameDetection NameahnlabWin32/Kashu.BavastWin32:
Sality-genAviraHEUR/MalwareBitDefenderWin32.Sality.OGeSafe (Alladin)Sus...
BKDR_AGENT.AWAF - BKDR_AGENT.AWAF at Trend Micro
This backdoor arrives as an attachment to email messages spammed by another malware or a malicious user.It may
be downloaded from remote sites by other malware. It may be downloaded unknowingly by a user when visiting
malicious Web sites.It drops a file detected by Trend Micro as TROJ_ROOTKIT.FX.It installs its dropped Trojan
as a se...
TROJ_DELF.GSZ - TROJ_DELF.GSZ at Trend Micro
This Trojan may be downloaded from certain remote sites.It downloads files. It saves the downloaded files
using certain file names. It then executes the downloaded files. As a result, malicious routines of the
downloaded files are exhibited on the affected system.
...
WORM_AGENT.AHQV - WORM_AGENT.AHQV at Trend Micro
...
Troj/Dloadr-BTY - Troj/Dloadr-BTY at Sophos
...
Troj/Psyme-KD - Troj/Psyme-KD at Sophos
...
Troj/PWS-ATW - Troj/PWS-ATW at Sophos
...
Troj/Swizzor-OE - Troj/Swizzor-OE at Sophos
...
Troj/Zlob-AOQ - Troj/Zlob-AOQ at Sophos
...
Troj/Zlob-AOR - Troj/Zlob-AOR at Sophos
...
Troj/Agent-HTF - Troj/Agent-HTF at Sophos
Troj/Agent-HTF steals mail and ICQ contact information from the infected computer.
...
Troj/Agent-HTG - Troj/Agent-HTG at Sophos
...
Troj/Agent-HTT - Troj/Agent-HTT at Sophos
Troj/Agent-HTT is a Trojan for the Windows platform. When Troj/Agent-HTT is
installed the following files are created: <Temp>\rsysinit.exe
<Temp>\temp_70671.bat <System>\cxkbu.dll The file cxkbu.dll was
detected as...
Troj/Danmec-AA - Troj/Danmec-AA at Sophos
Troj/Danmec-AA is a Trojan for the Windows platform. Troj/Danmec-AA
includes functionality to access the internet and communicate with a remote server via HTTP.
When Troj/Danmec-AA is installed the following files are created:
<Temp>\_check32.bat ...
0 writebacks [09/27/2008 04:44]
[]
permanent link
|
Virus Malware and Threat News for 20080925
CasOnline!EE1AED9E - CasOnline!EE1AED9E at McAfee
This software is not a virus or a Trojan. It is detected as a "potentially unwanted program" (PUP). PUPs are
any piece of software that a reasonably security- or privacy-minded computer user may want to be informed of
and, in some cases, remove. PUPs are often made by a legitimate corporate entity for some beneficial purpose,
but th...
CasOnline!CF6B52D5 - CasOnline!CF6B52D5 at McAfee
This software is not a virus or a Trojan. It is detected as a "potentially unwanted program" (PUP). PUPs are
any piece of software that a reasonably security- or privacy-minded computer user may want to be informed of
and, in some cases, remove. PUPs are often made by a legitimate corporate entity for some beneficial purpose,
but th...
Generic PUP.x!5539AAB7 - Generic PUP.x!5539AAB7 at McAfee
This software is not a virus or a Trojan. It is detected as a "potentially unwanted program" (PUP). PUPs are
any piece of software that a reasonably security- or privacy-minded computer user may want to be informed of
and, in some cases, remove. PUPs are often made by a legitimate corporate entity for some beneficial purpose,
but th...
Generic.dx!EAB92711 - Generic.dx!EAB92711 at McAfee
File PropertyProperty ValueFileNamehwscan.exeMcAfee DetectionGeneric.dxLength12,683
bytesCRCEAB92711MD5073F50B3DAB39D8276D040E5B7188D47SHA1F86EE2B29B4CF8B0AF3536D42FAB0169A7AE9207Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/Agent.8929.CBitDefenderTrojan.Agent.AONclamavPUA.
Packed.UPack-2EMSI SoftwareTrojan....
W32/Spybot.worm.gen!7E4FA991 - W32/Spybot.worm.gen!7E4FA991 at McAfee
File PropertyProperty ValueFileNamelsass.exeMcAfee DetectionW32/Spybot.worm.genLength98,816
bytesCRC7E4FA991MD53879C485CC991003D9E01AA4C67EF7F4SHA1BEC4E1B0434618C155B6581323ABB744790C57BFOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)BackDoor.Ircbot.FHU (Trojan horse)EMSI
SoftwareErrorEsetWin32/IRCBot.AJFFortiNe...
Generic FakeAlert.d.dr!5B849764 - Generic FakeAlert.d.dr!5B849764 at McAfee
File PropertyProperty ValueFileNamee-card.exeMcAfee DetectionGeneric FakeAlert.d.drLength393,216
bytesCRC5B849764MD5D4A585240E92FB2D1210A99C5C3927DBSHA175A31D4CAD47A2FA24DF2D78EB2C417AA831B648Other Common
Detection AliasesCompany NameDetection NameAviraDR/Delphi.GenBitDefenderTrojan.Dropper.FakeAlert.DEMSI
SoftwareTrojan-Downloader.D...
PWS-OnlineGames.cn!02E8B1E4 - PWS-OnlineGames.cn!02E8B1E4 at McAfee
File PropertyProperty ValueFileNamezz.exeMcAfee DetectionPWS-OnlineGames.cnLength126,976
bytesCRC02E8B1E4MD52B6F3F34447394B15E991284E930137BSHA1526E039E903657FF06AF57391E3A6C4745BAE32AOther Common
Detection AliasesCompany NameDetection Namemicrosoftpws:win32/onlinegames.erAvert® Labs has observed the
following system activities:Ac...
BackDoor-DKI.gen!077CAF88 - BackDoor-DKI.gen!077CAF88 at McAfee
File PropertyProperty ValueFileNamesvos~1.exeMcAfee DetectionBackDoor-DKI.genLength9,728
bytesCRC077CAF88MD59AA8B5CFDFF1E6FDEC692E2F2C1578CESHA1B9AD3C718918BDBD43DEFA00FDDC69DC6A5AFD23Other Common
Detection AliasesCompany NameDetection Namemicrosofttrojandownloader:win32/small.fcnormansandbox:
w32/malwareSymantecBackdoor.TrojanAvert&...
BackDoor-DKI.gen!955C8F69 - BackDoor-DKI.gen!955C8F69 at McAfee
File PropertyProperty ValueFileNamevose~1.exeMcAfee DetectionBackDoor-DKI.genLength9,728
bytesCRC955C8F69MD58C70BDC0BCDAB3ECC333FB62282D1DCESHA1506EAC88A1EAE1FC78EC713872E16722B4CBA715Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/LdPinch.9728.AEAVG
(GriSoft)Win32/HeurAviraTR/Crypt.XPACK.GenBitDefenderBackdo...
BackDoor-DKI.gen!8945D530 - BackDoor-DKI.gen!8945D530 at McAfee
File PropertyProperty ValueFileNamesvost~1.exeMcAfee DetectionBackDoor-DKI.genLength9,728
bytesCRC8945D530MD5E9965592BAE17398B2C633224870CB68SHA15B76A3D544D65B928E763AA617E4146C06C4F6FFOther Common
Detection AliasesCompany NameDetection NameKasperskyTrojan-PSW.Win32.LdPinch.aabcmicrosofttrojandownloader:
win32/small.fcnormansandbox: w...
BackDoor-DKI.gen!C315F78B - BackDoor-DKI.gen!C315F78B at McAfee
File PropertyProperty ValueFileNameshose2~1.exeMcAfee DetectionBackDoor-DKI.genLength9,728
bytesCRCC315F78BMD5FBD9683CC79DD69939050A31AD2C68A2SHA1F341E19530E195E800D04580E59B640606EFCBDFOther Common
Detection AliasesCompany NameDetection Namemicrosofttrojandownloader:win32/small.fcnormansandbox:
w32/malwareAvert® Labs has observed...
BackDoor-DKI.gen!18CC2902 - BackDoor-DKI.gen!18CC2902 at McAfee
File PropertyProperty ValueFileNamesc833a~1.exeMcAfee DetectionBackDoor-DKI.genLength9,216
bytesCRC18CC2902MD5772646AD6E9D0D023860685BC0D7E409SHA15B28823FCF774B9BBDABAE2FE2872B436119259COther Common
Detection AliasesCompany NameDetection NameKasperskyTrojan.Win32.Inject.fqdmicrosofttrojandownloader:
win32/small.fcnormansandbox: w32/ma...
BackDoor-DKI.gen!31E33C2A - BackDoor-DKI.gen!31E33C2A at McAfee
File PropertyProperty ValueFileNameshose~1.exeMcAfee DetectionBackDoor-DKI.genLength9,728
bytesCRC31E33C2AMD51A4792E7DE135B46A63361E21C8D58E4SHA15BD7CF45A476AB6D76BE40C135F7DF6E0C51A252Other Common
Detection AliasesCompany NameDetection NameKasperskyTrojan-PSW.Win32.LdPinch.aawjmicrosofttrojandownloader:
win32/small.fcnormansandbox: w...
BackDoor-DKI.gen!84087F15 - BackDoor-DKI.gen!84087F15 at McAfee
File PropertyProperty ValueFileNamea4303~1.exeMcAfee DetectionBackDoor-DKI.genLength10,240
bytesCRC84087F15MD5F4891D2B6372C2E34CFE4F74EC12A55FSHA10CC7F472B47EAD86E38494D2381474BE480450F3Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)Generic3.TGJ (Trojan horse)AviraTR/Crypt.XPACK.
GenBitDefenderBackdoor.PoisonIvy....
Downloader-AZN!954CA702 - Downloader-AZN!954CA702 at McAfee
File PropertyProperty ValueFileNamefb9d6ab9d4ea957b8ea8_.exeMcAfee DetectionDownloader-AZNLength35,180
bytesCRC954CA702MD51713D732A0FFFB9D6AB9D4EA957B8EA8SHA10D78B2EE1A236C48E1F1261F40411CBDE90A530BAvert® Labs
has observed the following system activities:ActivityRisk LevelEnumerates open windowsMediumEnumerates running
processesMe...
Generic Dropper!E4A854C5 - Generic Dropper!E4A854C5 at McAfee
File PropertyProperty ValueFileNamesxs2.exeMcAfee DetectionGeneric DropperLength35,840
bytesCRCE4A854C5MD5E0A4D700C659573D6236214F9B227609SHA13A632FFD20A29920C14D0DFD33B1427B936E1B5DOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)Dropper.Generic.PNHKasperskyTrojan-Dropper.Win32.Agent.
bwnnormansandbox: w32/malware...
W32/IRCbot.gen.a!A7C2BC09 - W32/IRCbot.gen.a!A7C2BC09 at McAfee
File PropertyProperty ValueFileNamedvc-fo~1.exeMcAfee DetectionW32/IRCbot.gen.aLength57,856
bytesCRCA7C2BC09MD5A1072F0331D500A55C080BB66B32BCF6SHA14DC2423F2F49F7FB3DB1896F390F2AE38FE8267DOther Common
Detection AliasesCompany NameDetection NameavastWin32:Delf-LGL [Drp]AVG (GriSoft)generic11.aersKasperskyTrojan.
Win32.Buzus.yvamicrosoft...
Puper!F6B3287C - Puper!F6B3287C at McAfee
File PropertyProperty ValueFileNamewebsof~1.exeMcAfee DetectionPuperLength391,344
bytesCRCF6B3287CMD5F80728F85794FC369D1B9209FAF8936FSHA1CFE4B849F3BEAC31BB05995802B05B8A84FB5207Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zlob-APQmicrosoftTrojan:Win32/Zlob.gen!QrisingTrojan.
Win32.Vapsup.eufSophosMal/Emogen-ACTre...
Generic Downloader.x!67150CF2 - Generic Downloader.x!67150CF2 at McAfee
File PropertyProperty ValueFileNamehuthbw~1.exeMcAfee DetectionGeneric Downloader.xLength7,427
bytesCRC67150CF2MD59F456260BF839EAFC94F6B8D13DC4DB8SHA182490E559EB1A699D59DB8C0F9BE603315D2C134Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)Win32/HeurAviraTR/Crypt.XPACK.GenDr.WebTrojan.Packed.
155eSafe (Alladin)Suspi...
FakeAlert-AG.gen.a!C7ED2BEC - FakeAlert-AG.gen.a!C7ED2BEC at McAfee
File PropertyProperty ValueFileNamepodmen~1.exeMcAfee DetectionFakeAlert-AG.gen.aLength119,320
bytesCRCC7ED2BECMD535A39451A38E2B8484341134BBA51D82SHA1ABED8932117A51CB160839523418AA8C4BC3362DOther Common
Detection AliasesCompany NameDetection NameAviraHEUR/CryptedeSafe (Alladin)Suspicious filemicrosoftvirtool:
win32/obfuscator.biSophos...
Generic.dx!4A3A81DF - Generic.dx!4A3A81DF at McAfee
File PropertyProperty ValueFileNameinstal~1.exeMcAfee DetectionGeneric.dxLength891,960
bytesCRC4A3A81DFMD5351CAD04884617085CEBC1EA35167D40SHA17AF781D5303B4D55FF05EDC067132704101FE172Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)fakealert.bdBitDefenderTrojan.FakeAlert.
ACZclamavAdware.Brasen-2microsoftprogram:win...
Generic.dx!3C99862B - Generic.dx!3C99862B at McAfee
File PropertyProperty ValueFileNamebobwebb-.exeMcAfee DetectionGeneric.dxLength780,587
bytesCRC3C99862BMD5FDB852026B3EE1650E30EC8B2F0B0AD7SHA1155E797059605B1A73987C7C8F92DF5BE65E6195Other Common
Detection AliasesCompany NameDetection NameavastWin32:Small-ISIFortiNetW32/MyTob.BT!wormF-ProtW32/Patched.E.
gen!Eldoradonormanw32/suspicious...
Generic Malware.ek!57D5615C - Generic Malware.ek!57D5615C at McAfee
File PropertyProperty ValueFileName5c61d557.exeMcAfee DetectionGeneric Malware.ekLength354,304
bytesCRC57D5615CMD5979D10DAD9DFB2FC8BD8E6C14CAD7B61SHA174D214C40811CCDB7AC5A6AB2D75FEA2073D34BAAvert® Labs
has observed the following system activities:ActivityRisk LevelModifies memory of other processesCriticalUses
shared memory of oth...
Generic.dx!394C28C0 - Generic.dx!394C28C0 at McAfee
File PropertyProperty ValueFileNamefsg133~1.exeMcAfee DetectionGeneric.dxLength24,576
bytesCRC394C28C0MD5D37A313ECE9B735BC615C2CB5C536E32SHA1816E3CDA07EE307221E5247A13309D66F6C17FF7Other Common
Detection AliasesCompany NameDetection NameavastWin32:GrayBird-KM [Trj]AviraTR/Crypt.FSPM.GeneSafe
(Alladin)suspicious Trojan/WormFortiNetSus...
Generic.dx!BE1F38E7 - Generic.dx!BE1F38E7 at McAfee
File PropertyProperty ValueFileNamefbe_a0~1.exeMcAfee DetectionGeneric.dxLength16,896
bytesCRCBE1F38E7MD5F5E8627B6766C1F0A533EE3D40427ABBSHA137D2D4E0105D27BAE31FD0E534CF04190C36F839Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)generic11.sqdDr.WebBackDoor.Bulknet.237eSafe
(Alladin)Suspicious fileEseta variant of...
PWS-Mmorpg.gen!45180484 - PWS-Mmorpg.gen!45180484 at McAfee
File PropertyProperty ValueFileNameUnavailableMcAfee DetectionPWS-Mmorpg.genLength132,608
bytesCRC45180484MD528F2A67DC8D8CFF22C6FCA1BA38E1813SHA19655335572B4D3AC4F7D0E7B55DDD1537058A429Other Common
Detection AliasesCompany NameDetection NameavastWin32:VirtualizerAVG (GriSoft)psw.lineage.ayqAviraTR/Dropper.
GenBitDefenderTrojan.Crypt.D...
BackDoor-AWQ.b!66726AED - BackDoor-AWQ.b!66726AED at McAfee
File PropertyProperty ValueFileNameUnavailableMcAfee DetectionBackDoor-AWQ.bLength701,440
bytesCRC66726AEDMD53A1AC2A348374C0ED43214B50A4EE939SHA1F35A1CF9B95C0BA81002ECD3377139859FB2C792Other Common
Detection AliasesCompany NameDetection NameavastWin32:GamonaAVG (GriSoft)backdoor.hupigon4.ahmrAviraTR/Crypt.
CFI.GenBitDefenderBehavesLik...
BackDoor-AWQ.b!9EF71319 - BackDoor-AWQ.b!9EF71319 at McAfee
File PropertyProperty ValueFileNamekl_sljv3i.exeMcAfee DetectionBackDoor-AWQ.bLength825,344
bytesCRC9EF71319MD581CBDDA3ED0BFA145D14432AB4F876D9SHA1735F943655C5D92CF0609BC08E1637FD97175785Other Common
Detection AliasesCompany NameDetection NameavastWin32:Hupigon-DKZ [Trj]AVG (GriSoft)SHeur.AQYG (Trojan
horse)AviraBDS/Hupigon.Genclamav...
Troj/Banker-ENL - Troj/Banker-ENL at Sophos
...
Troj/Bifrose-WI - Troj/Bifrose-WI at Sophos
...
Troj/Dloadr-BTT - Troj/Dloadr-BTT at Sophos
...
Troj/Dloadr-BTU - Troj/Dloadr-BTU at Sophos
...
Troj/DwnLdr-HIF - Troj/DwnLdr-HIF at Sophos
...
Troj/FakeVir-GA - Troj/FakeVir-GA at Sophos
...
Troj/Keylog-KP - Troj/Keylog-KP at Sophos
...
Troj/Mdrop-BQH - Troj/Mdrop-BQH at Sophos
...
Troj/Obfus-B - Troj/Obfus-B at Sophos
Troj/Obfus-B includes functionality to access the internet and communicate with a remote server
via HTTP. When first run Troj/Obfus-B copies itself to <User>\Application
Data\<random name>\<random characters>.exe. The following registry entry is
created to ru...
Troj/Ramial-A - Troj/Ramial-A at Sophos
...
0 writebacks [09/26/2008 04:45]
[]
permanent link
|
Virus Malware and Threat News for 20080924
W32.Auraax - W32.Auraax at Norton Symantec
W32.Auraax is a worm that spreads through removable drives and network shares.
...
W32/Zhelatin.gen@MM!62231616 - W32/Zhelatin.gen@MM!62231616 at McAfee
File PropertyProperty ValueFileName1.exeMcAfee DetectionW32/Zhelatin.gen@MMLength51,094
bytesCRC62231616MD5A7CEBDB3F587A29D226CEF5D8628B2E2SHA1AC713FBF6BAF22A9EA7B5FEE9803B56B653C2F82Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/ZPacked.GenavastWin32:Tibs-AII [Wrm]AVG
(GriSoft)Downloader.Tibs.3.AAviraTR/Sma...
PWS-LegMir!C76E9D0F - PWS-LegMir!C76E9D0F at McAfee
File PropertyProperty ValueFileName3115.exeMcAfee DetectionPWS-LegMirLength505,856
bytesCRCC76E9D0FMD5F1D44B18466988EC3D7424F9606BC0C9SHA13FFD66B2BB86F6B685E34D6B1B390DE3B6618D09Avert® Labs
has observed the following system activities:ActivityRisk LevelUses shared memory of other processesLowWrites
executable in the windows folder...
Generic PUP.x!0FF834E1 - Generic PUP.x!0FF834E1 at McAfee
This software is not a virus or a Trojan. It is detected as a "potentially unwanted program" (PUP). PUPs are
any piece of software that a reasonably security- or privacy-minded computer user may want to be informed of
and, in some cases, remove. PUPs are often made by a legitimate corporate entity for some beneficial purpose,
but th...
Spy-Agent.br.dr!DBCF59C2 - Spy-Agent.br.dr!DBCF59C2 at McAfee
File PropertyProperty ValueFileNameus.exeMcAfee DetectionSpy-Agent.br.drLength124,896
bytesCRCDBCF59C2MD5366698F5D861082102E87D39F6317909SHA12C943797D366034264D18BA787A6F417249D609COther Common
Detection AliasesCompany NameDetection NameavastWin32:Pophot-AM [Trj]AviraBDS/Hupigon.GenBitDefenderTrojan.
Pophot.DDr.WebTrojan.Hitpop.origin...
PWS-LegMir!9495B0DD - PWS-LegMir!9495B0DD at McAfee
File PropertyProperty ValueFileName471871m.exeMcAfee DetectionPWS-LegMirLength32,613
bytesCRC9495B0DDMD54833C97E5F54DBFCB336D212D2CDA2B6SHA11A47B3CB2F0A18D210CC2C38AADF60D014AE80A7Other Common
Detection AliasesCompany NameDetection NameavastWin32:Lmir-OKAVG (GriSoft)Generic11.XLPAviraTR/Spy.
GenBitDefenderBehavesLike:Win32.ExplorerHij...
PWS-OnlineGames.cn!F85A4B96 - PWS-OnlineGames.cn!F85A4B96 at McAfee
File PropertyProperty ValueFileNamezz.exeMcAfee DetectionPWS-OnlineGames.cnLength126,464
bytesCRCF85A4B96MD531D405C1D41D462ED501F3FCB7F4F818SHA14891988109A56ADDCE847C765A6A888F261A74EAOther Common
Detection AliasesCompany NameDetection Namemicrosoftpws:win32/onlinegames.erAvert® Labs has observed the
following system activities:Ac...
Generic.dx!3F8C966A - Generic.dx!3F8C966A at McAfee
File PropertyProperty ValueFileNameb.exeMcAfee DetectionGeneric.dxLength57,344
bytesCRC3F8C966AMD58EFF2E696EB6A2E969FE6FFB9473C608SHA1CDC2095A23B0D1A46204D713B92E746B0A796215Other Common
Detection AliasesCompany NameDetection NameKasperskyTrojan.Win32.Obfuscated.gxmicrosofttrojan:win32/busky.
ehSymantecPacked.Generic.182Avert® Labs ha...
Generic PWS.y!66083A95 - Generic PWS.y!66083A95 at McAfee
File PropertyProperty ValueFileNamezyndle~1.exeMcAfee DetectionGeneric PWS.yLength32,040
bytesCRC66083A95MD5D3D5C6FD38B5938E826427758E222F6DSHA1AEFE359268E58906E87F93661A8B26D8749AF5B5Other Common
Detection AliasesCompany NameDetection NameavastWin32:AutoRun-ANG [Wrm]AviraTR/Dropper.GenBitDefenderTrojan.
PWS.OnlineGames.ZWCDr.WebTroja...
Generic BackDoor!565B5DAD - Generic BackDoor!565B5DAD at McAfee
File PropertyProperty ValueFileNamesetup1~1.exeMcAfee DetectionGeneric BackDoorLength23,715
bytesCRC565B5DADMD5E7D4C242F8D15679BCBAC26063C5673FSHA131AE685464EF3F17244F415C29C2FF208ACE1274Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.generic7.atbjAviraTR/Crypt.FKM.GenDr.
Web~DLOADER.TrojaneSafe (Alladi...
Generic BackDoor!8A38CC0B - Generic BackDoor!8A38CC0B at McAfee
File PropertyProperty ValueFileNameboots.exeMcAfee DetectionGeneric BackDoorLength62,190
bytesCRC8A38CC0BMD57C4F5BDABE4847459657A00B27EE64A5SHA131834A7496293F6EF5A721B00985732E09ACA86BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)BackDoor.PcClient.2.AMKasperskyBackdoor.Win32.PcClient.
mttmicrosoftBackdoor:Win32/...
Generic PUP.x!7FEE08A2 - Generic PUP.x!7FEE08A2 at McAfee
This software is not a virus or a Trojan. It is detected as a "potentially unwanted program" (PUP). PUPs are
any piece of software that a reasonably security- or privacy-minded computer user may want to be informed of
and, in some cases, remove. PUPs are often made by a legitimate corporate entity for some beneficial purpose,
but th...
W32/HLLP.Philis.an!BAEECC03 - W32/HLLP.Philis.an!BAEECC03 at McAfee
File PropertyProperty ValueFileNameUnavailableMcAfee DetectionW32/HLLP.Philis.anLength138,729
bytesCRCBAEECC03MD55801E00E09B2C809780AE37406ADAE6ASHA1C9DC608B66BFCD11D260768EAE936DC68BBE41E9Other Common
Detection AliasesCompany NameDetection NameavastWin32:Viking-V [Wrm]AVG (GriSoft)Worm/Delf.HAAviraTR/Dldr.Li.
ma.2.A.2BitDefenderWin32...
Generic Downloader.x!96360C3F - Generic Downloader.x!96360C3F at McAfee
File PropertyProperty ValueFileNameUnavailableMcAfee DetectionGeneric Downloader.xLength39,424
bytesCRC96360C3FMD5BF0835BC3F469EF945E2088169D0ACF9SHA11AB817C734E529A12828BD4E8A9E50DEF952E5A2Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/Downloader.39424.AZavastWin32:Trojan-gen
{Other}AVG (GriSoft)Downloader....
PWS-Gamania.gen.a!CCF0DF7E - PWS-Gamania.gen.a!CCF0DF7E at McAfee
File PropertyProperty ValueFileName7edff0cc.exeMcAfee DetectionPWS-Gamania.gen.aLength127,373
bytesCRCCCF0DF7EMD5EC72CF308E394D5FE0C6228054E9165CSHA1FE7E9A7838687A224C78E589795BC1F4E3A7ED37Avert® Labs has
observed the following system activities:ActivityRisk LevelHijacks an executables executionHighUses shared
memory of other process...
W32/HLLP.Philis.an!C78ACCAC - W32/HLLP.Philis.an!C78ACCAC at McAfee
File PropertyProperty ValueFileNameUnavailableMcAfee DetectionW32/HLLP.Philis.anLength46,057
bytesCRCC78ACCACMD595F4014FBC84BAEAD10A6DFF71A3550CSHA1CFB9E8DA9DB06679492589AD249EBF454F6195AFOther Common
Detection AliasesCompany NameDetection NameavastWin32:Viking-V [Wrm]AVG (GriSoft)Worm/Delf.HAAviraTR/Dldr.Li.
ma.2.A.2BitDefenderWin32....
Generic.dx!C46E63CF - Generic.dx!C46E63CF at McAfee
File PropertyProperty ValueFileNameUnavailableMcAfee DetectionGeneric.dxLength375,852
bytesCRCC46E63CFMD5976ba41fdedc9101d45efaad4c6cdb0dSHA1C93A200B44F042484231308EA488FC0803477A73Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)Win32/HeurAviraTR/Crypt.XPACK.GenBitDefenderPacker.
PrivateExeProtector.ApandaSuspicio...
W32/HLLP.Philis.an!D9C28248 - W32/HLLP.Philis.an!D9C28248 at McAfee
File PropertyProperty ValueFileNameUnavailableMcAfee DetectionW32/HLLP.Philis.anLength45,033
bytesCRCD9C28248MD5478E960A4882515DEE980FDFC76EBC2BSHA19E8B780B75227A62C9AC7FFB3DFA3A1023010DAFOther Common
Detection AliasesCompany NameDetection NameavastWin32:Viking-V [Wrm]AVG (GriSoft)Worm/Delf.HAAviraTR/Dldr.Li.
ma.2.A.2BitDefenderWin32....
W32/HLLP.Philis.an!7331EE08 - W32/HLLP.Philis.an!7331EE08 at McAfee
File PropertyProperty ValueFileNameUnavailableMcAfee DetectionW32/HLLP.Philis.anLength191,465
bytesCRC7331EE08MD540C34D7E303A67A1E3CD80F9CA2681ADSHA1CD8DC99BEB36CC24A0F2C8C3E72874E9193C1FC1Other Common
Detection AliasesCompany NameDetection NameavastWin32:Viking-V [Wrm]AVG (GriSoft)Worm/Delf.HAAviraTR/Dldr.Li.
ma.2.A.2BitDefenderWin32...
PWS-OnlineGames.ce!87ECFFBC - PWS-OnlineGames.ce!87ECFFBC at McAfee
File PropertyProperty ValueFileName080909-b-1.exeMcAfee DetectionPWS-OnlineGames.ceLength15,478
bytesCRC87ECFFBCMD5B7B62272E6D49DD830DCE2043DBC005ESHA11B9F62FB1E562B548F704D1B3205DDE3DB0D36A2Avert® Labs has
observed the following system activities:ActivityRisk LevelHijacks an executables executionHighWrites
executable in the windows ...
W32/HLLP.Philis.an!E816756A - W32/HLLP.Philis.an!E816756A at McAfee
File PropertyProperty ValueFileNameUnavailableMcAfee DetectionW32/HLLP.Philis.anLength158,185
bytesCRCE816756AMD5E573392CAC9B1C99EB25A32C6985B3C0SHA10534DB47668F939A4D3055E44D090F5F06060DAAOther Common
Detection AliasesCompany NameDetection NameavastWin32:Viking-V [Wrm]AVG (GriSoft)Worm/Delf.HAAviraTR/Dldr.Li.
ma.2.A.2BitDefenderWin32...
PWS-OnlineGames.ce!DFBD2055 - PWS-OnlineGames.ce!DFBD2055 at McAfee
File PropertyProperty ValueFileNameUnavailableMcAfee DetectionPWS-OnlineGames.ceLength14,656
bytesCRCDFBD2055MD5AF8459A8B01801D33BF29B00A489C52ESHA18BC04C0B46A386E7B62EFA97C4CE39708BD445B7Other Common
Detection AliasesCompany NameDetection NameAviraTR/Dropper.GenBitDefenderTrojan.PWS.Lmir.UMHDr.WebTrojan.PWS.
Wsgame.7405EsetWin32/PSW....
PWS-OnlineGames.r!E8C8D072 - PWS-OnlineGames.r!E8C8D072 at McAfee
File PropertyProperty ValueFileNameUnavailableMcAfee DetectionPWS-OnlineGames.rLength12,108
bytesCRCE8C8D072MD543EF0E551DFC2EA52CD395BBE90FE1EDSHA110AEC944E40D2F707B82A8F687EF59DC1BBFC2A3Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/OnlineGameHack.BavastWin32:Spyware-gen [Trj]AVG
(GriSoft)PSW.OnlineGames.AZ...
PWS-Gamania.gen.a!32710879 - PWS-Gamania.gen.a!32710879 at McAfee
File PropertyProperty ValueFileName79087132.exeMcAfee DetectionPWS-Gamania.gen.aLength300,847
bytesCRC32710879MD5DB80106DB1C517A2E357555EF416C24BSHA134EB8C38C5E00E864858F1ED57DDC1BADFAB60EBAvert® Labs
has observed the following system activities:ActivityRisk LevelEnumerates running processesMediumWrites
executable in the windows f...
Spy-Agent.br.dll!6B44381A - Spy-Agent.br.dll!6B44381A at McAfee
File PropertyProperty ValueFileNameUnavailableMcAfee DetectionSpy-Agent.br.dllLength125,960
bytesCRC6B44381AMD561407B8E2980E537C4E92ED9E334F6D2SHA144280C18BD36491C2155C4144D27BE6F2DA7A184Other Common
Detection AliasesCompany NameDetection NameavastWin32:Pophot-AMAviraBDS/Hupigon.GenBitDefenderTrojan.Pophot.
DDr.WebTrojan.Hitpop.528Ese...
W32/HLLP.Philis.an!FDCEDC6A - W32/HLLP.Philis.an!FDCEDC6A at McAfee
File PropertyProperty ValueFileNameUnavailableMcAfee DetectionW32/HLLP.Philis.anLength54,761
bytesCRCFDCEDC6AMD58DA6D3E0D66D25CF3308C8418E084074SHA1DBE741F825B25C7FBAA409F0DEA954305814798BOther Common
Detection AliasesCompany NameDetection NameavastWin32:Viking-V [Wrm]AVG (GriSoft)Worm/Delf.HAAviraTR/Dldr.Li.
ma.2.A.2BitDefenderWin32....
PWS-OnlineGames.ce!4511935C - PWS-OnlineGames.ce!4511935C at McAfee
File PropertyProperty ValueFileName080909-b-31.exeMcAfee DetectionPWS-OnlineGames.ceLength15,508
bytesCRC4511935CMD5404FE81355153A8ECEC8185396F203B0SHA1A7D5427A0E8870CE8FDB508C7AF222D226789279Avert® Labs
has observed the following system activities:ActivityRisk LevelHijacks an executables executionHighWrites
executable in the wind...
PWS-Banker!DA9F02E8 - PWS-Banker!DA9F02E8 at McAfee
File PropertyProperty ValueFileNameorkut.exeMcAfee DetectionPWS-BankerLength296,448
bytesCRCDA9F02E8MD5136CD131E2C38661D81C1F3A57E1EFA3SHA1803F8DCA0FD5B62EDA72F8D27AF38645E8009D4DAvert® Labs has
observed the following system activities:ActivityRisk LevelAttempts to alter a browsers user
agentMediumEnumerates open windowsMediumUses sh...
PWS-Mmorpg.gen!63DE8FE9 - PWS-Mmorpg.gen!63DE8FE9 at McAfee
File PropertyProperty ValueFileNameUnavailableMcAfee DetectionPWS-Mmorpg.genLength21,840
bytesCRC63DE8FE9MD55ADBCA472936AFC6269FA4C507C81CA9SHA113926F7A67E22C71183129A8679E088510B0B78AOther Common
Detection AliasesCompany NameDetection NameavastWin32:Trojan-gen {Other}AVG (GriSoft)PSW.OnlineGames.BAIM
(Trojan horse)AviraTR/Thief.OnLi...
PWS-Gamania.gen.a!8E84A0C8 - PWS-Gamania.gen.a!8E84A0C8 at McAfee
File PropertyProperty ValueFileName8.exeMcAfee DetectionPWS-Gamania.gen.aLength134,108
bytesCRC8E84A0C8MD5E9B055115CC551F224050465FF073EB3SHA16F3633AC5D0C0DEBC35C0E04FB35861900BD947EAvert® Labs
has observed the following system activities:ActivityRisk LevelUses shared memory of other processesLowWrites
executable in the windows fo...
VirusResponseLab2009 - VirusResponseLab2009 at Panda
It deceives users and warns them of unexisting threats in their computers. In order to eliminate them, they
are enticed to purchase a certain program. It can be downloaded from the website belonging to the company that
has developed it....
Troj/PSWDla-Gen - Troj/PSWDla-Gen at Sophos
Troj/PSWDla-Gen is a Trojan for the Windows platform.
...
Troj/PSWDlb-Gen - Troj/PSWDlb-Gen at Sophos
Troj/PSWDlb-Gen is a Trojan for the Windows platform.
...
Troj/Agent-HSR - Troj/Agent-HSR at Sophos
...
Troj/Doc-Zip - Troj/Doc-Zip at Sophos
Troj/Doc-Zip is a family of zip files that contain malware. Members of
Troj/Doc-Zip are usually sent in spam pretending to contain information in an attached document, and the zip
file containing the document is often password-protected.
...
Troj/FakeVir-FZ - Troj/FakeVir-FZ at Sophos
...
Troj/GamPass-U - Troj/GamPass-U at Sophos
...
Troj/Rootkit-DS - Troj/Rootkit-DS at Sophos
...
Troj/BackDr-AC - Troj/BackDr-AC at Sophos
Troj/BackDr-AC is a backdoor Trojan which allows a remote intruder to gain access and control over
the computer. Troj/BackDr-AC includes functionality to access the internet and
communicate with a remote server via HTTP. When first run Troj/BackDr-AC copies itself
to <Syste...
Troj/FakeAle-GZ - Troj/FakeAle-GZ at Sophos
Troj/FakeAle-GZ is a Trojan for the Windows platform. Troj/FakeAle-GZ
includes functionality to download, install and run new software. When Troj/FakeAle-GZ
is installed the following files are created: <User>\Application
Data\Microsoft\Internet Ex...
Troj/Inject-CY - Troj/Inject-CY at Sophos
...
0 writebacks [09/25/2008 04:44]
[]
permanent link
|
Virus Malware and Threat News for 20080923
Trojan-Downloader:W32/Agent.HPS - Trojan-Downloader:W32/Agent.HPS at F-Secure
Trojan-downloaders attempt to download and install new malware, spyware, or adware on the targeted computer.
No graphical user interface can be seen; it will run in the background.
...
Packed.Generic.188 - Packed.Generic.188 at Norton Symantec
Packed.Generic.188 is a heuristic detection for files that may have been obfuscated or encrypted in order to
conceal them from antivirus software.
...
PWS-QQGame!D84471E9 - PWS-QQGame!D84471E9 at McAfee
File PropertyProperty ValueFileNamenew25.exeMcAfee DetectionPWS-QQGameLength31,868
bytesCRCD84471E9MD541B62AB98DC6F42E65A7F39AB1477D7ASHA1B7D502C3EBCD9999DFD77DB68C97D91B2E1EF2CCOther Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/QQPass.GenavastWin32:OnLineGames-BSI [Trj]AVG
(GriSoft)PSW.Delf.CBEAviraTR/ATRAPS.Ge...
PWS-OnlineGames.ce!38AD5562 - PWS-OnlineGames.ce!38AD5562 at McAfee
File PropertyProperty ValueFileNamenew22.exeMcAfee DetectionPWS-OnlineGames.ceLength14,024
bytesCRC38AD5562MD5681832F47AE5B521BA8C58D914902CD2SHA10CCF48A7D97AE8303E145B52AF4B9379C624BE8EOther Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/OnlineGameHack.BavastWin32:Spyware-gen
[Trj]AviraTR/Onlinegames.tbodBitDefen...
PWS-OnlineGames.bj!4EE3FAFB - PWS-OnlineGames.bj!4EE3FAFB at McAfee
File PropertyProperty ValueFileNamenew6.exeMcAfee DetectionPWS-OnlineGames.bjLength12,800
bytesCRC4EE3FAFBMD574CE4F80BB77F41A03002BF4FE9F931CSHA1131645450D9D6056A846543ADC0BC58C7ECAF5BAOther Common
Detection AliasesCompany NameDetection NameahnlabDropper/OnlineGameHack.12800.EavastWin32:Agent-ZRP
[Trj]AviraTR/Dropper.GenBitDefenderTr...
PWS-OnlineGames.ce!58A5E709 - PWS-OnlineGames.ce!58A5E709 at McAfee
File PropertyProperty ValueFileNamenew11.exeMcAfee DetectionPWS-OnlineGames.ceLength14,386
bytesCRC58A5E709MD501F65F00DB0239F560768DE042B3046ESHA132CF943B589B4AF4D15DBCB15B67A1A951B0B3F6Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/OnlineGameHack.BavastWin32:Trojan-gen {Other}AVG
(GriSoft)PSW.Generic6.ADBTA...
Generic.dx!661A03B1 - Generic.dx!661A03B1 at McAfee
File PropertyProperty ValueFileNamenew27.exeMcAfee DetectionGeneric.dxLength22,709
bytesCRC661A03B1MD5412A90D7F87956D66876B719CC31973BSHA1953472728B674DED390FB88B81893A8CBD2197E3Other Common
Detection AliasesCompany NameDetection NameahnlabDropper/Agent.22709avastWin32:NucleRoot-U [Trj]AVG
(GriSoft)PSW.Legendmir.KVXAviraTR/Dropper.Ge...
PWS-OnlineGames.ce!738A9C73 - PWS-OnlineGames.ce!738A9C73 at McAfee
File PropertyProperty ValueFileNamenew19.exeMcAfee DetectionPWS-OnlineGames.ceLength16,211
bytesCRC738A9C73MD5806FCEFE46E123A166A90D8014855D8BSHA195636340FFF38AB3B1EB7853101E32813B62D52FOther Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/OnlineGameHack.BavastWin32:Trojan-gen {Other}AVG
(GriSoft)PSW.Generic6.ADBUA...
PWS-OnlineGames.ce!96DB661B - PWS-OnlineGames.ce!96DB661B at McAfee
File PropertyProperty ValueFileNamenew5.exeMcAfee DetectionPWS-OnlineGames.ceLength15,608
bytesCRC96DB661BMD5AAAEB6646CDC5725B9797FEEAA92DD67SHA123FCEED1B21BF3B32D700DD314BB598588AB3E07Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/OnlineGameHack.BavastWin32:Trojan-gen {Other}AVG
(GriSoft)PSW.Generic6.ADBAAv...
Generic BackDoor!3EC16A62 - Generic BackDoor!3EC16A62 at McAfee
File PropertyProperty ValueFileNamenew21.exeMcAfee DetectionGeneric BackDoorLength16,629
bytesCRC3EC16A62MD58D00F9796D5DF20C8CCE807F57032212SHA14EE1214EC04CF5A8EF73487291BBF56F229E8816Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/OnlineGameHack.BavastWin32:Trojan-gen
{Other}AviraTR/Spy.Agent.nxaBitDefenderT...
PWS-Mmorpg.gen!16A48E85 - PWS-Mmorpg.gen!16A48E85 at McAfee
File PropertyProperty ValueFileNamenew29.exeMcAfee DetectionPWS-Mmorpg.genLength17,824
bytesCRC16A48E85MD5EA137AD8E335F47C5D3B9471A7761A1FSHA13A234AE0D824A472DAA4B71D145062AEB352B635Other Common
Detection AliasesCompany NameDetection NameahnlabDropper/OnlineGameHack.17824avastWin32:Trojan-gen {Other}AVG
(GriSoft)Generic11.POLAviraTR/...
PWS-Mmorpg.gen!87346EF8 - PWS-Mmorpg.gen!87346EF8 at McAfee
File PropertyProperty ValueFileNamenew10.exeMcAfee DetectionPWS-Mmorpg.genLength15,985
bytesCRC87346EF8MD5E351F9C75613DC90042A8EA2DB7E52B6SHA1E22C858D42149361B3093D97DB179E803652D43AOther Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/OnlineGameHack.BavastWin32:Trojan-gen
{Other}AviraTR/Spy.Agent.nxaBitDefenderTro...
PWS-QQGame!9AC2BDDA - PWS-QQGame!9AC2BDDA at McAfee
File PropertyProperty ValueFileNamenew31.exeMcAfee DetectionPWS-QQGameLength26,220
bytesCRC9AC2BDDAMD57B4FE005CB7EC059103B4B64D0F74A2DSHA1B2400F69B5BB4B33B4F15FC6EA9808C6AB0F29DCOther Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/QQPass.GenavastWin32:Delf-BCS [Trj]AVG
(GriSoft)BHO.FKHAviraTR/ATRAPS.GenBitDefender...
PWS-OnlineGames.ce!1F2CF0D5 - PWS-OnlineGames.ce!1F2CF0D5 at McAfee
File PropertyProperty ValueFileNamenew23.exeMcAfee DetectionPWS-OnlineGames.ceLength14,743
bytesCRC1F2CF0D5MD5DEEE16B016A64D649E986B15FF97A32BSHA15FFB3804FA21EDBBF5615639D562C2C80AA41A8COther Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/OnlineGameHack.BAVG (GriSoft)PSW.Generic6.
AEGZAviraTR/Dropper.GenBitDefender...
PWS-OnlineGames.bp!736D1485 - PWS-OnlineGames.bp!736D1485 at McAfee
File PropertyProperty ValueFileNamenew20.exeMcAfee DetectionPWS-OnlineGames.bpLength12,800
bytesCRC736D1485MD5B6316D4D7E0E81B937BD471D360988B0SHA1C28775EF136092F29317FA9CF51582641165E971Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/OnlineGameHack.12800.BVavastWin32:Agent-ZRH
[Trj]AviraTR/Dropper.GenBitDefen...
Generic PWS.y!CEAAB41E - Generic PWS.y!CEAAB41E at McAfee
File PropertyProperty ValueFileNamenew2.exeMcAfee DetectionGeneric PWS.yLength16,981
bytesCRCCEAAB41EMD585E5EDB08DC1A091F5F836E62B3F2D01SHA156D85023047BE108286F36FBD21162FD3985A2CFOther Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/OnlineGameHack.BavastWin32:Trojan-gen
{Other}AviraTR/Spy.Agent.nxaBitDefenderTroja...
Generic BackDoor!24B1486E - Generic BackDoor!24B1486E at McAfee
File PropertyProperty ValueFileNamenew1.exeMcAfee DetectionGeneric BackDoorLength17,801
bytesCRC24B1486EMD58B505CA3C967DE4688563C5A00E13E4DSHA195F207E94EE66F5672EB9176D96B65E012F883B5Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/OnlineGameHack.BavastWin32:Trojan-gen
{Other}AviraTR/Spy.Agent.nxaBitDefenderTr...
Downloader.gen.a!133FFB98 - Downloader.gen.a!133FFB98 at McAfee
File PropertyProperty ValueFileNamekb908528.exeMcAfee DetectionDownloader.gen.aLength24,064
bytesCRC133FFB98MD5FEA1A21C781F7D7999946DC87056DEC3SHA1457249585B896E1068D901644A87B726F63A49F1Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/Downloader.24064.FQavastWin32:Socks-AE [Wrm]AVG
(GriSoft)SHeur.TMKAviraTR/D...
PWS-OnlineGames.ce!BD9D05B4 - PWS-OnlineGames.ce!BD9D05B4 at McAfee
File PropertyProperty ValueFileNamed34.exeMcAfee DetectionPWS-OnlineGames.ceLength12,716
bytesCRCBD9D05B4MD5E5A0AA4F0B51E8EB657C259589F5A5C9SHA1A35112B478F34450F8F4A7941A4004DFB0F3DEBDOther Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/OnlineGameHack.BAviraTR/Dropper.
GenBitDefenderTrojan.PWS.Lmir.UMHeSafe (Alladi...
Generic BackDoor!EE94F675 - Generic BackDoor!EE94F675 at McAfee
File PropertyProperty ValueFileNamed4.exeMcAfee DetectionGeneric BackDoorLength16,641
bytesCRCEE94F675MD5236C9C0399C5ABF5D4EAEBCD01B50BB1SHA175E99EC82BFC6B74C86EFF977FE9243D0A7F82F2Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/OnlineGameHack.BavastWin32:Trojan-gen
{Other}AviraTR/Spy.Agent.nxaBitDefenderTroj...
Generic BackDoor!FF9979C4 - Generic BackDoor!FF9979C4 at McAfee
File PropertyProperty ValueFileNamed19.exeMcAfee DetectionGeneric BackDoorLength16,665
bytesCRCFF9979C4MD55AFB36C2F21759C269059C87ACE56DDCSHA17A6BC4569B77E172FEE52BE03E665F6C0CC22806Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/OnlineGameHack.BavastWin32:Trojan-gen
{Other}AviraTR/Spy.Agent.nxaBitDefenderTro...
PWS-OnlineGames.ce!EEECED97 - PWS-OnlineGames.ce!EEECED97 at McAfee
File PropertyProperty ValueFileNamed13.exeMcAfee DetectionPWS-OnlineGames.ceLength14,016
bytesCRCEEECED97MD585CC2ED28879910C011FB8177CCCB1CASHA1A55C3394018FD707DBDA9346B1A4EC12F4EF4B74Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/OnlineGameHack.BAviraTR/Dropper.
GenBitDefenderTrojan.PWS.Lmir.UMHeSafe (Alladi...
PWS-OnlineGames.ce!6986DF37 - PWS-OnlineGames.ce!6986DF37 at McAfee
File PropertyProperty ValueFileNamed9.exeMcAfee DetectionPWS-OnlineGames.ceLength15,171
bytesCRC6986DF37MD5D484211932685C255689CE124D4B4386SHA10AB3ABFEEC15972DADB5A26D9BDBF358F1679D7BOther Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/OnlineGameHack.BavastWin32:Spyware-gen [Trj]AVG
(GriSoft)PSW.Generic6.ADSJAvira...
Generic PWS.y!4BCFF7AD - Generic PWS.y!4BCFF7AD at McAfee
File PropertyProperty ValueFileNamed25.exeMcAfee DetectionGeneric PWS.yLength16,977
bytesCRC4BCFF7ADMD5E3375C2DAE9021911C94AA360CBAD2FBSHA1944C2A6EE69D48DB63ED34221BA8BD77D582F842Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/OnlineGameHack.BavastWin32:Trojan-gen
{Other}AviraTR/Spy.Agent.nxaBitDefenderTrojan...
PWS-OnlineGames.ce!36CA1EF4 - PWS-OnlineGames.ce!36CA1EF4 at McAfee
File PropertyProperty ValueFileNamed7.exeMcAfee DetectionPWS-OnlineGames.ceLength15,380
bytesCRC36CA1EF4MD54E43066BFB711368004698BDA21DFB90SHA14F03AFBFE3EDB01898A8A76B5A9B0D0F90000B2DOther Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/OnlineGameHack.BavastWin32:Trojan-gen {Other}AVG
(GriSoft)PSW.Generic6.ADRFAvir...
Generic BackDoor!005171C0 - Generic BackDoor!005171C0 at McAfee
File PropertyProperty ValueFileNamed27.exeMcAfee DetectionGeneric BackDoorLength15,045
bytesCRC005171C0MD5D63A40E84A30F9F9AF16233C14E4725ASHA1B39020B80778F31297BC3990F8E40139E4FBEBCEOther Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/OnlineGameHack.BavastWin32:Trojan-gen
{Other}AviraTR/Spy.Agent.nxaBitDefenderTro...
PWS-OnlineGames.ce!62E15CEE - PWS-OnlineGames.ce!62E15CEE at McAfee
File PropertyProperty ValueFileNamed16.exeMcAfee DetectionPWS-OnlineGames.ceLength14,195
bytesCRC62E15CEEMD5E9DB65748B6A833E556D5C3393CDDDAESHA1D242E83844F7F82FF8EABF18C3F19313845C7FE9Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/OnlineGameHack.BAviraTR/Dropper.
GenBitDefenderTrojan.PWS.Lmir.UMHeSafe (Alladi...
Generic.dx!2C3C1BC8 - Generic.dx!2C3C1BC8 at McAfee
File PropertyProperty ValueFileNamel9.exeMcAfee DetectionGeneric.dxLength35,840
bytesCRC2C3C1BC8MD5ECEBFB14005544CC4014D0FBF601F7A0SHA14D566FD6669DF03C204FCEC20E93098C8B9B82A9Other Common
Detection AliasesCompany NameDetection NameeSafe (Alladin)suspicious Trojan/Worm [101]Eseta variant of
Win32/Agent.OCXSophos~Sus/Dropper-ASymantecT...
Generic PWS.y!3198BBFF - Generic PWS.y!3198BBFF at McAfee
File PropertyProperty ValueFileNamefs.exeMcAfee DetectionGeneric PWS.yLength15,477
bytesCRC3198BBFFMD53B7E86696D94E054E056363A0E02582ESHA1A967BEA97DAB965CBCFF7B77CC010B5B9A4FC45EOther Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/OnlineGameHack.BavastWin32:Trojan-gen
{Other}AviraTR/Spy.Agent.nxaBitDefenderTrojan....
PWS-OnlineGames.ce!95BD872E - PWS-OnlineGames.ce!95BD872E at McAfee
File PropertyProperty ValueFileNamed33.exeMcAfee DetectionPWS-OnlineGames.ceLength12,480
bytesCRC95BD872EMD503D98DD0272ABF54FD37E137E1C00DBESHA1CADDAD75E43E5D447B2ED2A6D1242400EDB6AAB2Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/OnlineGameHack.BAviraTR/Dropper.
GenBitDefenderTrojan.PWS.Lmir.UMHeSafe (Alladi...
PWS-OnlineGames.cd!7A4E74B3 - PWS-OnlineGames.cd!7A4E74B3 at McAfee
File PropertyProperty ValueFileNamed31.exeMcAfee DetectionPWS-OnlineGames.cdLength29,764
bytesCRC7A4E74B3MD5DE0BD9399F82258A579A55261307203ASHA137349C05CE04629641A825C5A592A2510F776E29Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/OnlineGameHack.29764avastWin32:Trojan-gen
{Other}AviraTR/PSW.Wow.cafBitDefende...
PWS-OnlineGames.ce!B9E435DD - PWS-OnlineGames.ce!B9E435DD at McAfee
File PropertyProperty ValueFileNamed18.exeMcAfee DetectionPWS-OnlineGames.ceLength14,532
bytesCRCB9E435DDMD5355B3FA91338E083294175F0E647558ESHA163ABBF41E41A8C2C9E1FD5BD7200B6093E7A6E05Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/OnlineGameHack.BavastWin32:Trojan-gen {Other}AVG
(GriSoft)PSW.Generic6.ADPWAvi...
TROJ_AGENT.AINZ - TROJ_AGENT.AINZ at Trend Micro
This Trojan arrives as a link inside email messages spammed by another malware or a malicious user. The said
email contain several links where copies of the Trojan could be downloaded.Upon execution, this Trojan
downloads components, then executes the downloaded files. It also drops component files, some of which are
detected as TROJ...
TROJ_FAKEAV.NO - TROJ_FAKEAV.NO at Trend Micro
This Trojan may be downloaded from remote Web sites by other malware. It may be dropped by other malware. It
may be downloaded unknowingly by a user when visiting malicious Web sites.It creates folders. It also drops
files detected by Trend Micro as the following:TROJ_FAKEALER.VL TROJ_FAKEAV.NNUpon execution, it displays the
followi...
TROJ_FAKEAV.NN - TROJ_FAKEAV.NN at Trend Micro
This Trojan may be downloaded from remote sites by other malware. It may be dropped by other malware. It may
be downloaded unknowingly by a user when visiting malicious Web sites.It creates folders. It drops
files/components.Upon execution, it displays the following graphical user interface (GUI) of a fake antivirus
software:It delet...
TROJ_DLOADR.IB - TROJ_DLOADR.IB at Trend Micro
...
P2PShared.M - P2PShared.M at Panda
Its main objective is to spread through peer-to-peer (P2P) file sharing programs. It reaches the computer in a
file which an icon and when it is run, a message is displayed on the screen.
...
Banker.LKC - Banker.LKC at Panda
It steals confidential information related to certain banking entities, redirecting users to a fake website
which imitates the original one. It does not spread automatically using its own means.
...
Troj/Agent-HSL - Troj/Agent-HSL at Sophos
Troj/Agent-HSL drops the file <System>\drivers\beep.sys which is detected as Troj/Agent-HSL.
The original beep.sys file is overwritten.
...
Troj/Bckdr-QPJ - Troj/Bckdr-QPJ at Sophos
...
W32/Autorun-JX - W32/Autorun-JX at Sophos
W32/Autorun-JX copies itself to system folders and removable storage devices.
W32/Autorun-JX installs itself in the registry to execute on startup. W32/Autorun-JX
modifies and deletes registry settings to weaken system security.
...
W32/Autorun-JY - W32/Autorun-JY at Sophos
...
W32/AutoRun-JZ - W32/AutoRun-JZ at Sophos
...
Troj/Dloadr-BTP - Troj/Dloadr-BTP at Sophos
...
Troj/Dloadr-BTQ - Troj/Dloadr-BTQ at Sophos
...
Troj/Dloadr-BTR - Troj/Dloadr-BTR at Sophos
At the time of writing Troj/Dloadr-BTR attempts to download a file called 5491.exe. The file 5491.
exe is detected as Mal/FakeAV-F.
...
Troj/FakeAle-HR - Troj/FakeAle-HR at Sophos
...
Troj/FakeAle-HS - Troj/FakeAle-HS at Sophos
...
0 writebacks [09/24/2008 04:46]
[]
permanent link
|
Virus Malware and Threat News for 20080922
Rootkit:W32/Agent.UG - Rootkit:W32/Agent.UG at F-Secure
A program or set of programs which hides itself by subverting or evading the computer's security mechanisms,
then allows remote users to secretly control the computer's operating system.
...
Worm:W32/AutoRun.GM - Worm:W32/AutoRun.GM at F-Secure
A standalone malicious program which uses computer or network resources to make complete copies of itself. May
include code or other malware to damage both the system and the network.
...
Packed.Generic.187 - Packed.Generic.187 at Norton Symantec
Packed.Generic.187 is a heuristic detection for files that may have been obfuscated or encrypted in order to
conceal them from antivirus software.
...
Generic PWS.y!353894B3 - Generic PWS.y!353894B3 at McAfee
File PropertyProperty ValueFileNameus2.exeMcAfee DetectionSpy-Agent.br.dllLength127,220
bytesCRC353894B3MD55A5EDB82CA2A34089B5481618A917DFESHA10FC80169786DD6D3F60D05952A2747E62B59B85EOther Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/Pophot.127220avastWin32:Pophot-AM
[Trj]AviraBDS/Hupigon.GenBitDefenderTrojan.Po...
Spy-Agent.br.dll!DBCF59C2 - Spy-Agent.br.dll!DBCF59C2 at McAfee
File PropertyProperty ValueFileNameus.exeMcAfee DetectionSpy-Agent.br.dllLength124,896
bytesCRCDBCF59C2MD5366698F5D861082102E87D39F6317909SHA12C943797D366034264D18BA787A6F417249D609COther Common
Detection AliasesCompany NameDetection NameavastWin32:Pophot-AM [Trj]AviraBDS/Hupigon.GenBitDefenderTrojan.
Pophot.DDr.WebTrojan.Hitpop.origi...
Spy-Agent.br.dll!D441DD9A - Spy-Agent.br.dll!D441DD9A at McAfee
File PropertyProperty ValueFileNamenewcool.exeMcAfee DetectionSpy-Agent.br.dllLength124,900
bytesCRCD441DD9AMD5501CEF9A07C82920848B0813AC1FE24BSHA1135B4EEFEC2E2217727CE94290DCABD9770945B1Other Common
Detection AliasesCompany NameDetection NameavastWin32:Pophot-AM [Trj]AviraBDS/Hupigon.GenBitDefenderTrojan.
Pophot.DDr.WebTrojan.Hitpop....
Generic PWS.y!79C1B87D - Generic PWS.y!79C1B87D at McAfee
File PropertyProperty ValueFileNamemyself.exeMcAfee DetectionSpy-Agent.br.dllLength127,264
bytesCRC79C1B87DMD5EAC40B27B08AC4672648A388203ACC50SHA1549AE5FBBBD5D36CFD3ACA31CCB76486D8D96DEDOther Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/Pophot.127264avastWin32:Pophot-AM
[Trj]AviraBDS/Hupigon.GenBitDefenderTrojan...
W32/Sality!101626AD - W32/Sality!101626AD at McAfee
File PropertyProperty ValueFileName80000077.exeMcAfee DetectionW32/SalityLength171,519
bytesCRC101626ADMD54E2D7147E5FA9FB2CAB9882A72B0F642SHA17B752B177B771C65716FB24C6EE00974178439EBOther Common
Detection AliasesCompany NameDetection NameKasperskyVirus.Win32.Sality.aamicrosoftvirus:win32/sality.
amnormanw32/sality.aeSophosW32/Sality-A...
FakeAlert-AX!C017AD56 - FakeAlert-AX!C017AD56 at McAfee
File PropertyProperty ValueFileNamemyyout~1.exeMcAfee DetectionFakeAlert-AXLength14,336
bytesCRCC017AD56MD5C54D7B017B926067C48D789AB106D153SHA14986CBD30C264A5C3BE69FA4E759C6D502654742Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.small.dptAviraTR/Hijacker.
GenBitDefenderTrojan.FakeAlert.ABZF-ProtW32/Do...
PWS-Banker!F0EBFD25 - PWS-Banker!F0EBFD25 at McAfee
File PropertyProperty ValueFileNamea110fd~1.exeMcAfee DetectionPWS-BankerLength436,133
bytesCRCF0EBFD25MD5B1A0DA319B71AD146DE1339C70AC6E16SHA14381EF232EB6B9F64BBF12C8B01B3CBF8192C1D1Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.banload.zyoKasperskyTrojan-Downloader.Win32.
Banload.toonormanw32/banload....
PWS-OnlineGames.cn!706E0535 - PWS-OnlineGames.cn!706E0535 at McAfee
File PropertyProperty ValueFileNamezz.exeMcAfee DetectionPWS-OnlineGames.cnLength126,464
bytesCRC706E0535MD526C72807E06CC1F321C6B37E96DC95D6SHA1258DC7BABB19858B2CE07EA93E4A398D11E3F235Other Common
Detection AliasesCompany NameDetection Namemicrosoftpws:win32/onlinegames.erAvert® Labs has observed the
following system activities:Ac...
BackDoor-AWQ.b!272F8E2F - BackDoor-AWQ.b!272F8E2F at McAfee
File PropertyProperty ValueFileNameUnavailableMcAfee DetectionBackDoor-AWQ.bLength704,000
bytesCRC272F8E2FMD5AB8072EE83C5A9A59645EB45F34F3B59SHA1800FDFF8A7260876386FDA7F845C2E36F5ACFDA2Other Common
Detection AliasesCompany NameDetection NameavastWin32:Hupigon-EKTAviraTR/Dropper.GenBitDefenderBackdoor.Beizhu.
FDclamavTrojan.Packed-18Dr...
Adware-Cinmus!10BE1CD8 - Adware-Cinmus!10BE1CD8 at McAfee
This software is not a virus or a Trojan. It is detected as a "potentially unwanted program" (PUP). PUPs are
any piece of software that a reasonably security- or privacy-minded computer user may want to be informed of
and, in some cases, remove. PUPs are often made by a legitimate corporate entity for some beneficial purpose,
but the...
W32/Autorun.worm.cs!3E102F4C - W32/Autorun.worm.cs!3E102F4C at McAfee
File PropertyProperty ValueFileNamevicky_.exeMcAfee DetectionW32/Autorun.worm.csLength617,343
bytesCRC3E102F4CMD5AD98A35FA9B7808C3EC9008D628CFF27SHA1FC6C9B0E9A9D0FB6F59165564331045FD12FF7F5Other Common
Detection AliasesCompany NameDetection NameahnlabWin32/Sohanad.worm.617343avastWin32:AutoIt-CIAVG
(GriSoft)Worm/Autoit.YDAviraTR/Auto...
Generic.dx!76866687 - Generic.dx!76866687 at McAfee
File PropertyProperty ValueFileNameUnavailableMcAfee DetectionGeneric.dxLength727,552
bytesCRC76866687MD59F19F9495D4FFC86C2E91F9D063E6B67SHA1B190AE6D2B90048CBDB3A11091E5594FA18297E4Other Common
Detection AliasesCompany NameDetection NameavastWin32:Delf-IHEAviraTR/Agent.mxaBitDefenderGenPack:Trojan.
AVKiller.VB.AAKEsetprobably a varian...
BackDoor-AWQ.b!12817CF7 - BackDoor-AWQ.b!12817CF7 at McAfee
File PropertyProperty ValueFileNameUnavailableMcAfee DetectionBackDoor-AWQ.bLength664,576
bytesCRC12817CF7MD51F13C97FE6F6938DEE32E1D1465B3C6DSHA1E5C61D090A7781CEE0A388F5B766C0A1129024DEOther Common
Detection AliasesCompany NameDetection NameavastWin32:Hupigon-BQOAviraBDS/Backdoor.GenBitDefenderBehavesLike:
Win32.ProcessHijack (suspect...
Generic.dx!233348E9 - Generic.dx!233348E9 at McAfee
File PropertyProperty ValueFileNameUnavailableMcAfee DetectionGeneric.dxLength793,088
bytesCRC233348E9MD54E43D844722756A1142C1F967C8E64AESHA14C73C476CE1A11B99658B056696C70E8482B73B3Other Common
Detection AliasesCompany NameDetection NameavastWin32:GamonaAVG (GriSoft)vb.eqzBitDefenderGenPack:Trojan.
AVKiller.VB.AAKEsetprobably a varian...
BackDoor-AWQ.b!10218B05 - BackDoor-AWQ.b!10218B05 at McAfee
File PropertyProperty ValueFileNameUnavailableMcAfee DetectionNew Malware.hiLength649,728
bytesCRC10218B05MD59E546B5E19CEBE5EDB6C90E1C6BD48F2SHA15E79BFCCF3FE471D5B9BEDEE17D30D92D7CDD24AOther Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/Hupigon.649728.TavastWin32:Trojan-gen {Other}AVG
(GriSoft)SHeur.FRVAviraBDS/H...
Generic PWS.y!D015AD37 - Generic PWS.y!D015AD37 at McAfee
File PropertyProperty ValueFileNamenoix.exeMcAfee DetectionGeneric PWS.yLength325,120
bytesCRCD015AD37MD59A34541D983F3363F23A261A4DBE1BBDSHA14C13DC358A99938999B8883C4631E174A5965555Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)psw.agent.vbwAviraTR/Crypt.XPACK.GenDr.WebTrojan.PWS.
Sands.236EMSI SoftwareBackdoor.W...
Generic BackDoor!5E26917E - Generic BackDoor!5E26917E at McAfee
File PropertyProperty ValueFileNameUnavailableMcAfee DetectionNew Malware-dLength1,105,920
bytesCRC5E26917EMD5032201F94C63B34973329B31DF727FBCSHA16EFF98FFEA601C00136A106F63BFCA55B2E5384EOther Common
Detection AliasesCompany NameDetection NameavastWin32:Shark-EYAVG (GriSoft)Packed.ThemidaAviraTR/Crypt.TPM.
GenclamavTrojan.Karsh-16Dr.We...
W32/Pate.b!FAE67F12 - W32/Pate.b!FAE67F12 at McAfee
File PropertyProperty ValueFileNameUnavailableMcAfee DetectionW32/Pate.bLength198,108
bytesCRCFAE67F12MD54B50DEEC281759D5F486A6C2C83FBA9FSHA155608ECD415608E426AEAAFD48F0CB6C724A794DOther Common
Detection AliasesCompany NameDetection NameavastWin32:PariteAVG
(GriSoft)Win32/PariteAviraW32/PariteBitDefenderWin32.Parite.bclamavW32.Parite...
W32/Pate.b!359F0F03 - W32/Pate.b!359F0F03 at McAfee
File PropertyProperty ValueFileNameUnavailableMcAfee DetectionW32/Pate.bLength907,226
bytesCRC359F0F03MD5086514E27F48F955119BC19F25326BE8SHA1895A48E941F99F6A007BD622474B1783CABF6A75Other Common
Detection AliasesCompany NameDetection NameavastWin32:PariteAVG
(GriSoft)Win32/PariteAviraW32/PariteBitDefenderWin32.Parite.bclamavW32.Parite...
W32/Virut.gen!BB215D78 - W32/Virut.gen!BB215D78 at McAfee
File PropertyProperty ValueFileNameUnavailableMcAfee DetectionW32/Virut.genLength71,680
bytesCRCBB215D78MD572358FE46C46C821E96F8B5D07C34049SHA18C9E12028F48D2ED0D945403950A17488C0E58DDOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)Win32/VirutFortiNetSuspiciousKasperskyType_Win32
(suspicious)microsofttrojan:win32/...
Generic BackDoor!AA91CCA4 - Generic BackDoor!AA91CCA4 at McAfee
File PropertyProperty ValueFileNameUnavailableMcAfee DetectionGeneric BackDoorLength1,635,188
bytesCRCAA91CCA4MD51696156FEF132DC0D2E86A8119307022SHA1D943C219DA4F113AD72C61CCCC97E6C3480A0CA6Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)Packed.ThemidaAviraTR/Dropper.GenBitDefenderMemScan:
Backdoor.Shark.BSEseta va...
FakeAlert-BD!102EC843 - FakeAlert-BD!102EC843 at McAfee
File PropertyProperty ValueFileNamerulwhqvi.exeMcAfee DetectionGeneric Downloader.xLength98,304
bytesCRC102EC843MD5F2BB2B30C54E291DE33F4DFFD996D8C3SHA1FE0137B6B0E3E231B74C240C8B02FB892E1FA9F9Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)Downloader.ObfuskatedAviraTR/Crypt.XPACK.GenEseta
variant of Win32/TrojanDo...
Generic FakeAlert.a!0D1BE631 - Generic FakeAlert.a!0D1BE631 at McAfee
File PropertyProperty ValueFileNamehunafmhc.exeMcAfee DetectionGeneric FakeAlert.aLength39,424
bytesCRC0D1BE631MD578B8EFE7EA505C4C0D00CB7D8F459268SHA1488EECBD543A8104DCCB58E418306D07D81A2A98Other Common
Detection AliasesCompany NameDetection NameavastWin32:Obfuscated-EVZ [Trj]AVG (GriSoft)Downloader.Zlob.
WLIAviraTR/Crypt.XPACK.Gencla...
Vundo!5B54BE96 - Vundo!5B54BE96 at McAfee
File PropertyProperty ValueFileNameUnavailableMcAfee DetectionVundoLength233,022
bytesCRC5B54BE96MD53FCC42A9DB946AA78C7451E99C72A911SHA10C0D4581AEB5796AFE4D2F3F0D0D88B3F331A4CAOther Common
Detection AliasesCompany NameDetection NameavastWin32:Agent-ABLAAVG (GriSoft)Vundo.AIBitDefenderDropped:Trojan.
Agent.AKAPDr.WebBackDoor.IteratoreS...
Generic.dx!7F811B45 - Generic.dx!7F811B45 at McAfee
File PropertyProperty ValueFileNameUnavailableMcAfee DetectionGeneric.dxLength4,096
bytesCRC7F811B45MD5DCB4D449C0C6B4555E6F561BE846CE94SHA1BC3F8885CD93741338859125621EE4B02E430D74Other Common
Detection AliasesCompany NameDetection NameavastWin32:Trojan-gen {Other}eSafe (Alladin)Suspicious
fileF-ProtW32/SuspPack.C.gen!Eldoradomicrosof...
Vundo!59A665C2 - Vundo!59A665C2 at McAfee
File PropertyProperty ValueFileNameUnavailableMcAfee DetectionVundoLength233,594
bytesCRC59A665C2MD57B7A2D49F7602F78143FE84C5CEB9381SHA1B7898DF6BC2A38678582652BACD04FDD11B02183Other Common
Detection AliasesCompany NameDetection NameavastWin32:Agent-ABLAAVG (GriSoft)Vundo.AIBitDefenderDropped:Trojan.
Agent.AKAPDr.WebBackDoor.IteratoreS...
MultiDropper-FD!E9C79153 - MultiDropper-FD!E9C79153 at McAfee
File PropertyProperty ValueFileNamefile.exeMcAfee DetectionMultiDropper-FDLength978,140
bytesCRCE9C79153MD5CAB275E1CB73AD1F1671D64BD4A229BFSHA16F43DE43BE7CD532BAAE098D622DE3B5275AEFD2Other Common
Detection AliasesCompany NameDetection NameavastWin32:Trojan-gen {Other}AVG (GriSoft)Dropper.ExeBundle.
ACAviraBDS/Beastdoor.LBitDefenderTro...
W32/Sality.ag!AFBDE78D - W32/Sality.ag!AFBDE78D at McAfee
...
Generic PUP.x!345805B7 - Generic PUP.x!345805B7 at McAfee
This software is not a virus or a Trojan. It is detected as a "potentially unwanted program" (PUP). PUPs are
any piece of software that a reasonably security- or privacy-minded computer user may want to be informed of
and, in some cases, remove. PUPs are often made by a legitimate corporate entity for some beneficial purpose,
but th...
W32/Duel@MM!661DF850 - W32/Duel@MM!661DF850 at McAfee
File PropertyProperty ValueFileNamexwrm~2.exeMcAfee DetectionW32/Duel@MMLength40,960
bytesCRC661DF850MD525730435630524205CCDC441664F72B4SHA1CCAF6ED969FD43324FE646FE5A1D3C25778C1740Other Common
Detection AliasesCompany NameDetection NameavastWin32:Trojan-gen {Other}BitDefenderDeepScan:Generic.Malware.
SIM!g.8A9EF303Eseta variant of Win...
Troj/Agent-HSF - Troj/Agent-HSF at Sophos
...
Troj/Dloadr-BTO - Troj/Dloadr-BTO at Sophos
...
Troj/FakeAle-HQ - Troj/FakeAle-HQ at Sophos
...
Troj/Phoison-A - Troj/Phoison-A at Sophos
Troj/Phoison-A is a gif file that contains PHP code. Troj/Phoison-A is
used by hackers to compromise webservers that allow image uploads like bulletin board web applications.
...
Troj/Dloadr-BSQ - Troj/Dloadr-BSQ at Sophos
...
Troj/FakeAV-DT - Troj/FakeAV-DT at Sophos
...
Troj/GamPass-T - Troj/GamPass-T at Sophos
...
Troj/Inject-CX - Troj/Inject-CX at Sophos
...
Troj/Agent-HSD - Troj/Agent-HSD at Sophos
Troj/Agent-HSD is a Trojan for the Windows platform. When Troj/Agent-HSD is
installed it creates the file <Program Files>\Internet Explorer\setupapi.dll.
This file is also detected as Troj/Agent-HSD.
...
Troj/Agent-HSE - Troj/Agent-HSE at Sophos
...
0 writebacks [09/23/2008 04:45]
[]
permanent link
|
Virus Malware and Threat News for 20080921
PWS-Gamania.gen.a!E76D8281 - PWS-Gamania.gen.a!E76D8281 at McAfee
File PropertyProperty ValueFileName!itw#568.exeMcAfee DetectionPWS-Gamania.gen.aLength120,814
bytesCRCE76D8281MD5C56D3DB00AD31E43370F87819E792F91SHA143751114CDEA3D4620DE2BA0BDEB26BAF55C3CF8Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/OnlineGameHack.120814avastWin32:Oliga [Trj]AVG
(GriSoft)PSW.OnlineGames.2...
PWS-Gamania.gen.a!0E063C2F - PWS-Gamania.gen.a!0E063C2F at McAfee
File PropertyProperty ValueFileName!itw#573.exeMcAfee DetectionPWS-Gamania.gen.aLength122,496
bytesCRC0E063C2FMD56B1A525846D6083DB4D9EB1E988F4313SHA1DFE723C28B35E576958530429A87F2BDD51B7524Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/OnlineGameHack.122496avastWin32:AuCrypt [Cryp]AVG
(GriSoft)PSW.OnlineGame...
PWS-Gamania.gen.a!5B28EC7D - PWS-Gamania.gen.a!5B28EC7D at McAfee
File PropertyProperty ValueFileName!itw#566.exeMcAfee DetectionPWS-Gamania.gen.aLength116,621
bytesCRC5B28EC7DMD5999AE1EC3FD66F153E623B9523424CF3SHA1B6FD907B9CF7950AF41C79F827AB17814EDFE516Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/OnlineGameHack.116621avastWin32:Oliga
[Trj]AviraTR/PSW.OnlineGames.ZCK.2B...
PWS-Gamania.gen.a!42B862DF - PWS-Gamania.gen.a!42B862DF at McAfee
File PropertyProperty ValueFileName!itw#563.exeMcAfee DetectionPWS-Gamania.gen.aLength121,464
bytesCRC42B862DFMD58465B7711DBEF9ACF19D464C2B5FDC0CSHA17DD56871841774C04B1BB13F0FE65F8FF1CDB4F2Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/Xema.variantavastWin32:Oliga [Trj]AVG (GriSoft)PSW.
OnlineGames.2.UBitDefe...
PWS-Gamania.gen.a!FD6BFC05 - PWS-Gamania.gen.a!FD6BFC05 at McAfee
File PropertyProperty ValueFileName!itw#562.exeMcAfee DetectionPWS-Gamania.gen.aLength119,313
bytesCRCFD6BFC05MD57E2F0D4A5A06FF18FB03E2F573641A86SHA1C988BD0E806194FE63D42E0C8A98216DE99ADA86Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/OnlineGameHack.119313avastWin32:Oliga [Trj]AVG
(GriSoft)PSW.OnlineGames.2...
PWS-Gamania.gen.a!CABC5DEC - PWS-Gamania.gen.a!CABC5DEC at McAfee
File PropertyProperty ValueFileName!itw#560.exeMcAfee DetectionPWS-Gamania.gen.aLength169,927
bytesCRCCABC5DECMD556078A8263C09D1F900DDDAAF0CEB540SHA1C8E6C0C8433C4D26D2F693EF16222DF1190D349BOther Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/OnlineGameHack.169927avastWin32:Oliga
[Trj]BitDefenderTrojan.Generic.3161...
PWS-Gamania.gen.a!6977ACCF - PWS-Gamania.gen.a!6977ACCF at McAfee
File PropertyProperty ValueFileName!itw#561.exeMcAfee DetectionPWS-Gamania.gen.aLength113,064
bytesCRC6977ACCFMD57B5E91FCDEF36C29ED904EB33143899DSHA1E7C9F99C020C3D7957FAABDF66A82436501DEFF0Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/OnlineGameHack.113064.BavastWin32:AuCrypt
[Cryp]AVG (GriSoft)PSW.OnlineGa...
Generic BackDoor!9354FD6F - Generic BackDoor!9354FD6F at McAfee
File PropertyProperty ValueFileName!itw#7.exeMcAfee DetectionGeneric BackDoorLength68,608
bytesCRC9354FD6FMD55F85DC4D417C7AA7E49652D89CD6568ASHA1C7D951A781B6CF5611B10541305C3E0149CEC1A1Other Common
Detection AliasesCompany NameDetection NameahnlabWin32/Kolabc.worm.68608.BavastWin32:Kolabc-CD [Wrm]AVG
(GriSoft)BackDoor.Generic_c.BZAAv...
PWS-Gamania.gen.a!C2DD5EF8 - PWS-Gamania.gen.a!C2DD5EF8 at McAfee
File PropertyProperty ValueFileName!itw#557.exeMcAfee DetectionPWS-Gamania.gen.aLength121,232
bytesCRCC2DD5EF8MD529735C7646FB611092CE19B24D2217FCSHA1BFB0418A156324EDF1B5FBDA8E6B3624D134D52FOther Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/Vaklik.121232avastWin32:AuCrypt [Cryp]AVG
(GriSoft)PSW.OnlineGames.AOAvir...
PWS-Gamania.gen.a!84D4C2A4 - PWS-Gamania.gen.a!84D4C2A4 at McAfee
File PropertyProperty ValueFileName!itw#7.exeMcAfee DetectionPWS-Gamania.gen.aLength111,407
bytesCRC84D4C2A4MD56E5DD4B997B7991A93D5327EB8CDD203SHA10CD252707A087174265BEC8F9CAE34DB67362A99Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/Magania.111407avastWin32:AuCrypt [Cryp]AVG
(GriSoft)PSW.OnlineGames.AZAvira...
PWS-Gamania.gen.a!3E7A1906 - PWS-Gamania.gen.a!3E7A1906 at McAfee
File PropertyProperty ValueFileName!itw#6.exeMcAfee DetectionPWS-Gamania.gen.aLength124,926
bytesCRC3E7A1906MD5EF6A596CB3136872080356F577BA87EBSHA17390EC84A10CCD9D790D27A128894D458462EF0DOther Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/Magania.124926avastWin32:Oliga [Trj]AVG
(GriSoft)sheur.bsfeAviraTR/Drop.Age...
PWS-Gamania.gen.a!30246274 - PWS-Gamania.gen.a!30246274 at McAfee
File PropertyProperty ValueFileName!itw#5.exeMcAfee DetectionPWS-Gamania.gen.aLength128,979
bytesCRC30246274MD5BA62D814BE7B73FE9545E704E72357B7SHA105846E92D9E5DE3E21D328B151D4C730E0A9DE7EOther Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/Magania.128979avastWin32:Oliga [Trj]AVG
(GriSoft)PSW.OnlineGames.2.UAviraTR...
W32/Sdbot.worm.gen.cc!3C614EA3 - W32/Sdbot.worm.gen.cc!3C614EA3 at McAfee
File PropertyProperty ValueFileName!itw#460.exeMcAfee DetectionW32/Sdbot.worm.gen.ccLength39,936
bytesCRC3C614EA3MD5A5553EB6F9ADFCA699F6D29DB314204ESHA145428F6549C5B27ABF56B0EC0200368EC5E26DA1Other Common
Detection AliasesCompany NameDetection NameahnlabWin32/IRCBot.worm.variantavastWin32:Rootkit-gen [Rtk]AVG
(GriSoft)IRC/BackDoor.Sd...
W32/Autorun.worm.gen!070CA958 - W32/Autorun.worm.gen!070CA958 at McAfee
File PropertyProperty ValueFileName!itw#428.exeMcAfee DetectionW32/Autorun.worm.genLength345,642
bytesCRC070CA958MD526571B96407DBC7A41F63DD072C08A5CSHA11F88FE3F89C8FDCAC893EF433699C020323F0182Other Common
Detection AliasesCompany NameDetection NameavastWin32:Trojan-gen {Other}AVG (GriSoft)Generic_c.WSHAviraDR/PSW.
VB.QEBitDefenderTroj...
W32/YahLover.worm!93FB7DD7 - W32/YahLover.worm!93FB7DD7 at McAfee
File PropertyProperty ValueFileName!itw#36.exeMcAfee DetectionW32/YahLover.wormLength711,503
bytesCRC93FB7DD7MD55444A745975364AA6484CA38DC77F441SHA14114EDCEF6DEE0439B86105083C877574F2C5372Other Common
Detection AliasesCompany NameDetection NameahnlabWin32/Katrak.worm.289167avastWin32:AutoIt-BJ [Wrm]AVG
(GriSoft)sheur.btukAviraW32/Dza...
W32/Sdbot.worm!53375AD2 - W32/Sdbot.worm!53375AD2 at McAfee
File PropertyProperty ValueFileName!itw#7.exeMcAfee DetectionW32/Sdbot.wormLength115,215
bytesCRC53375AD2MD502344CD3843141AAB99C7ADF7D049B5BSHA165FE810143700C7D22F8151FCA89222A338EFF9BOther Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/Findvm.9728avastWin32:FindVM-D [Trj]AVG
(GriSoft)dropper.agent.ivzAviraTR/Find...
W32/Sdbot.worm!A9B1820B - W32/Sdbot.worm!A9B1820B at McAfee
File PropertyProperty ValueFileName!itw#461.exeMcAfee DetectionW32/Sdbot.wormLength43,008
bytesCRCA9B1820BMD5B343082904F44AEE74F3C12E58BCF5CESHA12A5F26A6E2BD63909B894AB798C79A79D18D5327Other Common
Detection AliasesCompany NameDetection NameahnlabWin32/IRCBot.worm.variantavastWin32:Trojan-gen {Other}AVG
(GriSoft)Backdoor.Rbot.joAvira...
W32/Sdbot.worm!0013EE48 - W32/Sdbot.worm!0013EE48 at McAfee
File PropertyProperty ValueFileName!itw#6.exeMcAfee DetectionW32/Sdbot.wormLength29,337
bytesCRC0013EE48MD5123763C51A64DB57496A216440970EB3SHA1C681031546EE871A551422C8EF102322825C8EB7Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)Injector.CBitDefenderTrojan.Dropper.
SBMEsetWin32/IRCBot.AHB trojanKasperskyTrojan.W...
Vundo!14BD9220 - Vundo!14BD9220 at McAfee
File PropertyProperty ValueFileName!itw#415.exeMcAfee DetectionVundoLength42,496
bytesCRC14BD9220MD55F9103E4685D74E51BF22D7ACD705445SHA1F194D2EF3DC750DEF679E13950F19569E300304COther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)Worm/Generic.IJYAviraBDS/Xili.42496BitDefenderTrojan.
Agent.AIZXDr.WebTrojan.Inject.3581Ese...
W32/Autorun.worm.gen!5F18E108 - W32/Autorun.worm.gen!5F18E108 at McAfee
File PropertyProperty ValueFileName!itw#419.exeMcAfee DetectionW32/Autorun.worm.genLength42,496
bytesCRC5F18E108MD5A5B7D933A84FDF5AB912472F43D4E0D5SHA17DAECC90888CAB971BCFE78EAC1D6D698F278AF4Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)worm/generic.imwEsetWin32/AutoRun.RM wormKasperskyWorm.
Win32.AutoRun.eilmic...
W32/Autorun.worm.aj!8FB9DF92 - W32/Autorun.worm.aj!8FB9DF92 at McAfee
File PropertyProperty ValueFileName!itw#422.exeMcAfee DetectionW32/Autorun.worm.ajLength60,984
bytesCRC8FB9DF92MD50940F107D41C78BA3E14C01B779A150DSHA1B64DC5581CA01024431E19B7BA8CFD6281C53FEAOther Common
Detection AliasesCompany NameDetection NameavastWin32:AutoRun-AIRAVG (GriSoft)Generic10.XFYAviraTR/Regdis.
60984BitDefenderBehavesLik...
W32/Generic.b!CA4A79A5 - W32/Generic.b!CA4A79A5 at McAfee
File PropertyProperty ValueFileName!itw#423.exeMcAfee DetectionW32/Generic.bLength909,312
bytesCRCCA4A79A5MD52A7F9F6F30202F0C4DB4AA2AE8CA3316SHA1FD05631077DE5FC377C8EB7C7CCA0003BF778E2BOther Common
Detection AliasesCompany NameDetection NameavastWin32:AutoRun-AHGAVG (GriSoft)Worm/Generic.
HGFAviraWorm/Autorun.dmz.1BitDefenderDropped:T...
BackDoor-DKA!6CD51C33 - BackDoor-DKA!6CD51C33 at McAfee
File PropertyProperty ValueFileName!itw#1.exeMcAfee DetectionBackDoor-DKALength19,596
bytesCRC6CD51C33MD5795BCC3632FF806A80C3736589F8A3F3SHA1C9C47BB8CE5F5770CBE8D0FD2D69972A9F302828Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/Flux.5760avastWin32:Trojan-gen {Other}AVG
(GriSoft)Worm/Generic.HCMAviraTR/Drop.A...
Generic PUP.x!7FC21FB7 - Generic PUP.x!7FC21FB7 at McAfee
This software is not a virus or a Trojan. It is detected as a "potentially unwanted program" (PUP). PUPs are
any piece of software that a reasonably security- or privacy-minded computer user may want to be informed of
and, in some cases, remove. PUPs are often made by a legitimate corporate entity for some beneficial purpose,
but th...
Spy-Agent.br.dll!01B43BB6 - Spy-Agent.br.dll!01B43BB6 at McAfee
File PropertyProperty ValueFileNamesvchoct.exeMcAfee DetectionSpy-Agent.br.dllLength127,252
bytesCRC01B43BB6MD536FC8A6D8C5ACA9D032939BE17D842E8SHA167F6BD18759260F8DA78430737857D3C96EFC189Other Common
Detection AliasesCompany NameDetection NameavastWin32:Pophot-AM [Trj]AviraBDS/Hupigon.GenBitDefenderTrojan.
Pophot.DDr.WebTrojan.Hitpop....
PWS-Gamania.gen.a!01CAE554 - PWS-Gamania.gen.a!01CAE554 at McAfee
File PropertyProperty ValueFileNamemmvo.exeMcAfee DetectionPWS-Gamania.gen.aLength100,958
bytesCRC01CAE554MD5F85BF7F91798B403786E49FE123095CESHA19C5BB9A2131295B57CC082B507F14D00A62F2780Other Common
Detection AliasesCompany NameDetection NameavastWin32:Rootkit-gen [Rtk]AviraTR/Crypt.XPACK.
GenBitDefenderPacker.Malware.NSAnti.1FortiNetS...
PWS-OnlineGames.cn!1B5591B7 - PWS-OnlineGames.cn!1B5591B7 at McAfee
File PropertyProperty ValueFileNamezz.exeMcAfee DetectionPWS-OnlineGames.cnLength127,488
bytesCRC1B5591B7MD5A23D8DEBAF697912B6B345972E0B3341SHA12DDD9E0A2FF13164BDA7FDE269ACE9AECB873F9EOther Common
Detection AliasesCompany NameDetection Namemicrosoftpws:win32/onlinegames.erAvert® Labs has observed the
following system activities:Ac...
PWS-OnlineGames.cn!879D2F36 - PWS-OnlineGames.cn!879D2F36 at McAfee
File PropertyProperty ValueFileNamezz.exeMcAfee DetectionPWS-OnlineGames.cnLength127,488
bytesCRC879D2F36MD5CAE479A3FB8A1662957348DA0DECB5C4SHA10211957C27B8C91315DDF568B6B2BBB82FDCE0B1Other Common
Detection AliasesCompany NameDetection Namemicrosoftpws:win32/onlinegames.erAvert® Labs has observed the
following system activities:Ac...
Troj/Agent-HRX - Troj/Agent-HRX at Sophos
...
Troj/Bckdr-QPI - Troj/Bckdr-QPI at Sophos
When first run Troj/Bckdr-QPI creates the following files:
<Temp>\sidebar.exe - also detected as Troj/Bckdr-QPI <Temp>\mount.exe - copy of
self...
Troj/Agent-HRW - Troj/Agent-HRW at Sophos
...
Troj/FakeAle-HO - Troj/FakeAle-HO at Sophos
...
Troj/FakeAle-HP - Troj/FakeAle-HP at Sophos
...
Troj/FakeAV-DS - Troj/FakeAV-DS at Sophos
...
Troj/Agent-HRT - Troj/Agent-HRT at Sophos
...
Troj/Agent-HRU - Troj/Agent-HRU at Sophos
...
Troj/Agent-HRV - Troj/Agent-HRV at Sophos
Troj/Agent-HRV is a Trojan for the Windows platform. When first run
Troj/Agent-HRV copies itself to <System>\kdltu.exe. The following registry entry
is changed to run kdltu.exe on startup: HKLM\SOFTWARE\Microsoft\Windows
NT\CurrentVersion\Winlogon ...
Troj/Buzus-P - Troj/Buzus-P at Sophos
Troj/Buzus-P is a Trojan for the Windows platform. When first run
Troj/Buzus-P copies itself to <Program Files>\bcd_installed.exe and creates the file <Root>\melt1.
bat. This file can simply be deleted.
...
0 writebacks [09/22/2008 04:45]
[]
permanent link
|
Virus Malware and Threat News for 20080920
W32/Sality!5A1187F0 - W32/Sality!5A1187F0 at McAfee
File PropertyProperty ValueFileNamei_view32.exeMcAfee DetectionW32/SalityLength516,096
bytesCRC5A1187F0MD5095AB69E9C85305F4E2BCBF7E02B6428SHA19C0BCBACF5ADEF361F85A0B6A1C832D1E9652452Other Common
Detection AliasesCompany NameDetection NameKasperskyVirus.Win32.Sality.aamicrosoftvirus:win32/sality.
amnormanw32/sality.aeAvert® Labs has...
W32/Sality!A4FEC1F4 - W32/Sality!A4FEC1F4 at McAfee
File PropertyProperty ValueFileNameiv_pla~1.exeMcAfee DetectionW32/SalityLength224,768
bytesCRCA4FEC1F4MD503D7E6999C0F01EAB643E21DF3FFEF7FSHA1D367E195EE82150CB7181E63A1F2E0A7BB25EB53Other Common
Detection AliasesCompany NameDetection Namemicrosoftvirus:win32/sality.amnormanw32/sality.aeAvert® Labs has
observed the following system...
W32/Sality!E766678B - W32/Sality!E766678B at McAfee
File PropertyProperty ValueFileNameslides~1.exeMcAfee DetectionW32/SalityLength160,256
bytesCRCE766678BMD55AA70D853AC8D14241AC2D0BBF74E3AFSHA1DC0697EA226554DA8C33F3F701D0A0ACB43AF38AOther Common
Detection AliasesCompany NameDetection Namemicrosoftvirus:win32/sality.amnormanw32/sality.aeAvert® Labs has
observed the following system...
PWS-OnlineGames.cn!25DDAD03 - PWS-OnlineGames.cn!25DDAD03 at McAfee
File PropertyProperty ValueFileNamezz.exeMcAfee DetectionPWS-OnlineGames.cnLength128,000
bytesCRC25DDAD03MD50F55BD9D24F1D05C3523B3CD127FBF3DSHA125CF359A13BA64CD1CEF930128BB98A160B4ACCAOther Common
Detection AliasesCompany NameDetection Namemicrosoftpws:win32/onlinegames.erAvert® Labs has observed the
following system activities:Ac...
Downloader-ASH.gen.b!FFECC000 - Downloader-ASH.gen.b!FFECC000 at McAfee
File PropertyProperty ValueFileNamescan.exeMcAfee DetectionDownloader-ASH.gen.bLength194,560
bytesCRCFFECC000MD565E182FDBCC14124638467821ECB8640SHA189DC04DD9BC6BB634B67431DA1FE83CA593E47F4Other Common
Detection AliasesCompany NameDetection NameKasperskyBackdoor.Win32.Frauder.fbAvert® Labs has observed the
following system activiti...
Troj/Agent-HRS - Troj/Agent-HRS at Sophos
...
Troj/Agent-HRQ - Troj/Agent-HRQ at Sophos
Troj/Agent-HRQ is a Trojan for the Windows platform. Troj/Agent-HRQ
includes functionality to access the internet and communicate with a remote server via HTTP.
Registry entries are created under: HKCU\Software\Applications
HKCR\vi...
Troj/Agent-HRR - Troj/Agent-HRR at Sophos
...
Troj/He4Hook-G - Troj/He4Hook-G at Sophos
Troj/He4Hook-G copies itself to <System>\cssrss.exe. Troj/He4Hook-G
creates the registry value HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run WMDM PMSP
Service <System>\cssrss.exe Troj/He4Hook-G drops the file
<System>\<...
Troj/Mfind-A - Troj/Mfind-A at Sophos
...
Troj/Autoit-W - Troj/Autoit-W at Sophos
...
Troj/Dload-DM - Troj/Dload-DM at Sophos
...
Troj/Dload-DN - Troj/Dload-DN at Sophos
Troj/Dload-DN is a Trojan for the Windows platform. Troj/Dload-DN includes
functionality to access the internet and communicate with a remote server via HTTP.
When Troj/Dload-DN is installed it creates the file <System>\bxdlib.dll. The file
bxdlib....
Troj/Dloadr-BTM - Troj/Dloadr-BTM at Sophos
...
Troj/Dloadr-BTN - Troj/Dloadr-BTN at Sophos
...
0 writebacks [09/21/2008 04:46]
[]
permanent link
|
Virus Malware and Threat News for 20080919
Generic.dx!ACA637D3 - Generic.dx!ACA637D3 at McAfee
File PropertyProperty ValueFileNamemessen~1.exeMcAfee DetectionGeneric.dxLength1,425,367
bytesCRCACA637D3MD52F46B45A6970C637FD6CC3EF73BB18B1SHA194E2C9D26024E22E014AAC4DF28A66FDE784DBD2Other Common
Detection AliasesCompany NameDetection NameAviraADSPY/AdSpy.GenKasperskyTrojan.Win32.Obfuscated.
vcamicrosoftTrojan:Win32/Skintrim.gen!DSym...
W32/Sality!E049EC1D - W32/Sality!E049EC1D at McAfee
File PropertyProperty ValueFileNameoabint~1.exeMcAfee DetectionW32/SalityLength283,648
bytesCRCE049EC1DMD58311D175545F850EE8883FE30D4DDF16SHA1E54ED28B873D355B99F05BD805962D3C9A027E13Other Common
Detection AliasesCompany NameDetection Namemicrosoftvirus:win32/sality.amnormanw32/sality.aeAvert® Labs has
observed the following system...
PWS-Banker!0A7E9ECE - PWS-Banker!0A7E9ECE at McAfee
File PropertyProperty ValueFileNamewindhe~1.exeMcAfee DetectionPWS-BankerLength5,470,898
bytesCRC0A7E9ECEMD56DE115AD86B8D237F0FE146762DCB1D7SHA1BA1C3BCFB9B74FF0A106741CBBFF45AB165F26C5Other Common
Detection AliasesCompany NameDetection NameavastWin32:Trojan-gen {Other}AVG (GriSoft)sheur.cjdxAviraTR/Crypt.
CFI.GenBitDefenderTrojan.Bank...
PWS-OnlineGames.cn!6F3C0DB7 - PWS-OnlineGames.cn!6F3C0DB7 at McAfee
File PropertyProperty ValueFileNamezz.exeMcAfee DetectionW32/VaklikLength128,512
bytesCRC6F3C0DB7MD51A97A06E0D2A004886AC6CB9F46D92E0SHA1F890685D0390D30CA9DC4F9EB0D70F796C173CA4Other Common
Detection AliasesCompany NameDetection Namemicrosoftpws:win32/onlinegames.erAvert® Labs has observed the
following system activities:ActivityRi...
FakeAlert-AB!AC029714 - FakeAlert-AB!AC029714 at McAfee
This software is not a virus or a Trojan. It is detected as a "potentially unwanted program" (PUP). PUPs are
any piece of software that a reasonably security- or privacy-minded computer user may want to be informed of
and, in some cases, remove. PUPs are often made by a legitimate corporate entity for some beneficial purpose,
but th...
Adware-ISM!5B2AC9E6 - Adware-ISM!5B2AC9E6 at McAfee
This software is not a virus or a Trojan. It is detected as a "potentially unwanted program" (PUP). PUPs are
any piece of software that a reasonably security- or privacy-minded computer user may want to be informed of
and, in some cases, remove. PUPs are often made by a legitimate corporate entity for some beneficial purpose,
but th...
Generic PWS.y!246CCAB8 - Generic PWS.y!246CCAB8 at McAfee
AVERT recommends to always use latest DATs and engine. This threat will be cleaned if you have this
combination.Additional Windows ME/XP removal
considerations...
Generic Downloader.x!FF859B44 - Generic Downloader.x!FF859B44 at McAfee
Avert® Labs has observed the following system activities:ActivityRisk LevelPerforms a shell execute of
downloaded or existing filesInformationalRegisters DLLsInformationalSystem ChangesThese are general defaults
for typical path variables. (Although they may differ, these examples are common.):%WinDir% = \WINDOWS
(Windows 9x/ME/XP...
Generic.dx!02C19871 - Generic.dx!02C19871 at McAfee
File PropertyProperty ValueFileNameUnavailableMcAfee DetectionGeneric.dxLength84,414
bytesCRC02C19871MD5C5B5D526015B6A6F25A99CC14BA77AB1SHA1A24320EB569F6868D7123ED4C8FA390EDEAD7FFEOther Common
Detection AliasesCompany NameDetection NameAviraHEUR/MalwareeSafe (Alladin)Suspicious fileEsetprobably unknown
NewHeur_PE virusF-ProtW32/Threa...
PWS-Gamania.gen.a!5CD7FF75 - PWS-Gamania.gen.a!5CD7FF75 at McAfee
File PropertyProperty ValueFileNamesorry.exeMcAfee DetectionPWS-Gamania.gen.aLength133,044
bytesCRC5CD7FF75MD525EF162A5FC45EC89BBCCE928FCFE651SHA12C1A3F68E9513799D3746ABEDB89403DAFC28B40Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)PSW.OnlineGames.2.AEKasperskyTrojan-GameThief.Win32.
Magania.acqomicrosoftTrojanD...
Generic BackDoor.t!800B66B5 - Generic BackDoor.t!800B66B5 at McAfee
File PropertyProperty ValueFileName4.exeMcAfee DetectionGeneric BackDoor.tLength569,856
bytesCRC800B66B5MD555e8ed474fdb832fb95661712a9ba8a5SHA156908E063D19D5AD8613525A6A3AC28FB76BFCEEAvert® Labs
has observed the following system activities:ActivityRisk LevelWrites executable in the windows
folderLowPerforms a shell execute of down...
BackDoor-AWQ.b!43F02B2E - BackDoor-AWQ.b!43F02B2E at McAfee
File PropertyProperty ValueFileName2.exeMcAfee DetectionBackDoor-AWQ.bLength505,344
bytesCRC43F02B2EMD5EBB59077B6BDD6A10163071BC600079FSHA1F1D0FDE1647D8E55788F9A77C9487CDD447E896BOther Common
Detection AliasesCompany NameDetection NameavastWin32:Hupigon-LEKAVG (GriSoft)Win32/FujacksBitDefenderBackdoor.
GrayBird.ANHDr.WebBackDoor.Pigeo...
BackDoor-AWQ!CB3B7122 - BackDoor-AWQ!CB3B7122 at McAfee
File PropertyProperty ValueFileName29e9b4c3_.exeMcAfee DetectionBackDoor-AWQLength709,632
bytesCRCCB3B7122MD529E9B4C35E19122C7EC856484170B65DSHA1989800C69C186F805058E2F0D03487710A2A9C51Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/Hupigon.GenavastWin32:Trojan-gen {Other}AVG
(GriSoft)Backdoor.HupigonAviraBDS...
W32/Nuwar@MM!CA18EBE2 - W32/Nuwar@MM!CA18EBE2 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCCA18EBE2MD5FDAC031730C631227333767F3DFE078CSHA15BAD7AB8ACA3FD1D6832734CD8D51A6088786BB2Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!8567229D - W32/Nuwar@MM!8567229D at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC8567229DMD53D2E3740BDC3EC4EE255BB1BECA5C067SHA1575D3B9988C24AC75FBF2D140F833FC5BCD65D37Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!0F3E6E10 - W32/Nuwar@MM!0F3E6E10 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC0F3E6E10MD5EDC6FDC12AC373F0D21730C09DCFEFB8SHA1D27845F4015E94BD06EE179284198DC58879014FOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!E5A49E9D - W32/Nuwar@MM!E5A49E9D at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCE5A49E9DMD5ECF790AAA92EA30ECB6D8F1D168FB935SHA12FCC3623F2866B0870AD5EEB11B7670826059001Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!361FC04A - W32/Nuwar@MM!361FC04A at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC361FC04AMD53EB1BC3B5CCA548BE9F1669F281C70D2SHA1C96D2D9E166CEBD1790C0CCE1F7432DECEDA04F8Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!060EF787 - W32/Nuwar@MM!060EF787 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC060EF787MD59D721BC0ABAE7A5145D988F68C8912B0SHA10F69E01A31EE8B88B44C578889F7B03A5CDA5131Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
Generic PUP.x!D4A8950A - Generic PUP.x!D4A8950A at McAfee
This software is not a virus or a Trojan. It is detected as a "potentially unwanted program" (PUP). PUPs are
any piece of software that a reasonably security- or privacy-minded computer user may want to be informed of
and, in some cases, remove. PUPs are often made by a legitimate corporate entity for some beneficial purpose,
but th...
W32/Nuwar@MM!D3C343CC - W32/Nuwar@MM!D3C343CC at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCD3C343CCMD581E92DF34140C4B9B2CF72BA284840F5SHA15F49948C6BBE335D16A829F09FA02D1DE820176AOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!EDFCEF1C - W32/Nuwar@MM!EDFCEF1C at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCEDFCEF1CMD55F05622C1A6A8B166C48028587B04FCESHA19E8765FCA6C8349B2733578EF0B4E117A9D70223Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!61C9CC3C - W32/Nuwar@MM!61C9CC3C at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC61C9CC3CMD5EC61BD786E0B670B4648104630102578SHA19403B9A0F35395DB53F1F4D47434251028B55F20Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
TROJ_RENOS.SYM - TROJ_RENOS.SYM at Trend Micro
This Trojan may be downloaded from remote sites by the malware TROJ_DISKEN.K.This Trojan drops a copy of
itself upon installation. It also drops component files, some of which are detected as JOKE_BLUESCREEN.This
Trojan creates a registry entry to enable its automatic execution at every system startup. It then modifies
the system's c...
Mal/ObfJS-F - Mal/ObfJS-F at Sophos
Mal/ObfJS-F is a malicious JavaScript Trojan within a web page. Mal/ObfJS-F
is intended to exploit a browser vulnerability when a malicious web page is viewed in order to download and
execute other malware.
...
Troj/Dloadr-BTL - Troj/Dloadr-BTL at Sophos
...
W32/Malas-G - W32/Malas-G at Sophos
W32/Malas-G is a worm for the Windows platform. W32/Malas-G spreads to
other network computers. When first run W32/Malas-G copies itself to:
<Temp>\svchost.exe <User>\userinit.exe <Common Files>\Microsoft
Shared\MS...
Mal/Banker-B - Mal/Banker-B at Sophos
...
Mal/VB-U - Mal/VB-U at Sophos
...
Troj/Agent-HRO - Troj/Agent-HRO at Sophos
Troj/Agent-HRO is a Trojan for the Windows platform. Troj/Agent-HRO
includes functionality to access the internet and communicate with a remote server via HTTP.
The following registry entry is created to run Troj/Agent-HRO on startup:
HKCU\Software\Micro...
Troj/Bifrose-WD - Troj/Bifrose-WD at Sophos
...
Troj/Dropr-AE - Troj/Dropr-AE at Sophos
...
Troj/SmalDl-Gen - Troj/SmalDl-Gen at Sophos
...
0 writebacks [09/20/2008 04:44]
[]
permanent link
|
Virus Malware and Threat News for 20080918
W32.Savix - W32.Savix at Norton Symantec
W32.Savix is a worm that spreads through fixed drives and removable media.
...
Backdoor.Tidserv - Backdoor.Tidserv at Norton Symantec
Backdoor.Tidserv is a Trojan horse that opens a back door on the compromised computer.
...
W32/Nuwar@MM!B142DCF1 - W32/Nuwar@MM!B142DCF1 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCB142DCF1MD52751DA4365F6ACBF2AAF23CD4D8A8AEFSHA15458C4DF12DB6351C064FC663B9350D93A5FB70DOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!1C457A5D - W32/Nuwar@MM!1C457A5D at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC1C457A5DMD51977AECCFC6874F12FAE2466D3D63776SHA160D1155DB9B9A51F05AE21C81090FBC15C6EF20EOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!FC129708 - W32/Nuwar@MM!FC129708 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCFC129708MD58798E039F65E9721E47C19D32260E6EDSHA1E8E378BC99A861903E9D2325B5DFC816AFBDC445Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!A6E113EE - W32/Nuwar@MM!A6E113EE at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCA6E113EEMD59EF866C65CBC14607DE0D6A0E3699174SHA10DAF0FCA8E79A86A0FDF7B1CF34E67AB9ED76158Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!49B8843F - W32/Nuwar@MM!49B8843F at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC49B8843FMD5663CD5058F0C7DABB68F205C5F4419AESHA1091E713DF72BD2F28DC4AB0DD9E496AF97AEBB01Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
Generic PUP.x!9E7E39B2 - Generic PUP.x!9E7E39B2 at McAfee
This software is not a virus or a Trojan. It is detected as a "potentially unwanted program" (PUP). PUPs are
any piece of software that a reasonably security- or privacy-minded computer user may want to be informed of
and, in some cases, remove. PUPs are often made by a legitimate corporate entity for some beneficial purpose,
but th...
W32/Nuwar@MM!2F4C80EB - W32/Nuwar@MM!2F4C80EB at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC2F4C80EBMD5C27104B55AE0E7CD3855C18BFF1B7CDESHA1862DE4EE3962C4EC3975D2DFE2D66CCA251EBF9FOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
Generic PUP.x!87DA709E - Generic PUP.x!87DA709E at McAfee
This software is not a virus or a Trojan. It is detected as a "potentially unwanted program" (PUP). PUPs are
any piece of software that a reasonably security- or privacy-minded computer user may want to be informed of
and, in some cases, remove. PUPs are often made by a legitimate corporate entity for some beneficial purpose,
but th...
W32/Nuwar@MM!2B344C10 - W32/Nuwar@MM!2B344C10 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC2B344C10MD5EAA9D9F6F54BE9D2796FD92990154E2FSHA105BF9D09F1083DFFAA6041B48E0247723B2201CFOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!B0459672 - W32/Nuwar@MM!B0459672 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCB0459672MD5057874F1C2C9D95185D185536F905B81SHA165151015D6AEE32AD468E62AC2DD14D291D00AA9Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!7CB96854 - W32/Nuwar@MM!7CB96854 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC7CB96854MD5FD79534C8BC3E5053EB8E5712108E9F6SHA1A07766E82B7C317AA60ADF69B160D30B5AFA0EA8Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
Generic.dx!CF3D2AEE - Generic.dx!CF3D2AEE at McAfee
File PropertyProperty ValueFileNamepygaje.exeMcAfee DetectionGeneric.dxLength7,680
bytesCRCCF3D2AEEMD5DC6FF464E9A3DD209AF7CD0C2D35EC68SHA141D596C17CE240F7DA7C887C18ACA605F9AA5272Other Common
Detection AliasesCompany NameDetection NameavastWin32:Agent-QNKAVG (GriSoft)agent.aawgAviraTR/Spy.
GenBitDefenderGeneric.Malware.FYd.9E815AAEDr.W...
W32/Nuwar@MM!2CC830EF - W32/Nuwar@MM!2CC830EF at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC2CC830EFMD5B912F93D9E0FBA0B59E8B94FC0928C8ESHA110AB78F0B9CD836507C372A3DAD5FE3E79D26818Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!F28350A8 - W32/Nuwar@MM!F28350A8 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCF28350A8MD530FE0E27811FC079DB999CD64A68173ESHA1EC2582C2703F05CF22209BC6F378F4241ADD9727Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!40017B43 - W32/Nuwar@MM!40017B43 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC40017B43MD5DB0F71AAD6F4108FD038ED0E82A7E572SHA188257572798942E04EF472E388D59E8084FF32A0Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!715B8294 - W32/Nuwar@MM!715B8294 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC715B8294MD562619D3E9B7935AE1A898F3816D0E0DASHA1E873D1987E45528F90842EC6C025F447EDCA8D76Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!395758CE - W32/Nuwar@MM!395758CE at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC395758CEMD5D811B3FBE5A86C7B9BDE064A690BCF8ESHA1D6C809888EAE927F3199F4D13F569F1F598CC0DCOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!B9E27162 - W32/Nuwar@MM!B9E27162 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCB9E27162MD508AF548E5008D835E69547644F079CA2SHA106AED39B5939FC53530B42B9C2E582CB5BBC64B9Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!3183E8E5 - W32/Nuwar@MM!3183E8E5 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC3183E8E5MD5FB720FC2CEAD9B7DA0B3C83303E5CB56SHA1EF708C145AA69645A62F899D2CC5A1300BE6D821Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!CB1846E8 - W32/Nuwar@MM!CB1846E8 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCCB1846E8MD56D7AE20EF569625155FCF1EB3F96694BSHA1D6D356AFC2301A72BDD66C1B9E6EEE141BE69BFEOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!B42B3411 - W32/Nuwar@MM!B42B3411 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCB42B3411MD5DFF6E3DED80E5A9EF4FA214D5F2DE95DSHA10216B42133880E62A3D741E80F8C1A0DDFE0F7B1Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
Generic Downloader.x!4A9BE43F - Generic Downloader.x!4A9BE43F at McAfee
File PropertyProperty ValueFileName30d3ea~1.exeMcAfee DetectionGeneric Downloader.xLength11,264
bytesCRC4A9BE43FMD530D3EA943CEA4F366023EA576746BA55SHA12E1F367E78FA421F3023AEC6FFD5C72397CC6275Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/Agent.11264.GUavastWin32:Agent-PBEAVG
(GriSoft)unknown virus Win32/DH.1...
W32/Nuwar@MM!DF9B4438 - W32/Nuwar@MM!DF9B4438 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCDF9B4438MD530556F4FF151528AB2C5D829061BA6E1SHA14A06269C0A60070FEAB673CB8AC0B0A0EF53D5F8Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!247011C5 - W32/Nuwar@MM!247011C5 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC247011C5MD5FC95DD46254A9CC3F4FAC9047D54D27CSHA15BD2BC49F3DEDCA43D1A3BB24140E2BF96FDE854Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!2B5C60DD - W32/Nuwar@MM!2B5C60DD at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC2B5C60DDMD5937033ABFCABDBBD42B417466E5C9966SHA1A1382F394A7E83D240B014C1C471E4F5169520B9Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!A973DDC3 - W32/Nuwar@MM!A973DDC3 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCA973DDC3MD55909335248E0DD63E274372F5E65D0A6SHA16DFF7E0AED347FB4A643A09C770A7D39E07C5FEBOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Vaklik!634725AC - W32/Vaklik!634725AC at McAfee
File PropertyProperty ValueFileNamezz.exeMcAfee DetectionW32/VaklikLength124,928
bytesCRC634725ACMD51D16A7105A9960E7B676A1323498C30FSHA112F2713E94DCD466A4634DB60DB1F511A2343B44Other Common
Detection AliasesCompany NameDetection Namemicrosoftpws:win32/onlinegames.ernormansandbox: w32/viking.gen5.
dropperAvert® Labs has observed the ...
Spam-Generic!FF695F58 - Spam-Generic!FF695F58 at McAfee
File PropertyProperty ValueFileNamejogo2.exeMcAfee DetectionSpam-GenericLength1,972,224
bytesCRCFF695F58MD5D5DE3D650CE8EEBE826E5296A29B7361SHA17EB224F919087F28DD11C61F0E2AB6239F1CBC13Other Common
Detection AliasesCompany NameDetection NameBitDefenderGeneric.Banker.Delf.
7548F7A9F-ProtW32/Trojan-juke-based!MaximusKasperskyWorm.Win32.Ro...
W32/Nuwar@MM!59418D13 - W32/Nuwar@MM!59418D13 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC59418D13MD5BD3A2D5CDA36F2FE12343C148F6325F2SHA16E852843026D225B8D3DB4BB019E9C0E0D067A3BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!A3DC5F5F - W32/Nuwar@MM!A3DC5F5F at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCA3DC5F5FMD5AF796890A0259229F191B6D4AD714473SHA1A72B78064D9F30A74CB874AE285E072F6562EC05Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
Singu.AM - Singu.AM at Panda
It is designed to open a port in the affected computer, through which it can be remotely controlled by an
attacker. It does not spread automatically by its own means.
...
Goldun.TB - Goldun.TB at Panda
It steals passwords and information from electronic payment systems, such as e-gold. It reaches the
computer in an email message passing itself off as the Internet Service Provider Consorcium.
...
Mal/EncPk-FC - Mal/EncPk-FC at Sophos
...
Troj/Agent-HRJ - Troj/Agent-HRJ at Sophos
...
Troj/Agent-HRK - Troj/Agent-HRK at Sophos
...
Troj/Inject-CW - Troj/Inject-CW at Sophos
...
W32/Autorun-EK - W32/Autorun-EK at Sophos
W32/Autorun-EK is a worm for the Windows platform. When W32/Autorun-EK is
installed the following files are created: <Temp>\rememberthis.exe
<Windows>\UNISNTLV32.exe <Windows>\services.exe <Windows>\ulodb3.ini
...
W32/AutoRun-JN - W32/AutoRun-JN at Sophos
...
W32/HostInf-A - W32/HostInf-A at Sophos
W32/HostInf-A is a worm with IRC backdoor functionality for the Windows platform.
W32/HostInf-A modifies the infected computers hosts file. W32/HostInf-A runs
continuously in the background, providing a backdoor server which allows a remote intruder to gain access and
control ...
W32/IRCBot-ACT - W32/IRCBot-ACT at Sophos
...
W32/Rbot-GXB - W32/Rbot-GXB at Sophos
...
Troj/Agent-HRI - Troj/Agent-HRI at Sophos
Troj/Agent-HRI is a Trojan for the Windows platform. When first run,
Troj/Agent-HRI copies itself to <System>\mscdexntx.exe and sets the following registry to run itself on
startup: HKLM\SOFTWARE\Microsoft\Windows_NT\CurrentVersion\Winlogon Userinit
...
0 writebacks [09/19/2008 04:44]
[]
permanent link
|
Virus Malware and Threat News for 20080917
Backdoor:W32/Hupigon.EMV - Backdoor:W32/Hupigon.EMV at F-Secure
A backdoor is a Remote Administration Tools (RAT) that expose infected machines to external control via the
Internet by remote attackers.
...
W32/Nuwar@MM!1DAA3CA2 - W32/Nuwar@MM!1DAA3CA2 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC1DAA3CA2MD5F5CE6163540EA25F8676DE893069C578SHA1083170B317740FBB3ED59294F07A01FF02C54ADBOther Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!5AF73EE6 - W32/Nuwar@MM!5AF73EE6 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC5AF73EE6MD5FB5F013F43C7454CB8C3E8BD7768A094SHA1B6007BA7987FB786C63C538F86E06B47D18EF19BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!0FE96179 - W32/Nuwar@MM!0FE96179 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC0FE96179MD5C6E229766E9A33CD4D90A9DB946A8E61SHA1803AA930523FF70D130FEE71547B8B32BD5707DFOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
Generic.i!F4AB3D1D - Generic.i!F4AB3D1D at McAfee
File PropertyProperty ValueFileNamebvkykt.exeMcAfee DetectionGeneric.iLength453,724
bytesCRCF4AB3D1DMD5D2C895094E5FB3CCA195EF1AC9D2465CSHA112A9DF28148E79B173C203DC67A1DA94FA2EC5DEOther Common
Detection AliasesCompany NameDetection NameDr.WebWin32.HLLW.Autoruner.2691eSafe (Alladin)suspicious
Trojan/Worm [101]FortiNetPossibleThreatKasp...
W32/Nuwar@MM!9A18D835 - W32/Nuwar@MM!9A18D835 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC9A18D835MD5096B3F1D1B6318E73708B2D936F40CBESHA1970B79962ECC724A730F434E48BD6068A6F48F70Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!88B89AF4 - W32/Nuwar@MM!88B89AF4 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC88B89AF4MD59A45FB286E7809C38126705F6CA2CBD1SHA1AD490861C9803C8580417C0090048564D937FC4COther Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
Generic Downloader.x!C9D6098A - Generic Downloader.x!C9D6098A at McAfee
File PropertyProperty ValueFileNamepostal.exeMcAfee DetectionGeneric Downloader.xLength80,896
bytesCRCC9D6098AMD5F0F37157EF2FE08A135A6BC7AC4A0F88SHA1557100D0F7FDFE9CA2ED1490B0DC29E2658FF5BCOther Common
Detection AliasesCompany NameDetection NameavastWin32:Trojan-gen {Other}AVG (GriSoft)Downloader.Generic7.
ACHAAviraTR/Dldr.VB.gdwBitDe...
W32/Nuwar@MM!FD3FAE9E - W32/Nuwar@MM!FD3FAE9E at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCFD3FAE9EMD5D95B8A40446BC47BBF9C77ECA173CDA5SHA14DA15876C0C939BC396E114FBBEF7C754939BF0FOther Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Sality!72298096 - W32/Sality!72298096 at McAfee
File PropertyProperty ValueFileNamedmcpl.exeMcAfee DetectionW32/SalityLength1,396,736
bytesCRC72298096MD5B36A265C40BB67816468274E46FFFE24SHA18348D6AA7326E3C8259BC857D9C690BFD143BDBFOther Common
Detection AliasesCompany NameDetection NameahnlabWin32/Kashu.BavastWin32:
Sality-genAviraHEUR/MalwareBitDefenderWin32.Sality.OGDr.WebWin32.Sec...
FakeAlert-R.dll!09ECFEBB - FakeAlert-R.dll!09ECFEBB at McAfee
File PropertyProperty ValueFileNameserial~1.exeMcAfee DetectionFakeAlert-R.dllLength57,869
bytesCRC09ECFEBBMD5FD6774BBC5F41A474F6BAB7F48747310SHA191C3B4A68986E0D67C3489B095578805F874E16COther Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/Bho.57863avastWin32:Adware-gen [Adw]AVG
(GriSoft)FakeAlert.BSAviraTR/BHO.ffb...
W32/Nuwar@MM!17D7B520 - W32/Nuwar@MM!17D7B520 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC17D7B520MD5E6CA16300D8AEDE9CDCE6486C95B6033SHA13C7150386627BAC2C272F2DABD3321F005895170Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!7C89E419 - W32/Nuwar@MM!7C89E419 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC7C89E419MD575F0F2C30ADEF5D305C2DF4CCDB3D765SHA1F3698E6F0E6EDC880353838FE4C6C7012C284F95Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
FakeAlert-R.dll!45555C76 - FakeAlert-R.dll!45555C76 at McAfee
File PropertyProperty ValueFileNameserial~1.exeMcAfee DetectionFakeAlert-R.dllLength57,869
bytesCRC45555C76MD544ABAC9704218927D3668B04ECDAB8BBSHA1F72B00453C26659A2262D3B3E64EFAED3DB9E031Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/Bho.57863avastWin32:Adware-gen [Adw]AVG
(GriSoft)FakeAlert.BSAviraTR/BHO.ffb...
W32/Autorun.worm.gen!FCCDF894 - W32/Autorun.worm.gen!FCCDF894 at McAfee
File PropertyProperty ValueFileNameimgtas~1.exeMcAfee DetectionW32/Autorun.worm.genLength20,480
bytesCRCFCCDF894MD5EC2BE395EE7F66546499DECCBBD912B5SHA145D2C1C8FF2F32B8C6781F2CA96CAFDEA5FA467AOther Common
Detection AliasesCompany NameDetection NameavastWin32:Rootkit-genmicrosoftworm:win32/autorun.expandaSuspicious
filevba32Worm.Win32....
FakeAlert-AB.dr!1FB0FEA1 - FakeAlert-AB.dr!1FB0FEA1 at McAfee
File PropertyProperty ValueFileNamee-card~1.exeMcAfee DetectionFakeAlert-AB.drLength33,395
bytesCRC1FB0FEA1MD5A2218737D07FF9BAA3023A1BE08D5DAFSHA1DC2B9E74335158948ABE91FCB5997BC67FC46EEAOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)Win32/HeureSafe (Alladin)Suspicious filevba32suspected
of Malware-Cryptor.Win32....
Generic Downloader.z!45172850 - Generic Downloader.z!45172850 at McAfee
File PropertyProperty ValueFileNamecontra~1.exeMcAfee DetectionGeneric Downloader.zLength66,560
bytesCRC45172850MD5A189D2FBB2F3ED3E72B6E0F3BBD80A4FSHA1E39EB24958C9A375B2F4B383B14947E6FA58FA5BOther Common
Detection AliasesCompany NameDetection NameEsetWin32/AutoRun.ZV wormFortiNetSuspiciousKasperskyTrojan.Win32.
Agent.adyfSophosMal/Enc...
Generic PUP.x!5265CB6F - Generic PUP.x!5265CB6F at McAfee
This software is not a virus or a Trojan. It is detected as a "potentially unwanted program" (PUP). PUPs are
any piece of software that a reasonably security- or privacy-minded computer user may want to be informed of
and, in some cases, remove. PUPs are often made by a legitimate corporate entity for some beneficial purpose,
but th...
Generic PUP.x!966D1663 - Generic PUP.x!966D1663 at McAfee
This software is not a virus or a Trojan. It is detected as a "potentially unwanted program" (PUP). PUPs are
any piece of software that a reasonably security- or privacy-minded computer user may want to be informed of
and, in some cases, remove. PUPs are often made by a legitimate corporate entity for some beneficial purpose,
but th...
W32/Nuwar@MM!E362E437 - W32/Nuwar@MM!E362E437 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCE362E437MD51626EE5F33235E7C693CB7D2D4A9E985SHA1FBD35FD3E35EF71FCFD5AA307F82AF6FCCA9473FOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!0A62C455 - W32/Nuwar@MM!0A62C455 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC0A62C455MD5EF3291BA1D6A89EE4C404F9CB4372438SHA129A3E44BEDF302BDC3B700396C44C0237D93209BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!04957F28 - W32/Nuwar@MM!04957F28 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC04957F28MD50D871F3311B4CAD182504EF523CBC81ESHA12098DB6AB27687F76BC187A264F87519F1667AC2Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!AF09A194 - W32/Nuwar@MM!AF09A194 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCAF09A194MD5312E6B88A6E3CEF299272AC3ACFD3F58SHA13FDA714BA334F1E878114115135904C7052422BFOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!657A4107 - W32/Nuwar@MM!657A4107 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC657A4107MD5F3084E1B668354CEB8D83C9889FC5779SHA1924D3BCE4B3B779F1BD776BB1C28240EA98C8CC3Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!08752C02 - W32/Nuwar@MM!08752C02 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC08752C02MD5ED954C4D9EFF1A842CA0D9BE8ABD465CSHA174961CFFDFC04C8D36E0DFDEBC8A9008D4C22A25Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!50FBBE23 - W32/Nuwar@MM!50FBBE23 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC50FBBE23MD5683DC3405230EA7AFB91AAEBC1E41DC2SHA140A917481AFDE8DF8436A024B04298EBCF0BE992Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!04987B8D - W32/Nuwar@MM!04987B8D at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC04987B8DMD524A84BD28774CFAA1DEE8283E3E798B7SHA198E53049BFBAC2D254901005B355F672FC9276F6Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!9FB629CB - W32/Nuwar@MM!9FB629CB at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength84,480
bytesCRC9FB629CBMD5D44A6D1FB7115A0864FCD45C9E656F08SHA13A9B991FC1C3D57A256185BB98E114BDC147C220Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
Generic PUP.x!40B46ED6 - Generic PUP.x!40B46ED6 at McAfee
This software is not a virus or a Trojan. It is detected as a "potentially unwanted program" (PUP). PUPs are
any piece of software that a reasonably security- or privacy-minded computer user may want to be informed of
and, in some cases, remove. PUPs are often made by a legitimate corporate entity for some beneficial purpose,
but th...
W32/Nuwar@MM!A256FE21 - W32/Nuwar@MM!A256FE21 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCA256FE21MD55FCCB9624E5D0DC556277B0E778F7E6BSHA1D648430EF18338585B582A9BA5ABCB273A31B610Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!5D56C9E1 - W32/Nuwar@MM!5D56C9E1 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC5D56C9E1MD55849A2D7B97E334FF0E5E1F7A3F57D71SHA1EE720761AB55B64714403896D3D9EEEF29BD43F6Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
TROJ_DROPPER.BX - TROJ_DROPPER.BX at Trend Micro
This Trojan may be downloaded from remote sites by other malware.It may be downloaded from certain remote
sites.It drops component files detected as TROJ_BHO.EZ.It then executes the dropped file(s). As a result,
malicious routines of the dropped files are exhibited on the affected system.
...
Mal/Basine-A - Mal/Basine-A at Sophos
...
W32/Autoit-V - W32/Autoit-V at Sophos
...
Troj/Delf-FBD - Troj/Delf-FBD at Sophos
Troj/Delf-FBD is a Trojan for the Windows platform. Troj/Delf-FBD includes
functionality to access the internet and communicate with a remote server via HTTP.
When first run Troj/Delf-FBD copies itself to <User>\Application Data\Adobe\Manager.exe.
...
Troj/FakeAle-HL - Troj/FakeAle-HL at Sophos
Troj/FakeAle-HL is a Trojan for the Windows platform. Troj/FakeAle-HL
includes functionality to access the internet and communicate with a remote server via HTTP.
When first run Troj/FakeAle-HL copies itself to <System>\lphcjgvj0enf1.exe and creates the
following files: ...
Troj/FakeAV-DN - Troj/FakeAV-DN at Sophos
Troj/FakeAV-DN is a Trojan for the Windows platform. When Troj/FakeAV-DN is
installed it creates the file <System>\<random>.exe. The file
<random>.exe is detected as Troj/FakeAV-Gen.
...
Troj/Inject-CU - Troj/Inject-CU at Sophos
Troj/Inject-CU is a Trojan for the Windows platform. When Troj/Inject-CU is
installed it creates the file <System>\Ir32_a.exe. The following registry entry
may be set: HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
Userinit ...
Troj/Wintrim-H - Troj/Wintrim-H at Sophos
...
W32/AutoInf-O - W32/AutoInf-O at Sophos
W32/AutoInf-O is a worm for the Windows platform. W32/AutoInf-O attempts to
record keystrokes and send the captured information via email. When first run,
W32/AutoInf-O copies itself to the following location: <Windows>\system\<5
random characte...
W32/Autorun-JM - W32/Autorun-JM at Sophos
W32/Autorun-JM is a worm for the Windows platform. The worm spreads via removable storage devices
and network shares. When W32/Autorun-JM is installed it creates the folder:
<System>\ntfs and in the folder creates the following files:
...
0 writebacks [09/18/2008 04:44]
[]
permanent link
|
Virus Malware and Threat News for 20080916
Trojan-Downloader:W32/ConHook.APX - Trojan-Downloader:W32/ConHook.APX at F-Secure
This type of trojan secretly downloads malicious files from a remote server, then installs and executes the
files....
Worm:W32/Autorun.NDS - Worm:W32/Autorun.NDS at F-Secure
A standalone malicious program which uses computer or network resources to make complete copies of itself. May
include code or other malware to damage both the system and the network.
...
VirusResponseLab - VirusResponseLab at Norton Symantec
BehaviorVirusResponseLab is a misleading application that may give exaggerated reports of threats on the
computer....
W32/Nuwar@MM!67A292DE - W32/Nuwar@MM!67A292DE at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC67A292DEMD5F8D6BF9F75B798EA86D9EC891A22246DSHA1FFEA77EAE007486EE53FEFC476B3309D1094DC80Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!C99E0B08 - W32/Nuwar@MM!C99E0B08 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCC99E0B08MD5B32085C040C284B141D5CFCAC0B5ECDBSHA1762B2D27021DD4EEAF5B4F41473AFAC3FB38AF2FOther Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!18ECB0EA - W32/Nuwar@MM!18ECB0EA at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength82,432
bytesCRC18ECB0EAMD594E2713C9785FCA4BC44C0339E81281ASHA1394DF68641ECEDD666C95BFD427472BEEBFC8A5AOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!7414033F - W32/Nuwar@MM!7414033F at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC7414033FMD5758E5160C2667EBD383EDAEA8A8DC350SHA13DC3E9CA7255D2744A165058B0AF6490354CD02FOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!A6C48E18 - W32/Nuwar@MM!A6C48E18 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCA6C48E18MD5FB5A6019EA89AD539617C09A38446A4ESHA17895EC2E9C7CCC33423CB578FE311CCAEB61DEB8Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!50ED813E - W32/Nuwar@MM!50ED813E at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC50ED813EMD5F349BF2080BEA1E15E690DD0AD63CC0FSHA1DDF66E7D9B59D1DF8020C8E85A7F559C80A832F4Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!9ECB6C13 - W32/Nuwar@MM!9ECB6C13 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC9ECB6C13MD5F667C94112407DDCE3DC2BE50AC31028SHA1E62906F591C5F5CF9758BCF4C45EB1AF8995F7EBOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!AC8E4D71 - W32/Nuwar@MM!AC8E4D71 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCAC8E4D71MD503904E5AAD8846F75BF9A0F642FBD571SHA10761608DB0616699BB85529BAFD95C93D8A91CF3Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!0FB6A17A - W32/Nuwar@MM!0FB6A17A at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC0FB6A17AMD5A68829942E04B48A32A21F390C9D4749SHA141A7DC6A0AEF6AC226233DEC7287D1A5E8A18A51Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!11E066CD - W32/Nuwar@MM!11E066CD at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC11E066CDMD555B279DC0F3F772DE8D3329E6BF62D9CSHA104410954367E225B7FE1A784DB5AAD9195BF867COther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!C0C8833F - W32/Nuwar@MM!C0C8833F at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCC0C8833FMD59B995327ADFE0282C9D6986828E8C257SHA15727B85C5F3E0A3DD1B07EAD41E71AC873E52BDAOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!DF7BC48D - W32/Nuwar@MM!DF7BC48D at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCDF7BC48DMD5B55F5C3BB9A4461EEE8AB2DA18ECB258SHA1F6B12900B79AC8FA66EAB26855671161FEF60DE1Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!3641B068 - W32/Nuwar@MM!3641B068 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC3641B068MD5710A0B897BF99CBDE8DDD1B9564A51BASHA1CC8A5B04162CD5309DB10C25BC449F814F99CEFDOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!EF108B43 - W32/Nuwar@MM!EF108B43 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCEF108B43MD5976A455FC7D6E534108A1BB145D4287ESHA15B3B8037C7497F43FF38D85CA6DBDE0946844B2FOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!A0788784 - W32/Nuwar@MM!A0788784 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCA0788784MD5BD288CF1D9174231031676C9DDCFB4A8SHA1858ABD93AF8FAD1B770B56367C208BDF6B7F8923Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!8AC87C3D - W32/Nuwar@MM!8AC87C3D at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC8AC87C3DMD55D0E4CE582797603D75C1826D4D455D4SHA1CEE0686C7A52B5560458C2DE7620D97C64E0686EOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!AC89B6EC - W32/Nuwar@MM!AC89B6EC at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCAC89B6ECMD54CC351D9D175EFE7C3DBFF2A5C53862ASHA143128B797E0B3E7AE2E2FE4D565B6BBE2F1A8585Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!65A322F3 - W32/Nuwar@MM!65A322F3 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC65A322F3MD5F7DE3D38A2F9CCC9C2B0808C42D5A55DSHA1301535EEBF1E258FFA3EDD61E41CA8323112359AOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!34130594 - W32/Nuwar@MM!34130594 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC34130594MD50ABE0833045076B6C65ED3EB5A2403FCSHA1C451DFE15956774FF56C656CDB2483B3557E8298Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!DAED7A78 - W32/Nuwar@MM!DAED7A78 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCDAED7A78MD51B46DD4746DBED003AACBAC11D458151SHA1C6505A8723CCEDD1849A8F85BA5DCE2C69790E3BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Vaklik!E8A2E617 - W32/Vaklik!E8A2E617 at McAfee
File PropertyProperty ValueFileNamezz.exeMcAfee DetectionW32/VaklikLength127,488
bytesCRCE8A2E617MD5DE8FE1DFDE514B74765869C60B78B3CASHA1788523006C4A6D84C928BB4B9C740FA3574001DCOther Common
Detection AliasesCompany NameDetection Namemicrosoftpws:win32/onlinegames.ernormansandbox: w32/viking.gen5.
dropperSymantecW32.Gammima.AGAvert® ...
W32/Nuwar@MM!7B83695F - W32/Nuwar@MM!7B83695F at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC7B83695FMD55694384E786D958E775CB1A9DD4D1E4ESHA180177600A58DC2B94F944B6A92859B2E1AA27568Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!677B58B1 - W32/Nuwar@MM!677B58B1 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC677B58B1MD5C989EE1F7E4F3C0C22B798FE9B547BDDSHA16BD17D9AE18D6ED4263C186149E96039AB870EF7Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!E537C4CB - W32/Nuwar@MM!E537C4CB at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCE537C4CBMD5E3CE8747C91CEB0245B10495BD306FEDSHA14ABA7A9DFDC26D1D9BAC9352591FC3E56E898E15Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!08560F78 - W32/Nuwar@MM!08560F78 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC08560F78MD5AF76FF539B4B5DD36582983D255E77C6SHA1B60DF4926C9DCE307B1B096A0D229FAD153C07D2Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!990759B1 - W32/Nuwar@MM!990759B1 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC990759B1MD5A0B629CE24F227C8106D263A47D0CD18SHA14E43349EA8079197C302AFBB5B205D171FD81AA4Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!102B90FD - W32/Nuwar@MM!102B90FD at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC102B90FDMD559A10EC1B18D307216D8339A55CB218ESHA1E72F97BBBE1820E64E036BB0F970516C9EC2C76FOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!D30C5473 - W32/Nuwar@MM!D30C5473 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength82,432
bytesCRCD30C5473MD552A77A968B4C0140C86F1C3F428FA5AFSHA11BD6AA5E58CA69DC78E825F87D6DB96806693870Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!22195D0C - W32/Nuwar@MM!22195D0C at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC22195D0CMD5CE01C7ED86EE8B2C8280A70CAC29007FSHA1F201F1E209AB4D76568632A4B49CC318B7ED987FOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
TROJ_MEREDROP.GJ - TROJ_MEREDROP.GJ at Trend Micro
...
TROJ_PIDIEF.BC - TROJ_PIDIEF.BC at Trend Micro
This Trojan may be downloaded from remote Web sites by other malware. It may also be downloaded from certain
remote Web sites.It accesses Web sites to download files. As a result, malicious routines of the downloaded
files are exhibited on the affected system.It exploits a known vulnerability in Adobe Reader versions 8.1.1
and earlie...
TROJ_QHOST.BA - TROJ_QHOST.BA at Trend Micro
This Trojan may arrive as a file dropped by other malware or as a file downloaded unknowingly by users when
visiting malicious Web sites.Upon execution it creates registry entry and key. It also modifies the system's
HOSTS file, so that a certain URL can no longer be accessed by affected users. It also redirects users to an
IP addres...
Sinowal.VTJ - Sinowal.VTJ at Panda
...
JS/Psyme-JV - JS/Psyme-JV at Sophos
...
Troj/Agent-HRD - Troj/Agent-HRD at Sophos
...
Troj/Dloadr-BTD - Troj/Dloadr-BTD at Sophos
...
Troj/Lineag-GI - Troj/Lineag-GI at Sophos
...
Troj/PDFEx-S - Troj/PDFEx-S at Sophos
...
W32/Tilebot-KY - W32/Tilebot-KY at Sophos
W32/Tilebot-KY is a worm for the Windows platform. W32/Tilebot-KY includes
functionality to access the internet and communicate with a remote server via HTTP.
When first run W32/Tilebot-KY copies itself to <System>\drivers\winlogon.exe. The
followi...
Troj/BHO-HA - Troj/BHO-HA at Sophos
Troj/BHO-HA is a Trojan for the Windows platform. When Troj/BHO-HA is
installed it creates the file <System>\msblk.ico. This file may be deleted. The
Troj/BHO-HA is registered as a COM object, plugin and Browser Helper Object (BHO) for Microsoft Internet
Explorer, creati...
Troj/Dloadr-BTB - Troj/Dloadr-BTB at Sophos
...
Troj/Dloadr-BTC - Troj/Dloadr-BTC at Sophos
...
Troj/FakeAV-DM - Troj/FakeAV-DM at Sophos
Troj/FakeAV-DM is a Trojan for the Windows platform. Troj/FakeAV-DM
includes functionality to access the internet and communicate with a remote server via HTTP.
When first run Troj/FakeAV-DM copies itself to <Program Files>\Smart Antivirus 2009\Smart
Antivirus-2009.exe a...
0 writebacks [09/17/2008 04:48]
[]
permanent link
|
Virus Malware and Threat News for 20080915
Rootkit:W32/Agent.TZ - Rootkit:W32/Agent.TZ at F-Secure
A program or set of programs which hides itself by subverting or evading the computer's security mechanisms,
then allows remote users to secretly control the computer's operating system.
...
Downloader-ASH.gen.b!1D22B10B - Downloader-ASH.gen.b!1D22B10B at McAfee
File PropertyProperty ValueFileNamescan~1.exeMcAfee DetectionDownloader-ASH.gen.bLength199,168
bytesCRC1D22B10BMD5EB51B5A672A4DDC2E50C7FAAF3EC1E06SHA11B7B1048BA4E8CB79BB379E858A48780A87DE77EOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.generic7.aowlKasperskyBackdoor.Win32.
Frauder.fkmicrosofttrojandow...
W32/Nuwar@MM!D1A50554 - W32/Nuwar@MM!D1A50554 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCD1A50554MD5A2406B9E06D8CF8FCFD5452E8DC9B467SHA14A2537F9FD2AB6376A42B1F91450C31E3C4E5D2AOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!2B3F6B05 - W32/Nuwar@MM!2B3F6B05 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC2B3F6B05MD5F77D933AA6A326EA13406C9DD6962BE9SHA1C8777608FCC84FA5B49542A556B8C832C306DC77Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!C8D09DB9 - W32/Nuwar@MM!C8D09DB9 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCC8D09DB9MD579DBBA461E04E0D39C0E5729370D6FECSHA17AC5FFA6D3309F81FDAF4ABE2243BE3B592EC4EFOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!2DD50C68 - W32/Nuwar@MM!2DD50C68 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC2DD50C68MD5384F8CE7DED0F28B9A623C3217341507SHA194A3F5698A2450E917D9FFDCC7BB1CE4102B2239Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!B570B385 - W32/Nuwar@MM!B570B385 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,456
bytesCRCB570B385MD56DA563CD4CBA403AC67A92AF2EED523BSHA1DFC1250909544EDF79E2B6B867B911E4BC8E90DAOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!30E368FE - W32/Nuwar@MM!30E368FE at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC30E368FEMD50C3B61F09CA24552A2306E5C3307CFBBSHA13D426F25319B714B7EC2520265DC4FC35E00C8A7Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!AE33BB53 - W32/Nuwar@MM!AE33BB53 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCAE33BB53MD540351054D86F38B35308CCF0AF54C7FASHA17606C18D7F6FA9A07940384CB630300C3F534788Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!83DD41B0 - W32/Nuwar@MM!83DD41B0 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC83DD41B0MD5E7CCB9CAD4E594BE088B3F98F2592601SHA1294C12DC270E7F555212F5E19E602508F3A3405BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!BC106ACB - W32/Nuwar@MM!BC106ACB at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCBC106ACBMD5228E8CC8734990711D9F4A342E77D76ESHA165499278851781D0702E25B63801B94AC1EA8672Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!DE8F2CDD - W32/Nuwar@MM!DE8F2CDD at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCDE8F2CDDMD5E337C45C509C743CF4313535FB0F411BSHA17B1B63DBDC3D53D40D4EDD6EB51A2C15EA2B98EFOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!D48B9C3E - W32/Nuwar@MM!D48B9C3E at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCD48B9C3EMD5EB024595104D13730BE70CC4118A8B77SHA191FBCBA551B89A8FF893715BE0F2A82DED3E75C4Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
Adware-IconAds!ABD78EAF - Adware-IconAds!ABD78EAF at McAfee
This software is not a virus or a Trojan. It is detected as a "potentially unwanted program" (PUP). PUPs are
any piece of software that a reasonably security- or privacy-minded computer user may want to be informed of
and, in some cases, remove. PUPs are often made by a legitimate corporate entity for some beneficial purpose,
but th...
W32/Nuwar@MM!7CD6E5D9 - W32/Nuwar@MM!7CD6E5D9 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC7CD6E5D9MD58F09DD58788334ADFF83E7CB10E6AA27SHA1FDA46996F9AB5254AD62BA78756AC78510AFBB6FOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!2343675A - W32/Nuwar@MM!2343675A at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC2343675AMD5E1AB48ECAB3B9AB69116543D03CB317ASHA1F349B231658355130E51CEBCC70711D680DF7200Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!4EF33FAD - W32/Nuwar@MM!4EF33FAD at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC4EF33FADMD5AA55F4AA3F57D7503DF0D1F7FFDA6751SHA1D23A20B71664AFADDDAA0F486704C21E7941ADEAOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!C5166B7E - W32/Nuwar@MM!C5166B7E at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCC5166B7EMD5635FD6088D778B906EBD44633EA39D03SHA1A65A9DB515BE062444B09364C1C3816A21B521FDOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!FB5FABC6 - W32/Nuwar@MM!FB5FABC6 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCFB5FABC6MD551C35D47E32F242D19FC96FFC1676311SHA16538444984D73B15F0215CCC9029BFCF46DA0C81Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!68083355 - W32/Nuwar@MM!68083355 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC68083355MD540CC8B89829A6A710915473254857692SHA1689B49F05046C613A051800F22968409E02D0A8COther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!E18B2FC7 - W32/Nuwar@MM!E18B2FC7 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCE18B2FC7MD52331A7BBF041EF2548843A4051D8D598SHA127C7AD8BB27EF0580C5FB26435CCC26BB28836B0Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!02DF0DC6 - W32/Nuwar@MM!02DF0DC6 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC02DF0DC6MD52EB2AC0EC4183451E9C4CF6EE0BF5DEDSHA1E0C3616692B9CAB9BB31E55411BF962C3616AC11Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!B943D262 - W32/Nuwar@MM!B943D262 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCB943D262MD578F8EE22AF5B92D378E1D940974F2AB3SHA17478BF524B8904108315DFE1A3759BFB5D2FA5F3Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!3DDF7CE1 - W32/Nuwar@MM!3DDF7CE1 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength84,480
bytesCRC3DDF7CE1MD5816D7B107B5B96E17655AC76E959EF72SHA139366C084FC6EE725E3868B3429B6E21ADD030DBOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!76E86441 - W32/Nuwar@MM!76E86441 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC76E86441MD5B9170517C71F721BB4866992476CD1E0SHA1E4BD3B0F8CC8E9CD6477F618D5D8246AADD050D6Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
HTool-FakeYT - HTool-FakeYT at McAfee
This detection is for a toolkit which is capable of creating fake youtube webpages. This could assist the
malware authors to social engineer users into executing malware.Once a user visits the webpage, a fake error
message could be displayed saying a video cannot be played as a required codec is missing. The user is then
redirected t...
W32/Nuwar@MM!ABD331B9 - W32/Nuwar@MM!ABD331B9 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCABD331B9MD5D408FAA4A042E58825480B22AD3574C6SHA176AC0769D6A04B297536D5AFE342BBD44B25258DOther Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!F9C86D24 - W32/Nuwar@MM!F9C86D24 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCF9C86D24MD5446C68ED12A80436519BB7F8437D1EA9SHA1C1FF3F823C04F41917B6B630E5A4B7CA42B91653Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!56BD3FB9 - W32/Nuwar@MM!56BD3FB9 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC56BD3FB9MD59C374CBA91D216ADF652AC5262728F86SHA1FF0CA81B2DFF05C1D35D35FBD3CE10083CA636A0Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
Generic Downloader.x!6C199676 - Generic Downloader.x!6C199676 at McAfee
File PropertyProperty ValueFileNamevideop~1.exeMcAfee DetectionGeneric Downloader.xLength69,120
bytesCRC6C199676MD55B278EFEF194D74B3235736D10A5C776SHA12A05538657AB0143CD234F261F3E90943F53B682Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.fraudload.amBitDefenderTrojan.Downloader.
Exchanger.Gen.2eSafe (A...
PWS-Banker.gen.b!D078AA07 - PWS-Banker.gen.b!D078AA07 at McAfee
File PropertyProperty ValueFileNamepro.exeMcAfee DetectionPWS-Banker.gen.bLength5,726,124
bytesCRCD078AA07MD51189F506B4C0E2B4AFDEDEBC1896302ESHA1476CDBEFB64145CE762930596B01CB07FCEA2881Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)sheur.cisdKasperskyTrojan-Downloader.Win32.Dadobra.
bhhAvert® Labs has observed th...
Troj/Agent-HQX - Troj/Agent-HQX at Sophos
...
Troj/Banker-ENF - Troj/Banker-ENF at Sophos
...
Troj/Lineag-FZ - Troj/Lineag-FZ at Sophos
...
Troj/Lineag-GA - Troj/Lineag-GA at Sophos
...
Troj/Lineag-GB - Troj/Lineag-GB at Sophos
...
Troj/Lineag-GC - Troj/Lineag-GC at Sophos
...
Troj/Lineag-GD - Troj/Lineag-GD at Sophos
...
Troj/Lineag-GE - Troj/Lineag-GE at Sophos
...
Troj/Mdrop-BVS - Troj/Mdrop-BVS at Sophos
...
0 writebacks [09/16/2008 04:43]
[]
permanent link
|
Virus Malware and Threat News for 20080914
W32/Nuwar@MM!741E090A - W32/Nuwar@MM!741E090A at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC741E090AMD50FC8A6599F59FAEAB2ACDC91226C0F62SHA16E32258256DCAACF3526285C3061AB2631F25F91Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!1C1D7638 - W32/Nuwar@MM!1C1D7638 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC1C1D7638MD5DF1EBD0AD3FABECEA1B835B55ECA4927SHA1BF07307C979091BBD2DBA3DF06FE257A77AF8EA4Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!D9A8070D - W32/Nuwar@MM!D9A8070D at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCD9A8070DMD5885C3BB4D376508DCD30B6F7F927D63CSHA1FA7F5655382BB8E5ABD0D6BF4E1AC0E06D5CCF72Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!4C6E0E49 - W32/Nuwar@MM!4C6E0E49 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC4C6E0E49MD5CB17348826ABFB329F2FB05D251302C2SHA1FDA76022696926E77DEE62C89DF0FD3E4BA341F4Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!7188C3B2 - W32/Nuwar@MM!7188C3B2 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC7188C3B2MD57E9AC5813A991A0E4B34E7915FB87C02SHA10F9EAD89F8CE62038D721854D694F55490FD3B57Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!9F08DFE1 - W32/Nuwar@MM!9F08DFE1 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC9F08DFE1MD54D75D3BDD3BADE1818B622C5F849F23CSHA137A786C67DB5453957F5A70B89A99C0240E728B0Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!87D84762 - W32/Nuwar@MM!87D84762 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC87D84762MD5ABF6F69127C5D90F4552006351231709SHA1F0F01103A1FF15F6C251023DDB9BF2EFA20A89B0Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!5845F337 - W32/Nuwar@MM!5845F337 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC5845F337MD55D8247D7756F11E67E93F19A3ECFE188SHA16E727209BD0B4406446778661286EA88C2F0667EOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!899E256D - W32/Nuwar@MM!899E256D at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC899E256DMD561DF0D4CDD84B98FD9C6845FE1271EFESHA1EC69726C32204A959DB3101B5784961BA8C4378FOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!0AD06FE3 - W32/Nuwar@MM!0AD06FE3 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC0AD06FE3MD5C786F81114DD277221EB3BAA47AB7467SHA19B4CF1861CE29BA0878C8383D30A1D53546EB62AOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!78A9CB84 - W32/Nuwar@MM!78A9CB84 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC78A9CB84MD5E21C378CDFA3D506D5334E7D2A8DFB30SHA18DF73BB6DB7359641985F3C043399AEA74F76607Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!6235D6CB - W32/Nuwar@MM!6235D6CB at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC6235D6CBMD5A98293DED884BE72AA83AEB852E7E3DBSHA17116A472727182DD2E88E5347DD607E17803CED3Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!1158B3CB - W32/Nuwar@MM!1158B3CB at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC1158B3CBMD5D46BD533B8FDCECDA6BBABDDAFD21D38SHA1E2802B1287A5D7A7245AD3EE0A53570FFB811EF8Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!83541AFB - W32/Nuwar@MM!83541AFB at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength79,872
bytesCRC83541AFBMD5DF27FD7A7E7B9198B90696E680EFF4DDSHA122890A8BDF930697BC7AF451A82C14E6BA2B0A98Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!AF4C6668 - W32/Nuwar@MM!AF4C6668 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCAF4C6668MD57F6E131C2F20ABBB47EEFA9809BE5A43SHA127FFF9BCA8186526BCCD41AC5DDFB301B1C7068AOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!7956DFA0 - W32/Nuwar@MM!7956DFA0 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC7956DFA0MD54E554D6B05C35717FD508D9A40A6A091SHA1A729DF98227C9440E7EA5AB1D84BABC774336727Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!467CFE99 - W32/Nuwar@MM!467CFE99 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC467CFE99MD57CF287AFFD32AFEAFE1257AEF31AE1FASHA1089DB3A3C03802CC3D7B1EBA1EC45C9B52AFE78FOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Vaklik!C952F769 - W32/Vaklik!C952F769 at McAfee
File PropertyProperty ValueFileNamezz.exeMcAfee DetectionW32/VaklikLength125,440
bytesCRCC952F769MD53626FB12DB146AF820D02F73572237A2SHA1B2EE9D8945963099580C9BBBAE1CB4BC4F807883Other Common
Detection AliasesCompany NameDetection Namemicrosoftpws:win32/onlinegames.ernormansandbox: w32/viking.gen5.
dropperAvert® Labs has observed the ...
W32/Nuwar@MM!A220AE79 - W32/Nuwar@MM!A220AE79 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCA220AE79MD562D00A63E85D636688BEEE9178F4ACB5SHA180595F46C0F1F1168FE44CEF597A4259686D7BB5Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!4A641E8B - W32/Nuwar@MM!4A641E8B at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC4A641E8BMD5288312AA374EE82441D59BA69E05ED61SHA1ECB95920AF10794AD5899C5C0723800FAAFA9117Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!4CFA5261 - W32/Nuwar@MM!4CFA5261 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC4CFA5261MD577A0AAFA62EE7B4EE0066F243F475D7FSHA16F80E69E60FFDF3D46E931DD7253F6E5F50F4B73Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!539F6B6E - W32/Nuwar@MM!539F6B6E at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC539F6B6EMD53B62F6544B479DE3E356F9BA0428B146SHA10337DBAF47B771A219BC3A49B6603A945D7A6D96Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!9462B51A - W32/Nuwar@MM!9462B51A at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC9462B51AMD52B3658B6A403BC9D6B9BADE2CA587BB3SHA1FEB828DE71150DB37FE9802FABC0C533BB85F300Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!DAD23FDC - W32/Nuwar@MM!DAD23FDC at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCDAD23FDCMD56592F1C1F223BB37972685438048B0CBSHA1B151E1734CAF4A04CEED633C4AAFA32545E6BF4FOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!1A1D2482 - W32/Nuwar@MM!1A1D2482 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC1A1D2482MD5B9E94D940D16B430C79D6DF739108D05SHA1589AEEC4D8406A984513BD2AEE5A42285ECD204FOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!7C054B97 - W32/Nuwar@MM!7C054B97 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC7C054B97MD5A9C52B4231CDEFA75743A78BDD164697SHA1A4A84D758C985330E55E91F3FB804AAE2891BF92Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
BackDoor-DNM!F449B59F - BackDoor-DNM!F449B59F at McAfee
File PropertyProperty ValueFileNamepornnv~1.exeMcAfee DetectionGeneric Downloader.xLength69,120
bytesCRCF449B59FMD56E75C0A89DB7C8FE791AD58B7E7C6AE4SHA1CFC2FEFE7D40DCB92861D87D9CD53A398E351D08Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.fraudload.amBitDefenderTrojan.Downloader.
Exchanger.Gen.2eSafe (A...
Generic Downloader.x!52B9D487 - Generic Downloader.x!52B9D487 at McAfee
File PropertyProperty ValueFileNamexvsqor.exeMcAfee DetectionGeneric Downloader.xLength6,551
bytesCRC52B9D487MD52301821CFD69209267A7D02A1B881BF4SHA1ABE82CE4A8DDAEC9A8B3D1C4C0B891B72A3FBD52Other Common
Detection AliasesCompany NameDetection NameavastWin32:Trojan-gen {Other}AVG (GriSoft)Downloader.Generic7.AHZC
(Trojan horse)AviraTR/Dl...
W32/Nuwar@MM!34EAF558 - W32/Nuwar@MM!34EAF558 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength80,384
bytesCRC34EAF558MD58CCA23A010237E1F0F2E25F90937D27CSHA164A46BB6A2759370B5FE005A707F3507F21C00B5Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
Generic.dx!BDB76662 - Generic.dx!BDB76662 at McAfee
File PropertyProperty ValueFileName100_51~1.exeMcAfee DetectionGeneric.dxLength82,434
bytesCRCBDB76662MD523F2FA7A70A7FEEEE8F3634CB4051953SHA1C704C5EA5142946C2B007D60AA4E5B24D959BC88Other Common
Detection AliasesCompany NameDetection NameAviraTR/Crypt.ULPM.GenBitDefenderTrojan.Crypt.Delf.ALeSafe
(Alladin)suspicious Trojan/Worm [101]So...
Troj/Rexplo-D - Troj/Rexplo-D at Sophos
...
Troj/Agent-HQT - Troj/Agent-HQT at Sophos
...
Troj/Banker-ENE - Troj/Banker-ENE at Sophos
...
Troj/Agent-HQS - Troj/Agent-HQS at Sophos
Troj/Agent-HQS is a Trojan for the Windows platform.
Troj/Agent-HQS includes functionality to access the internet and communicate with a remote server via HTTP.
When first run Troj/Agent-HQS copies itself to <System>\oembios.exe and changes the
following regi...
Troj/Dloadr-BSZ - Troj/Dloadr-BSZ at Sophos
...
Troj/PWS-ATN - Troj/PWS-ATN at Sophos
Troj/PWS-ATN is a Trojan for the Windows platform. When first
run Troj/PWS-ATN copies itself to <System>\wins\setup\msmgrs.exe and creates the file
<Startup>\ntdll.lnk. This file can be deleted. Troj/PWS-ATN sets the following
registry entries, disablin...
Troj/PWS-ATO - Troj/PWS-ATO at Sophos
...
Troj/Agent-HQR - Troj/Agent-HQR at Sophos
Troj/Agent-HQR is a Trojan for the Windows platform. When run
Troj/Agent-HQR creates the file: <Current Folder>\ji394.exe - also detected as Troj/Agent-HQR
<Current Folder>\<random characters>.exe - detected as Troj/PWS-ATK
<Current Folder>\&...
Troj/DwnLdr-HHT - Troj/DwnLdr-HHT at Sophos
...
0 writebacks [09/15/2008 04:44]
[]
permanent link
|
Virus Malware and Threat News for 20080913
W32/Nuwar@MM!2917C6B0 - W32/Nuwar@MM!2917C6B0 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC2917C6B0MD535B776E84FD90FDD01AD3AAD32052B25SHA100FB17C2EF78436F09B972ECA1C7C0D644ED0008Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!45987C43 - W32/Nuwar@MM!45987C43 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC45987C43MD59593653DDD462658140E83C20CD0C14ASHA1EDE305965021E3B7DA3BB62882814A4AA5F4C341Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!3DA9D1BA - W32/Nuwar@MM!3DA9D1BA at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC3DA9D1BAMD5387B657F05BD66E4D701F00367482219SHA13616F785C661B7FDAF0D9F209B7B34F3997A08CCOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!F4F410AA - W32/Nuwar@MM!F4F410AA at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCF4F410AAMD54D539CBEBAF8B338E61D56A8F05B9254SHA19ABA60F1507A719C592793E6F48E1666348134A7Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!C6D16AD0 - W32/Nuwar@MM!C6D16AD0 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCC6D16AD0MD504B08299CDF697F2A1573845A22DE1C1SHA136BD45A1989A85FE9EB440C78A45078118D8F5EEOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!AD5AA47D - W32/Nuwar@MM!AD5AA47D at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCAD5AA47DMD5989A254E80A2DE2CE6CB6E679A421461SHA1C886958EFED51A1431DA9445F6CC2F494EE26B94Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!E07FCD74 - W32/Nuwar@MM!E07FCD74 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCE07FCD74MD50FFAA74859851901B39313CF37B61C57SHA17BFF332CDD27A7AC8671F2C53E3E59DB8DEC3436Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!C09C3837 - W32/Nuwar@MM!C09C3837 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCC09C3837MD5C8393C2747A7ADE32D06D42D62BD3FE4SHA18D2DCADFB84258485A458E78A0D339D448CDFE38Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!E7C79566 - W32/Nuwar@MM!E7C79566 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCE7C79566MD5D244B45107BC314ACF3A6093E3B65A71SHA12DB81A843697E95736E9F83630AA9382A096B082Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!DB241E44 - W32/Nuwar@MM!DB241E44 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCDB241E44MD5F95DA8A77C04A6E4EA4938520316B499SHA1A406D26448C4B0715326584A1FFB58D0EEEEBAFFOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!FADDA831 - W32/Nuwar@MM!FADDA831 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCFADDA831MD5778CF8302801AC738EFC45897451E949SHA1AF796F2BF2A7092490239DEF1042DD58BA70A1FEOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!951C5929 - W32/Nuwar@MM!951C5929 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC951C5929MD5AC36FC74141E19464D32244B4C9574B9SHA1863AF0DBB6CCDE58F32AAC911560AEFC32F928C8Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!A47926C8 - W32/Nuwar@MM!A47926C8 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCA47926C8MD5FECF58DDE2E54E21D3527D00E69FD81BSHA11B8CF1186C1148A4BEF28426C46FCB26AA14AA73Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!8212BD86 - W32/Nuwar@MM!8212BD86 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC8212BD86MD54133C91C9489F1B290B0155A4E10749DSHA1301D40DD47799330FE51CA349E96D88156984871Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!0AD1D710 - W32/Nuwar@MM!0AD1D710 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC0AD1D710MD52157C1007AD08A1C65658FA8D95FC97CSHA13DEBF2DA819E02F164789F0682E84B5765CA00C0Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!676B9B7F - W32/Nuwar@MM!676B9B7F at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC676B9B7FMD5A9DA9352A64ED38DC0D7765BF7A5AD16SHA146177E63A9D90628E395182C7E8DD79E35A974BFOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!363DBF13 - W32/Nuwar@MM!363DBF13 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC363DBF13MD5FCDA088A70F7F71467F977D13A189B58SHA144FB64FA637DAE5E66DCADCF660DE8965F0DB2C9Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!BA2C5BD9 - W32/Nuwar@MM!BA2C5BD9 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCBA2C5BD9MD51063FBFD6883F940A7E2A9C572E261DFSHA11D5A3B549C0919B620277DE65ECF96429C1F6626Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!B8805AB5 - W32/Nuwar@MM!B8805AB5 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCB8805AB5MD53863105167666AE5DC01C197DA109207SHA1E5D883B6015FD84091B76E25D7952B404382FE3BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!2DCBB8A4 - W32/Nuwar@MM!2DCBB8A4 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC2DCBB8A4MD570DC9D7D03EAF972D8BF9D4FB76E9439SHA167FDF67EF6AE531C3444BCA57A8C8A18FE1BE442Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!FF9D8DF1 - W32/Nuwar@MM!FF9D8DF1 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCFF9D8DF1MD599F21569EFE8850F5BDB68A1D63F2B6BSHA17DD9C95711534DC77433EE13583B579272122771Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!2D89EBC7 - W32/Nuwar@MM!2D89EBC7 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC2D89EBC7MD5226E50A4D1D9BB718E6AE01F6DB6BDD5SHA1CBF71151F64847C8EA703D588DEAB2D6D3ACE210Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!AD83CFC5 - W32/Nuwar@MM!AD83CFC5 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCAD83CFC5MD53CEE3CDFEBA53DA844775BF94A1A7C86SHA134D878AB8710489477273D7ABE81AFCF40D07D82Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!EF0DF522 - W32/Nuwar@MM!EF0DF522 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCEF0DF522MD528774F62ABAB5B825A24E80DEF3EAF7CSHA1405E394D2B5B01E808A2701FD80B1E6E6C6B0484Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!0078812D - W32/Nuwar@MM!0078812D at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC0078812DMD5CAE6D225360FCD9EC760A7A742C850BDSHA14E93B208EB6C4826A1F82852DE882603FD90BE48Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!F8962486 - W32/Nuwar@MM!F8962486 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCF8962486MD5A6ECD446CF776682DD039A33C13D0F49SHA17696A96013795E9F4B4273FA5B1833F561FBD070Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!F7F039F2 - W32/Nuwar@MM!F7F039F2 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCF7F039F2MD5C2825313534498E1B1AC889B35993066SHA14892F95FA658AE22C182147A101ADF21A034DCABOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!EFE15166 - W32/Nuwar@MM!EFE15166 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCEFE15166MD565E17C4A54FF680ED4C4DF7BC150AFEDSHA1CC5A48F91CDF79345E608E6EF5B1C6D38DFDF5E6Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Vaklik!F4698C06 - W32/Vaklik!F4698C06 at McAfee
File PropertyProperty ValueFileNamezz.exeMcAfee DetectionW32/VaklikLength125,440
bytesCRCF4698C06MD5349CFFF7FF165DE6462E415DA29DDBEFSHA108B0264D459E379747378EB93C569398DA2B3B74Other Common
Detection AliasesCompany NameDetection Namemicrosoftpws:win32/onlinegames.ernormansandbox: w32/viking.gen5.
dropperAvert® Labs has observed the ...
W32/Nuwar@MM!CB65AA03 - W32/Nuwar@MM!CB65AA03 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCCB65AA03MD50832447AA17F515B73A4CFFD440ED307SHA1895C464257F37370224B4B4417FBE274B163CA32Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
Troj/PhpShell-O - Troj/PhpShell-O at Sophos
Troj/PhpShell-O is a PHP shell that can be installed on a compromised web server by an attacker.
...
Troj/Tibs-UW - Troj/Tibs-UW at Sophos
Troj/Tibs-UW is a Trojan for the Windows platform. When first run
Troj/Tibs-UW copies itself to <System>\CbEvtSvc.exe. The file CbEvtSvc.exe is
registered as a new system driver service named "CbEvtSvc", with a display name of "CbEvtSvc" and a startup
type of automatic, ...
Troj/Agent-HQQ - Troj/Agent-HQQ at Sophos
Troj/Agent-HQQ is a Trojan for the Windows platform. Troj/Agent-HQQ runs
continuously in the background, providing a backdoor server which allows a remote intruder to gain access and
control over the computer via IRC channels. When first run Troj/Agent-HQQ copies itself
to <...
Troj/Dloadr-BSY - Troj/Dloadr-BSY at Sophos
...
Troj/DwnLdr-HHS - Troj/DwnLdr-HHS at Sophos
...
Troj/Lineag-FV - Troj/Lineag-FV at Sophos
...
Troj/Lineag-FW - Troj/Lineag-FW at Sophos
...
Troj/Tibs-UV - Troj/Tibs-UV at Sophos
...
Troj/Zbot-AL - Troj/Zbot-AL at Sophos
...
0 writebacks [09/14/2008 04:53]
[]
permanent link
|
Virus Malware and Threat News for 20080912
Bloodhound.Exploit.206 - Bloodhound.Exploit.206 at Norton Symantec
Bloodhound.Exploit.203 is a heuristic detection for files attempting to exploit the Microsoft GDI+ WMF Image
File Buffer Overflow Vulnerability (BID 31021).
...
Spyware.XPCMonitor - Spyware.XPCMonitor at Norton Symantec
BehaviorSpyware.XPCMonitor is a spyware program that may steal information from the computer.
...
Trojan.Eskiuel - Trojan.Eskiuel at Norton Symantec
Trojan.Eskiuel is a Trojan that lowers security settings on computers with SQL servers, and downloads more
malware on to the compromised computer.
...
AntispywareProXP - AntispywareProXP at Norton Symantec
BehaviorAntispywareProXP is a misleading application that may give exaggerated reports of threats on the
computer....
Spyware.RemoteSpy - Spyware.RemoteSpy at Norton Symantec
BehaviorSpyware.RemoteSpy is a spyware program that may steal information from the computer.
...
Spyware.KeyPlusPlus - Spyware.KeyPlusPlus at Norton Symantec
BehaviorSpyware.KeyPlusPlus is a spyware program that records information on the computer.
...
W32.Exiveter - W32.Exiveter at Norton Symantec
W32.Exiveter is a virus that infects all .exe files in the current folder that it is executed within.
...
Python.Velrag - Python.Velrag at Norton Symantec
Python.Velrag is a virus that infects all python files in the current folder that it is executed in.
...
W32/Nuwar@MM!A5CEB95E - W32/Nuwar@MM!A5CEB95E at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCA5CEB95EMD5D1AC5281F8C723D6746F5EAA1A34CD3ASHA1CEB33DE69A0E68A69A055DAF037040054F0DD904Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!E2C17C09 - W32/Nuwar@MM!E2C17C09 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCE2C17C09MD5F48034A37C291311590F45E68F796789SHA1076FC270A611960CA0DF82F5CF524674012A129BOther Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!7711D3F6 - W32/Nuwar@MM!7711D3F6 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC7711D3F6MD5F3BA6B4061C057DDF6E601705F538C18SHA1BF316094339595EDE42917688D1961475157E2EEOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!7341A57D - W32/Nuwar@MM!7341A57D at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC7341A57DMD5329D28F34A669116EFC560CA9D77DDC2SHA112DE461884DE9CF119C8B3723B3E1AA56B8A0EA8Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!F4542DA3 - W32/Nuwar@MM!F4542DA3 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCF4542DA3MD5A6D35E7DBEB8F9398EF4CF0C9157023FSHA13AE7433CE628B3EBBF9095E218AFA71472F73736Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!EE8228C5 - W32/Nuwar@MM!EE8228C5 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCEE8228C5MD531D2A56A5E3EFEB2F1518C1B894F0D88SHA134424FB23FD561EEB3B38B893B60954468D5E9CAOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
Generic.dx!2822E560 - Generic.dx!2822E560 at McAfee
File PropertyProperty ValueFileNameb.exeMcAfee DetectionGeneric.dxLength16,896
bytesCRC2822E560MD560EBF08131831CD544D852245B480847SHA1D6840987A5895C1EE9E16B561506E323635A5EF6Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)generic11.veueSafe (Alladin)Suspicious
fileEsetWin32/Wigon.ET trojan (variant)KasperskyHeur....
W32/Nuwar@MM!641414B5 - W32/Nuwar@MM!641414B5 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC641414B5MD5E3D23E04FD161567145B892B629554BASHA12EB04D2BA62F6FEE9EBA0B3FDB18E16E2E4AA10FOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!E1761D22 - W32/Nuwar@MM!E1761D22 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCE1761D22MD5A7209C3E442C6BA4442A6C9AB4D9F406SHA121757C60E1E511E28F3BC7C3C203E8C0FEFD0CC5Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
JMCodec!1182C0CD - JMCodec!1182C0CD at McAfee
File PropertyProperty ValueFileNameinstal~1.exeMcAfee DetectionJMCodecLength145,920
bytesCRC1182C0CDMD5153E11C61E3CB5D3E98385CF5178D514SHA1723008216B330EB5EC145B33579F38F11EA426DBOther Common
Detection AliasesCompany NameDetection NameavastWin32:Trojan-gen {Other}AviraTR/Dropper.
GenFortiNetSuspiciousF-ProtW32/Injector.A.gen!Eldoradom...
W32/Nuwar@MM!6404ABDA - W32/Nuwar@MM!6404ABDA at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC6404ABDAMD5976455B2C401D8F6FAFA8587E7859A5DSHA1C92B5A7D81D5F56C10F59C6B2EE348191BD9E871Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
DNSChanger.gen!64D38821 - DNSChanger.gen!64D38821 at McAfee
File PropertyProperty ValueFileNamedf.exeMcAfee DetectionDNSChanger.genLength56,858
bytesCRC64D38821MD5A301E7182BACDEB89FBD965D88A1919ASHA17F10F2810D66E0EEDD06DCAFB8391116CE8D6D48Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)downloader.small.
dxjAviraHEUR/CryptedFortiNetW32/CryptPack.ML!trKasperskyBackdoor.Win32...
W32/Auraax.worm!97D195C8 - W32/Auraax.worm!97D195C8 at McAfee
File PropertyProperty ValueFileNameeticke~1.exeMcAfee DetectionW32/Auraax.wormLength38,400
bytesCRC97D195C8MD5F4BDA06F2E92BC79EF836170C975B0DCSHA1360F4FB1F1B07608B6AB9ABEE71EDBEBDEAFA7C9Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)dropper.small.kweSafe (Alladin)suspicious Trojan/Worm
[101]KasperskyWorm.Win32.A...
W32/Nuwar@MM!32BAB66B - W32/Nuwar@MM!32BAB66B at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC32BAB66BMD590BB84FEC9B4AC4BD1C5A2568A100FE7SHA100CB969A9A413B249A0E2B3DC5DD40376FD32EA7Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Vaklik!FF4860A4 - W32/Vaklik!FF4860A4 at McAfee
File PropertyProperty ValueFileNamezz.exeMcAfee DetectionW32/VaklikLength125,440
bytesCRCFF4860A4MD5029D3D52EAD669B69399054F0E2C2B82SHA1363064E93BB98B3FF862F722A5CCB20199075EBFOther Common
Detection AliasesCompany NameDetection Namemicrosoftpws:win32/onlinegames.ernormansandbox: w32/viking.gen5.
dropperAvert® Labs has observed the ...
W32/Nuwar@MM!0C8059D1 - W32/Nuwar@MM!0C8059D1 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength81,920
bytesCRC0C8059D1MD53725D1B18C29C1A05EEA887153AB7412SHA169FBECCE2913B594B172754483D7D119607F3E52Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
Spy-Agent.bg!FA201576 - Spy-Agent.bg!FA201576 at McAfee
File PropertyProperty ValueFileNameuser-e~1.exeMcAfee DetectionSpy-Agent.bgLength34,931
bytesCRCFA201576MD56BA40E29DB8FB6F9145FDE7A45708875SHA1DC71418B90DF1E62FDEA6E014E88013FB46C7884Other Common
Detection AliasesCompany NameDetection NameavastWin32:Trojan-gen {Other}AVG (GriSoft)sheur.cikhAviraTR/Spy.
Goldun.axtDr.WebTrojan.KllemeSaf...
W32/Nuwar@MM!E1F4BBF2 - W32/Nuwar@MM!E1F4BBF2 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCE1F4BBF2MD53E32183E7EDCEDBE65187AF8831B95B3SHA1E4F3A8FC5E0096DC4BF45AC317D2F1EC87C18A87Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
Generic.dx!4EC6582E - Generic.dx!4EC6582E at McAfee
File PropertyProperty ValueFileName9.exeMcAfee DetectionGeneric.dxLength183,885
bytesCRC4EC6582EMD517E55A9E4C8DC578BEC1EAE16A054C37SHA16EEE7A5B49024ED2860EA408801643E327CFBB4FOther Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/MalPacked.GenAVG
(GriSoft)Win32/HeurAviraHEUR/CryptedBitDefenderTrojan.Agent.AJVADr.Web...
Generic Downloader.z!020E8CB3 - Generic Downloader.z!020E8CB3 at McAfee
File PropertyProperty ValueFileNameiexplo~1.exeMcAfee DetectionGeneric Downloader.zLength29,696
bytesCRC020E8CB3MD573261594DEF428D5D1E523034A80D075SHA10B723F15E5EE368AD32C6582E8111687D88D89E0Other Common
Detection AliasesCompany NameDetection NameavastWin32:Delf-LDA [Drp]AviraDR/Delphi.GenFortiNetW32/Pincher.
FA!trKasperskyTrojan-Drop...
Generic BackDoor!E9BDC7F4 - Generic BackDoor!E9BDC7F4 at McAfee
File PropertyProperty ValueFileNamebot1.exeMcAfee DetectionGeneric BackDoorLength88,576
bytesCRCE9BDC7F4MD5AD8F26AA7F52478C2AC80625EDE4A60ESHA1A33F031381AD53B81EF04282239919FC0F4BA34AOther Common
Detection AliasesCompany NameDetection NameahnlabWin32/Processhijack.worm.447488AviraTR/Dropper.
GenBitDefenderBehavesLike:Win32.ProcessHija...
W32/Nuwar@MM!1ECB540E - W32/Nuwar@MM!1ECB540E at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength84,480
bytesCRC1ECB540EMD5066F07A9B3A216BB9B9F8E4D005ED44ASHA164069C3650E2EE1AF5676B2CDA91D5DC2ACF3C10Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!004E4E97 - W32/Nuwar@MM!004E4E97 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC004E4E97MD5E2A6E690CC174E3773AA0445FABB5881SHA1DE5382FD1502C77B386D6CD8C3F44440204FE596Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!B97FB9A0 - W32/Nuwar@MM!B97FB9A0 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength84,480
bytesCRCB97FB9A0MD525FDBD81B8D180877D676BA68677156ASHA1900AA53F73AC149E5432E26CCD7F2E3B7C0D1163Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!3692C38F - W32/Nuwar@MM!3692C38F at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC3692C38FMD5DE0B1525DD67013493BA1D7D775BE2C1SHA1CDCD09391D645734447CEF211D35B0E9C046AF28Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!892CA498 - W32/Nuwar@MM!892CA498 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC892CA498MD52D10BDE8A74AD818533DE305B564C966SHA1752E4B94AFB4ED068BDD882EBFAA3402EE315964Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!22D9DAAA - W32/Nuwar@MM!22D9DAAA at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC22D9DAAAMD5CBD5865FB9B3CD923181972CE51DE836SHA19CB5888DA79A6997B28BA998FE4CBF9147092F87Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!1645F75B - W32/Nuwar@MM!1645F75B at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC1645F75BMD5F62FF6D5456D3C1E136D03BC7E826631SHA1B9F354315501337941703FE11EF87AEE675E1A26Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
Generic.dx!CADB76E1 - Generic.dx!CADB76E1 at McAfee
File PropertyProperty ValueFileNamelspr.exeMcAfee DetectionGeneric.dxLength16,896
bytesCRCCADB76E1MD5292EA2F69E92C9A204A8B4E6415EB503SHA1BBCCCBA352A36BE7B5A13E54F002E3B356F175CDOther Common
Detection AliasesCompany NameDetection NameavastWin32:Trojan-gen {Other}AVG (GriSoft)agent.abxdDr.WebBackDoor.
Bulknet.237eSafe (Alladin)Suspiciou...
Troj/BDoor-ANU - Troj/BDoor-ANU at Sophos
Troj/BDoor-ANU runs continuously in the background, providing a backdoor server which allows a
remote intruder to gain access and control over the computer via IRC channels. When
first run Troj/BDoor-ANU copies itself to: <System>\<random>.exe. and edits
the host f...
Troj/Bifrose-WF - Troj/Bifrose-WF at Sophos
...
Troj/Dialer-FP - Troj/Dialer-FP at Sophos
...
Troj/Gamania-CG - Troj/Gamania-CG at Sophos
...
Troj/Lineag-FT - Troj/Lineag-FT at Sophos
...
Troj/Lineag-FU - Troj/Lineag-FU at Sophos
...
W32/Autorun-JF - W32/Autorun-JF at Sophos
W32/Autorun-JF spreads via removable media. W32/Autorun-JF includes
functionality to access the internet and communicate with a remote server via HTTP.
W32/Autorun-JF is registered as a new system driver service named "Network Driver Interface", with a display
name of "Network...
Mal/VirtDrop-A - Mal/VirtDrop-A at Sophos
Mal/VirtDrop-A is a malicious program that may drop the Trojan Troj/Virtum-Gen.
...
Troj/RootKit-DR - Troj/RootKit-DR at Sophos
...
0 writebacks [09/13/2008 04:44]
[]
permanent link
|
Virus Malware and Threat News for 20080911
Trojan-Spy:W32/Banbra.RH - Trojan-Spy:W32/Banbra.RH at F-Secure
This type of trojan secretly installs spy programs and/or keylogger programs.
...
Bloodhound.Exploit.207 - Bloodhound.Exploit.207 at Norton Symantec
Bloodhound.Exploit.207 is a heuristic detection for files attempting to exploit the Microsoft Visual Studio
(Msmask32.ocx) ActiveX Remote Buffer Overflow Exploit (BID 30674).
...
Bloodhound.Exploit.202 - Bloodhound.Exploit.202 at Norton Symantec
Bloodhound.Exploit.202 is a heuristic detection for files attempting to exploit the Bitmap Parsing
Vulnerability in GDI+ (BID 31022).
...
Cleaner2009 - Cleaner2009 at Norton Symantec
BehaviorCleaner2009 is a misleading application that may give exaggerated reports of threats on the computer.
...
W32/Nuwar@MM!D3FD1E11 - W32/Nuwar@MM!D3FD1E11 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCD3FD1E11MD59F420D6D8A127A1F893058CA9E8265F9SHA1B7547037EE584FFA4B7264D4D44138387E225A2COther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!7F800567 - W32/Nuwar@MM!7F800567 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC7F800567MD51D384B3FF797A43FECED21BCD38F9A19SHA1E8E5594F2DB461A635853832368E22E5C36AB227Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!71050974 - W32/Nuwar@MM!71050974 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC71050974MD57592B7847DFD2E635A941D06E310E5D2SHA1A94D05D4EB765900323118B5768474B0FE03150EOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!B9CF9BAA - W32/Nuwar@MM!B9CF9BAA at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCB9CF9BAAMD53AC3BC11D0B4B0502A7D73387E140CC0SHA13C18A9A29D7AEDDF2A844062E261ADAD8DD8642FOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
Generic.dx!77B40F70 - Generic.dx!77B40F70 at McAfee
File PropertyProperty ValueFileNamecrypt16.exeMcAfee DetectionGeneric.dxLength32,481
bytesCRC77B40F70MD509C6E2D1BB0F9E4302E59923DABC0B2DSHA144ECB3C11BFFFCA0F0D50D03478DB89583A5B011Other Common
Detection AliasesCompany NameDetection NameavastWin32:Trojan-gen {Other}AVG (GriSoft)psw.ldpinch.
utsAviraTR/Dropper.GenBitDefenderTrojan.Dropp...
W32/Nuwar@MM!C458A5C2 - W32/Nuwar@MM!C458A5C2 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCC458A5C2MD5D1AC0A6519DB30124C2431038CAD43B8SHA1C891D4C6EF4F0B927526144FFCC588F6C51B097DOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!617E7B6B - W32/Nuwar@MM!617E7B6B at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC617E7B6BMD5E8EC1C88C581B67E5003DD602757207DSHA1E46706AAB71576804F24FC4CAEF77C5A70DB693AOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!38B381BD - W32/Nuwar@MM!38B381BD at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC38B381BDMD511468567FDCE1A04D26DFA1A8FDFA861SHA1BC00B46EE0D745E57358383BF29557C4F0C86471Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!CDD095F0 - W32/Nuwar@MM!CDD095F0 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCCDD095F0MD55B959B030DD5B78FCF506B417EC95293SHA157377287BAC6DD09D11327E9DEE1C6EFD5621DA0Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
Generic PUP.x!D3CD6D52 - Generic PUP.x!D3CD6D52 at McAfee
This software is not a virus or a Trojan. It is detected as a "potentially unwanted program" (PUP). PUPs are
any piece of software that a reasonably security- or privacy-minded computer user may want to be informed of
and, in some cases, remove. PUPs are often made by a legitimate corporate entity for some beneficial purpose,
but th...
W32/Nuwar@MM!5C986A94 - W32/Nuwar@MM!5C986A94 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC5C986A94MD52B23405656F9B2C26759428EB11F30A0SHA1C2F5878FD6BE21DC9917A758CCB23D032B854066Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!FF001ACE - W32/Nuwar@MM!FF001ACE at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCFF001ACEMD538ED4A4027BC0FB90C4A101E5EEFB9D8SHA1A55AFFD0B47CC9B64041CFA2A61A1F5518789470Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!8F518E88 - W32/Nuwar@MM!8F518E88 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC8F518E88MD5079E2C95BCF745A3F5B506F2200ECD04SHA1F7AD3EBE85C9174526CF4F724BDA136F66EBCCA0Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wmicrosoftbackdoor:win32/nuwar.
anormanw32/tibs.gen227SymantecTrojan.Peacom...
W32/Nuwar@MM!B74E4BC6 - W32/Nuwar@MM!B74E4BC6 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCB74E4BC6MD54AB7662382192F9E9AC95DC0BCB80273SHA1FE4E28A4F1A17D1109D72676DDB053FCE80200A6Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!48397DE0 - W32/Nuwar@MM!48397DE0 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC48397DE0MD534657901076B3709E4A006F0A51E1865SHA1E9058F00DF9C967EDFD8B0FCA2288DDB7E691EB6Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!5BB155C8 - W32/Nuwar@MM!5BB155C8 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC5BB155C8MD5A4069025C7E2EFDE39E4AA78BDA48912SHA1BD4928208F152068187DCAE32DDDA10D5719E295Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!4641B636 - W32/Nuwar@MM!4641B636 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC4641B636MD55AF3F4493FE96A8AC5055A9BB69385E5SHA1F5BE4ABD04DC5C8BE3678CC019C8CD97E221020BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
Adware-TryMedia!FB633590 - Adware-TryMedia!FB633590 at McAfee
This software is not a virus or a Trojan. It is detected as a "potentially unwanted program" (PUP). PUPs are
any piece of software that a reasonably security- or privacy-minded computer user may want to be informed of
and, in some cases, remove. PUPs are often made by a legitimate corporate entity for some beneficial purpose,
but th...
W32/Nuwar@MM!C39CB344 - W32/Nuwar@MM!C39CB344 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCC39CB344MD5DFFE0027073ACEB442C3C9DCA2DC514BSHA13208E545D4B16BFCEA66C47981825E32A95533ABOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!7FCF9AC9 - W32/Nuwar@MM!7FCF9AC9 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC7FCF9AC9MD59BEAE51701109A81ACF4884902289B3FSHA1EAA78A167B5B409A32DF04E2872996C36925F4F6Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Vaklik!60343879 - W32/Vaklik!60343879 at McAfee
File PropertyProperty ValueFileNamezz.exeMcAfee DetectionW32/VaklikLength123,392
bytesCRC60343879MD51340DC2DD42A257B0AF6851F21700985SHA1B9F650AEADBF92DB30FB9FD4606D0610D3FCAB1EOther Common
Detection AliasesCompany NameDetection Namemicrosoftpws:win32/onlinegames.ernormansandbox: w32/viking.gen5.
dropperAvert® Labs has observed the ...
W32/Nuwar@MM!BF0E8F5D - W32/Nuwar@MM!BF0E8F5D at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCBF0E8F5DMD5D2F2EA65E41554513E40E62C45D732ACSHA1F290BFB0FDB4282F1C59DD8E667870E3FA3CCEF3Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!92119B3B - W32/Nuwar@MM!92119B3B at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC92119B3BMD555F0E4C09C2F2F11F1F4A12B87DD12E0SHA1714F98FF99D53597DBA98BF7B559AC161B85E61EOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!8D4EB1FF - W32/Nuwar@MM!8D4EB1FF at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC8D4EB1FFMD5F627632FA1636EC8139649C8AD156839SHA15A890E5A8A828080E6B6E87B3294E25B139F8232Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!5D40EE06 - W32/Nuwar@MM!5D40EE06 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC5D40EE06MD521D66DE1304695DE8968D809733539D1SHA159AE86416654E4E7CAB7E853D9B398656B943B6AOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
PWS-Gamania.gen.a!F681950D - PWS-Gamania.gen.a!F681950D at McAfee
File PropertyProperty ValueFileName100_12~1.exeMcAfee DetectionPWS-Gamania.gen.aLength140,155
bytesCRCF681950DMD5987F717B5CDF1BF60B1EE3BB54FBD7C0SHA173DB0721E126FF172A74EAEAD45B33A31A75C266Other Common
Detection AliasesCompany NameDetection Namemicrosofttrojandownloader:win32/frethog.anormanw32/viking.
gen5Avert® Labs has observed the...
W32/Nuwar@MM!8EBFBC8C - W32/Nuwar@MM!8EBFBC8C at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC8EBFBC8CMD54FE71D48867AA5FACF92F1764A59295FSHA1F7F7C70C7DADD7B504D27E6494333A109F199728Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!3B3CB117 - W32/Nuwar@MM!3B3CB117 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC3B3CB117MD58994BE39DFB7FCB2359A70D069C339F0SHA13D09F1D5724B3D386B50833387B75977E3D36B74Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!785C7424 - W32/Nuwar@MM!785C7424 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC785C7424MD520F525BBA7C8F36FB30BDFEC8B67A4ADSHA1902AE02B387FB02F9C3F84E24D427298736910F5Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
Generic PUP.x!1FE7683A - Generic PUP.x!1FE7683A at McAfee
This software is not a virus or a Trojan. It is detected as a "potentially unwanted program" (PUP). PUPs are
any piece of software that a reasonably security- or privacy-minded computer user may want to be informed of
and, in some cases, remove. PUPs are often made by a legitimate corporate entity for some beneficial purpose,
but th...
MSNBot.D - MSNBot.D at Panda
It obtains personal information from the affected user, such as email addresses, usernames and passwords
stored in the computer. It reaches the computer in a file with the icon of the MSN butterfly.
...
Troj/Agent-HQK - Troj/Agent-HQK at Sophos
...
Troj/DelBank-A - Troj/DelBank-A at Sophos
...
Troj/Lineag-FO - Troj/Lineag-FO at Sophos
...
Troj/Lineag-FP - Troj/Lineag-FP at Sophos
...
Troj/Lineag-FQ - Troj/Lineag-FQ at Sophos
...
Troj/Scrods-Gen - Troj/Scrods-Gen at Sophos
Troj/Scrods-Gen is a family of Trojans for the Windows platform. Members of
Troj/Scrods-Gen usually attempt to download and execute files from remote locations.
Members of Troj/Scrods-Gen may attempt to copy itself to the Windows folder, often with the filename csrss.scr,
and ...
Troj/Zlob-AOG - Troj/Zlob-AOG at Sophos
...
Troj/FakeAV-DH - Troj/FakeAV-DH at Sophos
...
Troj/Agent-HKL - Troj/Agent-HKL at Sophos
Troj/Agent-HKL is a Trojan for the Windows platform. When first run,
Troj/Agent-HKL copies itself to <Windows>\server.exe Troj/Agent-HKL
has the functionalities to: -download files from preconfigured URLs. -reduce system
security ...
0 writebacks [09/12/2008 04:52]
[]
permanent link
|
Virus Malware and Threat News for 20080910
Worm:W32/Autorun.GA - Worm:W32/Autorun.GA at F-Secure
A standalone malicious program which uses computer or removable drives to make complete copies of itself.
...
Packed.Generic.185 - Packed.Generic.185 at Norton Symantec
Packed.Generic.185 is a heuristic detection for files that may have been obfuscated or encrypted in order to
conceal them from antivirus software.
...
Bloodhound.Exploit.205 - Bloodhound.Exploit.205 at Norton Symantec
Bloodhound.Exploit.205 is a heuristic detection for files attempting to exploit the Microsoft Windows Media
Encoder 9 'wmex.dll' ActiveX Control Remote Buffer Overflow Vulnerability (BID 31065).
...
Bloodhound.Exploit.204 - Bloodhound.Exploit.204 at Norton Symantec
Bloodhound.Exploit.204 is a heuristic detection for files attempting to exploit the Uniform Resource Locator
Validation Error Vulnerability (BID 31067).
...
Bloodhound.Exploit.203 - Bloodhound.Exploit.203 at Norton Symantec
Bloodhound.Exploit.203 is a heuristic detection for files attempting to exploit the Microsoft GDI+ GIF Parsing
Vulnerability (BID 31020).
...
W32/Nuwar@MM!8266012F - W32/Nuwar@MM!8266012F at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC8266012FMD53BC2E032456AB0F65A48C55CC8A56743SHA119F647F11E0FC6D1023165EEB04CB8B604191114Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!D5968449 - W32/Nuwar@MM!D5968449 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCD5968449MD555C3B53D1F019CC7BDCF941E4CE27B90SHA1A5F93F20525070E19AF2F4B9A328027830240ED1Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!59148A8A - W32/Nuwar@MM!59148A8A at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC59148A8AMD56EA8556B7633F23970987D1679D39E69SHA1F20F57C5A99747E738322339176144B2A3052688Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!96EDDF44 - W32/Nuwar@MM!96EDDF44 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC96EDDF44MD5AD39EB3C7221D7E4639EA4E00B49ECCASHA1409D3850767C6E115DE9F083AB30C25CD6C86E87Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!073A0FFE - W32/Nuwar@MM!073A0FFE at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC073A0FFEMD54FBD49DCC409D54E707423908E304D5FSHA126AD7B9C3541BA0090B4932502E5310BD98A45AFOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!7C4694BF - W32/Nuwar@MM!7C4694BF at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC7C4694BFMD515561D84BB1D4CAD8CD7741FC78536C5SHA1B0FE0AD1CDE3AC057C02AC0E1DE3FCBFD421CA19Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!2582DE17 - W32/Nuwar@MM!2582DE17 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC2582DE17MD5A5F65F4B0F6A6863986E7ED949E0FA79SHA10FBC56AA343F99F3AEE2372FEA762AA2B70F6FBAOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
Generic.dx!70DA7129 - Generic.dx!70DA7129 at McAfee
File PropertyProperty ValueFileNamecguu.exeMcAfee DetectionGeneric.dxLength7,680
bytesCRC70DA7129MD52359B2EB527A5B6C90005FBEACCE4A37SHA18E75E916EAE34C827D9022071A78959056CA58C2Other Common
Detection AliasesCompany NameDetection NameavastWin32:Agent-QNK [Trj]AviraTR/ATRAPS.GenBitDefenderGeneric.
Malware.FYd.7EF0FDBFDr.WebBackDoor.Small...
W32/Nuwar@MM!5BA8BDAF - W32/Nuwar@MM!5BA8BDAF at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC5BA8BDAFMD55081D8536F8730C816C4A72C45C415FASHA10C1A8C25D87943BCF616112261D0FCBA3CBA0F42Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!95131058 - W32/Nuwar@MM!95131058 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC95131058MD51DD03FD26344BE76BB4BC2C197F41F06SHA17EED9B2A3AB254D90CF9D6127697896A046F5E66Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
PWS-Banker.cs - PWS-Banker.cs at McAfee
This detection is for a password stealing trojan which specifically looks to steal bank password related
information.Typically, this trojan spreads as a result of user clicking links in spam emails which lead to
malicious binaries. Recently, there have been spam emails misleading the user into believing that their link
points to vide...
W32/Nuwar@MM!00F72EC7 - W32/Nuwar@MM!00F72EC7 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC00F72EC7MD52F2ADDA6C821BAB727B4BA73697F9C0FSHA13251E0558BDCE86B159476C1E5839E1821C9843COther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!22A48635 - W32/Nuwar@MM!22A48635 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC22A48635MD528872BFD5DD8F6CE86E140CED62E329FSHA1AA9A04EB730663FB780A0C7B50D9698C960710E6Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!16BDC8FB - W32/Nuwar@MM!16BDC8FB at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC16BDC8FBMD518059740B33BACBA14E9E3B85DBCE258SHA141F6DA9530D1F3AFAD3A9C08D78B1AB5D2DF7487Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!CF7C6E7A - W32/Nuwar@MM!CF7C6E7A at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCCF7C6E7AMD53CF7B077169268F9AA185702E357D88DSHA1D773C6233BFB8D3BA81D9C2812E3CCF82B6B3B4COther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!CA54D8CE - W32/Nuwar@MM!CA54D8CE at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCCA54D8CEMD52F41E2611F0865D3480FC8DCE54304C0SHA16734BFEF1BC5283B0C86FC4122ADB0A06E1AE60BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!84B7B92D - W32/Nuwar@MM!84B7B92D at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC84B7B92DMD5473CE48F07F4D6DD48B7B25DB7AEE7FBSHA108B7EF114D560376136462FE5A9BD840CBDF1003Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!EFF474D7 - W32/Nuwar@MM!EFF474D7 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCEFF474D7MD5B3BA65EEB155CB5D8E8A600B61DEA9ACSHA1278EDD734D2C0B4DAF8A87BA300FD3F14F1ED593Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!B5B19432 - W32/Nuwar@MM!B5B19432 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCB5B19432MD5D7AD2839028B4867803F61D5966CC91FSHA12F735B7856EAF2688D5E4C615FEA65F0D17A44A4Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!B5CD807F - W32/Nuwar@MM!B5CD807F at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength81,408
bytesCRCB5CD807FMD5FA261C7ABE2AE9E2E3CBBABBFD5D40EFSHA129B46E7A597EA5380F13DE2C21B8158D4EBF248BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!A33D6379 - W32/Nuwar@MM!A33D6379 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCA33D6379MD59452B61B609389D68AB585174A3E8874SHA12D8FACA594F2F0EBB425F39A78206DA93AEABA18Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
Generic Dropper!2D1DCF22 - Generic Dropper!2D1DCF22 at McAfee
File PropertyProperty ValueFileNametaxfor~1.exeMcAfee DetectionGeneric DropperLength328,192
bytesCRC2D1DCF22MD5A705A1DF1FC36F696F0EB0FEA72870D3SHA173CC38ABEE246E2CC8593420BB61D35A4AE37B05Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)Dropper.Delf.bllAviraTR/ATRAPS.
GenKasperskyTrojan-Dropper.Win32.Agent.wmunorman...
Generic Dropper!FCDE64A5 - Generic Dropper!FCDE64A5 at McAfee
File PropertyProperty ValueFileNameobama_~1.exeMcAfee DetectionGeneric DropperLength1,082,368
bytesCRCFCDE64A5MD526B861DF715549C537C28E4D60D8D0B7SHA1580A900C60ECFAFD264EA34195A792932CD3A076Other Common
Detection AliasesCompany NameDetection NameAviraTR/Crypt.CFI.GenKasperskyTrojan.Win32.Agent.
acyqmicrosofttrojandropper:win32/agent.ck...
W32/Nuwar@MM!FDE08537 - W32/Nuwar@MM!FDE08537 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCFDE08537MD529A804C541BD64BE9C3CB8B00B3C0A26SHA110E400757FEB38322CCB183F69B27A4D8ED3DE16Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
Spy-Agent.bw.gen.g!2DB8D41E - Spy-Agent.bw.gen.g!2DB8D41E at McAfee
File PropertyProperty ValueFileNamefees_2~1.exeMcAfee DetectionSpy-Agent.bw.gen.gLength31,744
bytesCRC2DB8D41EMD5549C3B59B8F6A7ADB664545C9E6FD4EFSHA1A6646E19202C0D97EBDCD0BBA8ABEA8FC88B8572Other Common
Detection AliasesCompany NameDetection NameBitDefenderTrojan.Downloader.Kobcka.DclamavTrojan.Zbot-2114Eseta
variant of Win32/Injector...
W32/Nuwar@MM!71392371 - W32/Nuwar@MM!71392371 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC71392371MD5E6EEF5ED520B82B46A1EBDE0457E4FA4SHA1E0792C4817DD8C2D703FC32D018AD6F4CE10E70EOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!146C18DF - W32/Nuwar@MM!146C18DF at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC146C18DFMD58A5F5075DCBB23B3833A6739EAC94DCCSHA1A5304E7A50E412DEC4C74020D44635409A32AC2BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!A9C38DBD - W32/Nuwar@MM!A9C38DBD at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCA9C38DBDMD5E920CD87D8D4142122A7BDA359ADB546SHA183C0FF4351C5EB9CF165C054A54E201713FB9C4BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
Generic Downloader.x!39D9F297 - Generic Downloader.x!39D9F297 at McAfee
File PropertyProperty ValueFileNamevivo.exeMcAfee DetectionGeneric Downloader.xLength40,960
bytesCRC39D9F297MD53D77DED0343203C6AA83B1D46F72CBDBSHA10E07B9EE9A97F950D61431E3FE2BCBAAFCCE8C5BOther Common
Detection AliasesCompany NameDetection Namemicrosofttrojandownloader:win32/small.gen!znormansandbox:
w32/downloaderAvert® Labs has obse...
W32/Nuwar@MM!0BAF76BD - W32/Nuwar@MM!0BAF76BD at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC0BAF76BDMD526E2F5E8D8C76D4636BC70A3D16DC287SHA1E6360F12A5BC7069335FC4E0EDAD30AD3311071EOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
MS08-055 - MS08-055 at Panda
It is a critical vulnerability in certain versions of Office, which allows hackers to gain remote control of
the affected computer with the same privileges as the logged-on user.
...
MS08-054 - MS08-054 at Panda
It is a critical vulnerability in Windows Media Player 11 on Windows 2008/Vista/XP computers, which
allows hackers to gain remote control of the affected computer with the same privileges as the logged on user.
...
MS08-053 - MS08-053 at Panda
It is a critical vulnerability in Windows Media Encoder 9 on Windows 2008/Vista/2003/XP/2000 computers,
which allows hackers to gain remote control of the affected computer with the same privileges as the logged on
user....
MS08-052 - MS08-052 at Panda
It is a group of critical vulnerabilities in Microsoft Windows graphics device interface (GDI), which allows
hackers to gain remote control of the affected computer with the same privileges as the logged on user.
...
Troj/Agent-HQF - Troj/Agent-HQF at Sophos
Troj/Agent-HQF is a keylogging Trojan for the Windows platform. When run
Troj/Agent-HQF copies itself to <System>\wins\setup\msmgrs.exe and records information to the file
<System>\wins\skskl32.sys.
...
Troj/DwnLdr-HHR - Troj/DwnLdr-HHR at Sophos
...
W32/IRCBot-ACR - W32/IRCBot-ACR at Sophos
...
Mal/FakeAV-G - Mal/FakeAV-G at Sophos
Mal/FakeAV-G is a malicious executable for the Windows platform that is a component of fake
anti-virus software. Mal/FakeAV-G may create the following registry entries:
HLKM\Software\Microsoft\Internet Explorer UserSession <random
characters> ...
Mal/FakeAV-H - Mal/FakeAV-H at Sophos
Mal/FakeAV-H is a malicious executable for the Windows platform that installs fake anti-virus
software....
Troj/Agent-HQC - Troj/Agent-HQC at Sophos
...
Troj/Agent-HQD - Troj/Agent-HQD at Sophos
...
Troj/Agent-HQE - Troj/Agent-HQE at Sophos
...
Troj/DRRoot-Gen - Troj/DRRoot-Gen at Sophos
...
Troj/Lineag-FL - Troj/Lineag-FL at Sophos
When first run Troj/Lineag-FL copies itself to: <System>\sysutils.exe
and creates the following file: <Windows>\Debug\sysutils32.
dll - proactively detected as Mal/LineDLL-B. Troj/Lineag-FL creates registry entries
under...
0 writebacks [09/11/2008 04:46]
[]
permanent link
|
Virus Malware and Threat News for 20080909
Worm:W32/VB.KQ - Worm:W32/VB.KQ at F-Secure
A standalone malicious program which uses computer or network resources to make complete copies of itself.
May include code or other malware to damage both the system and the network.
...
Worm:W32/Kaxela.A - Worm:W32/Kaxela.A at F-Secure
A standalone malicious program which uses computer or network resources to make complete copies of itself. May
include code or other malware to damage both the system and the network.
...
SpyDevastator - SpyDevastator at Norton Symantec
BehaviorSpyDevastator is a misleading application that may give exaggerated reports of threats on the computer.
...
Packed.Generic.181 - Packed.Generic.181 at Norton Symantec
Packed.Generic.181 is a heuristic detection for files that may have been obfuscated or encrypted in order to
conceal them from antivirus software.
...
W32/Nuwar@MM!3E4D2C18 - W32/Nuwar@MM!3E4D2C18 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC3E4D2C18MD578C45CAD22AFBC75EED91571BF9A035CSHA1D783154763BF6CE2EF052DE843CE2A2FE86EE3C9Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!5DDF7BB6 - W32/Nuwar@MM!5DDF7BB6 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC5DDF7BB6MD506E7032164C25C08D957C0C4BA0DA882SHA12596482B8565CFB0D129F0E06E0191AD5A1A6590Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!647D71FC - W32/Nuwar@MM!647D71FC at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC647D71FCMD5CFEBBD3785EDCF72E6EBAECC20057E8BSHA1B14A26137D37EFA965DF1FEDD678819905F4780BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!24005D8A - W32/Nuwar@MM!24005D8A at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC24005D8AMD5E7E296EB1DCD61D6EA9B83FFAA5C7C3DSHA1123BFAFB155069E147605345969F2D21C4557CE2Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!5E6D362E - W32/Nuwar@MM!5E6D362E at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC5E6D362EMD58CC7B5F4F5E4C408F74D781C2085A6A9SHA1C2C14CCDD9BBF2471093C53BF11C332485C25ABAOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
PHilto.A - PHilto.A at Panda
It is designed to download the adware detected as NaviPromo to the affected computer. In order to do so,
it uses a video of Paris Hilton in order to deceive users and convince them to execute it. It does not
spread automatically by its own means.
...
Troj/Dloadr-BSP - Troj/Dloadr-BSP at Sophos
...
Troj/OnLineG-BC - Troj/OnLineG-BC at Sophos
Troj/OnLineG-BC is a Trojan for the Windows platform. When first run
Troj/OnLineG-BC copies itself to <System>\ckvo.exe and creates the following files:
<System>\ckvo0.dll <System>\drivers\klif.sys Both files are
detected as ...
Troj/Zlob-AOD - Troj/Zlob-AOD at Sophos
...
Mal/Dload-B - Mal/Dload-B at Sophos
Mal/Dload-B is a malicious DLL which typically downloads more code from the internet.
...
Troj/Agent-HPT - Troj/Agent-HPT at Sophos
Troj/Agent-HPT is a Trojan for the Windows platform. Troj/Agent-HPT
attempts to copy itself to <Program Files>\Microsoft Common\wuauclt.exe and creates the following
registry entry to run itself whenever explorer.exe is invoked:
HKLM\SOFTWARE\Microsoft\Windows NT\Current...
Troj/Agent-HPX - Troj/Agent-HPX at Sophos
...
Troj/Agent-HPY - Troj/Agent-HPY at Sophos
Troj/Agent-HPY copies itself to the system folder using a randomly generated filename and installs
Troj/Agent-HEM, also using a randomly generated filename.
...
Troj/Crack-N - Troj/Crack-N at Sophos
...
Troj/DNSChan-MM - Troj/DNSChan-MM at Sophos
...
Troj/Ezio-F - Troj/Ezio-F at Sophos
Troj/Ezio-F is a Trojan for the Windows platform. Troj/Ezio-F includes
functionality to access the internet and communicate with a remote server via HTTP.
...
0 writebacks [09/10/2008 04:44]
[]
permanent link
|
Virus Malware and Threat News for 20080908
Backdoor:W32/Zapchast - Backdoor:W32/Zapchast at F-Secure
A remote administration utility which bypasses normal security mechanisms to secretly control a program,
computer or network....
Trojan-Spy:W32/Zbot - Trojan-Spy:W32/Zbot at F-Secure
This type of trojan secretly installs spy programs and/or keylogger programs.
...
Backdoor:W32/Hupigon.OET - Backdoor:W32/Hupigon.OET at F-Secure
A remote administration utility which bypasses normal security mechanisms to secretly control a program,
computer or network....
Email-Worm:VBS/Gedza.B - Email-Worm:VBS/Gedza.B at F-Secure
This type of worm is embedded in an e-mail attachment, and spreads using the infected computer's e-mailing
networks....
Trojan:W32/Qhost - Trojan:W32/Qhost at F-Secure
...
Trojan-Downloader:HTML/IFrame.SV - Trojan-Downloader:HTML/IFrame.SV at F-Secure
This type of trojan secretly downloads malicious files from a remote server, then installs and executes the
files....
Trojan-Downloader:W32/Small.AAFH - Trojan-Downloader:W32/Small.AAFH at F-Secure
This type of trojan secretly downloads malicious files from a remote server, then installs and executes the
files....
Worm:SymbOS/Commwarrior - Worm:SymbOS/Commwarrior at F-Secure
...
Generic FakeAlert.b!50a07926 - Generic FakeAlert.b!50a07926 at McAfee
Detection was added to cover for a fake alert trojan originally called "setup.ver_3003.0.exe" , having a
filesize of 98.304 bytes decimal.The file has a deceiving (Microsoft
coloring like) icon and fake information: The file as such is a 32 bit PE
file but is unexpectedly hard to run as it requir...
W32/Nuwar@MM!1407E6CF - W32/Nuwar@MM!1407E6CF at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC1407E6CFMD567D5E067EDEE282BC444A35E10AFB6DASHA1016141891DC6D9EDDE439A62C3C6F305C7821A74Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!8E5ECC4F - W32/Nuwar@MM!8E5ECC4F at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC8E5ECC4FMD52F96E88938E6E3D17D4B5821D59A25DASHA1B55D571720B2278274F3AC0F2769100AF8614C3AOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
BackDoor-AWQ!AB65A004 - BackDoor-AWQ!AB65A004 at McAfee
File PropertyProperty ValueFileName93390007.exeMcAfee DetectionBackDoor-AWQLength380,255
bytesCRCAB65A004MD5A3D8CB0211F24C261F47D726E5D70DC4SHA1A63A1CA771BDA0164BD28E24A44CFB7EA979D1C3Other Common
Detection AliasesCompany NameDetection NameavastWin32:Pakes-AJD [Trj]AVG (GriSoft)KloneAviraBDS/Hupigon.
GenBitDefenderTrojan.Patched.BHcla...
Downloader.gen.a!A79ACE60 - Downloader.gen.a!A79ACE60 at McAfee
File PropertyProperty ValueFileNameauto0003.exeMcAfee DetectionDownloader.gen.aLength36,244
bytesCRCA79ACE60MD550DD6C9FD33206AC75A6D4A24C852D5BSHA10127EBB21A64F049691FB6A68265D095859BE8BFOther Common
Detection AliasesCompany NameDetection NameavastWin32:Agent-SIM [Trj]AVG (GriSoft)Generic9.ATDOAviraTR/Dropper.
GenBitDefenderTrojan.PWS...
W32/Nuwar@MM!A8E2399D - W32/Nuwar@MM!A8E2399D at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCA8E2399DMD5EC88FB4DA41373851278DDDF1B516779SHA1F12D61299F41C6E947419EB614AD5630629D8446Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!ACE456C2 - W32/Nuwar@MM!ACE456C2 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCACE456C2MD53949B068B93FAB7CF538DA2AEA7EE501SHA10A8E4044D7177CC55E9C6E31BD98F991FCA75831Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!800E2D87 - W32/Nuwar@MM!800E2D87 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC800E2D87MD54E402B2FA9C3C91B590840BDE6464E9CSHA10D61DC25B9004557EBC444BC88737B0734992918Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Vaklik!3A715585 - W32/Vaklik!3A715585 at McAfee
File PropertyProperty ValueFileNamezz.exeMcAfee DetectionW32/VaklikLength126,464
bytesCRC3A715585MD5F7A751C60E05DE39C9EBB354073B3AC2SHA11E74C81BF2A7B6306B2AAC6ADBB40654E56B4664Other Common
Detection AliasesCompany NameDetection NameAviraTR/Crypt.XPACK.GeneSafe (Alladin)Suspicious File
[100]F-Prot~W32/Vaklik.gennormansandbox: w32/viki...
W32/Nuwar@MM!32757BDE - W32/Nuwar@MM!32757BDE at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC32757BDEMD51A7E7945D100B9C0B2CB6EFC3FE0B192SHA1BE3F465CFFD9667AAE3F27BE21424C1F3E020A5AOther Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!22980444 - W32/Nuwar@MM!22980444 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC22980444MD5D6381C625E2A39D907F7084FE60F6406SHA1C9EFDF10ECCF589DBDF93DB5093251E799072110Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
BackDoor-DKA!456FB096 - BackDoor-DKA!456FB096 at McAfee
File PropertyProperty ValueFileName680d008d.exeMcAfee DetectionBackDoor-DKALength17,408
bytesCRC456FB096MD54DA4A751224A80786747DB6D4D1F24B6SHA1F341FDBC6B50431BF21B7E3B4F4041CFB2BD3B8COther Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/Autorun.17461avastWin32:Virtualizer [Cryp]AVG
(GriSoft)Downloader.Generic6.QDNA...
PWS-OnlineGames.ad!FC09DAC6 - PWS-OnlineGames.ad!FC09DAC6 at McAfee
File PropertyProperty ValueFileNamea98fe5~1.exeMcAfee DetectionPWS-OnlineGames.adLength18,140
bytesCRCFC09DAC6MD5A98FE585AC06DD1F6C99CDAEF6431D06SHA1A9B61E6515F5669F0D282579144356F503F4B9EBOther Common
Detection AliasesCompany NameDetection NameahnlabDropper/OnlineGameHack.18140avastWin32:OnLineGames-BYS
[Trj]AVG (GriSoft)PSW.OnlineG...
Generic.dx!5F4C4C8C - Generic.dx!5F4C4C8C at McAfee
File PropertyProperty ValueFileNameren.exeMcAfee DetectionGeneric.dxLength240,128
bytesCRC5F4C4C8CMD5C796482CCFE04D1F9A49B7F9A0FA6373SHA15C092F0FAFF9BC744FE9F61358BCF650C4DEA019Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/Hider.234496avastWin32:Trojan-gen {Other}AVG
(GriSoft)Generic8.GHYAviraTR/Hider.IBitD...
W32/Nuwar@MM!85712FA6 - W32/Nuwar@MM!85712FA6 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC85712FA6MD55B7FA046AEA3BCA3E93CC7FA4CBB7A87SHA134DCBF07B4E0EB1AA0B317D42954CE957D06848FOther Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!C90172C6 - W32/Nuwar@MM!C90172C6 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCC90172C6MD5838E6EA21C6130B7C3DC7641F40C6C64SHA166BF88636CF92A3C7F0120DE34A4F3B0ACB86A51Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
YTFakeCreator - YTFakeCreator at Panda
It is a malicious tool which allows to create fake YouTube websites with the objective to deceive users
and distribute malware through them. The malware that is distributed can be of any type: worm, Trojan, virus,
adware, etc....
Troj/BHO-GX - Troj/BHO-GX at Sophos
...
Troj/DwnLdr-HHP - Troj/DwnLdr-HHP at Sophos
Troj/DwnLdr-HHP is a downloader Trojan for the Windows platform.
...
Troj/Lineag-FK - Troj/Lineag-FK at Sophos
Troj/Lineag-FK is a Trojan for the Windows platform. When first run
Troj/Lineag-FK creates the following files: <Windows>\Help\<random
filename>.exe - also detected as Troj/Lineag-FK <Windows>\Help\<random filename>.dll
- also detected as Tro...
Mal/EncPk-EY - Mal/EncPk-EY at Sophos
...
Troj/Dloadr-BSN - Troj/Dloadr-BSN at Sophos
...
Troj/FakeAV-DB - Troj/FakeAV-DB at Sophos
Troj/FakeAV-DB is a Trojan for the Windows platform. When first run,
Troj/FakeAV-DB drops and installs the following files: <Program
Files>\<random>\database.dat (not malicious and may be deleted) <Program
Files>\<random>\license.txt (detect...
Troj/Iframe-AU - Troj/Iframe-AU at Sophos
Troj/Iframe-AU is a Trojan for the Windows platform that redirects the browser to a malicious site.
...
Troj/Meredr-Gen - Troj/Meredr-Gen at Sophos
Troj/Meredr-Gen is a family of Trojan droppers for the Windows platform.
...
Troj/Merein-B - Troj/Merein-B at Sophos
...
0 writebacks [09/09/2008 04:44]
[]
permanent link
|
Virus Malware and Threat News for 20080907
W32/Nuwar@MM!E26E9FE1 - W32/Nuwar@MM!E26E9FE1 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCE26E9FE1MD5AAC51DBA2204EB63F8C54491B35672AFSHA1E5F1693D431C45A5230D9560D189FE77BCBE36EFOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wEseta variant of Win32/Nuwar.DH
wormKasperskyEmail-Worm.Win32.Zhelatin.ag...
W32/Nuwar@MM!5D98E79E - W32/Nuwar@MM!5D98E79E at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength81,408
bytesCRC5D98E79EMD58FF55CD7D3B9D77ABD3DE570300C869DSHA12533214625E44A0C3BCB96324AB3CC17532C4FD7Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
Generic.dx!08059CD1 - Generic.dx!08059CD1 at McAfee
File PropertyProperty ValueFileNamef4179f9e.exeMcAfee DetectionPWS-BankerLength2,900,873
bytesCRC08059CD1MD5F4179F9EB29D5F2852918489A7CE4C5ASHA10B13E328FA9E8892BD297ED23E375554C81EA8A0Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/Bank.2900873avastWin32:Trojan-gen {Other}AVG
(GriSoft)SHeur.AJPYAviraTR/Spy.Ba...
Generic.dx!51AC2AA0 - Generic.dx!51AC2AA0 at McAfee
File PropertyProperty ValueFileName86c11552.exeMcAfee DetectionPWS-BankerLength1,001,840
bytesCRC51AC2AA0MD586C11552517CED2640549D1CFDE66959SHA1CAF7DDB69080791A1B4CE5EDD698D618FDFAD3FDOther Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/Banker.1001840avastWin32:Trojan-gen {Other}AVG
(GriSoft)Generic10.OSIAviraTR/C...
W32/Nuwar@MM!5D90A7F7 - W32/Nuwar@MM!5D90A7F7 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC5D90A7F7MD57B90C4F07128DE38C6AC2805719CFE0FSHA16EB9A78678EBB7FB044E3088120621C53B35A32FOther Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!CE8F2A07 - W32/Nuwar@MM!CE8F2A07 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCCE8F2A07MD57BAEFA2B982DFA2C0D694D623E717D60SHA119FB2C4EF16412E6734FF395696C633952025C21Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!AF8D6BA9 - W32/Nuwar@MM!AF8D6BA9 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCAF8D6BA9MD55E70C24746A4088D1C0EAE5011C8077FSHA17373240E4F280681CC51E27B57F7509CD602F18BOther Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!59AE3948 - W32/Nuwar@MM!59AE3948 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC59AE3948MD5895CEDFBC09FD37903E6522B2B7AD102SHA1E9C54C04FA51D1A9DD9592C4BAEE28B1E3C3E6C4Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!CD0B4366 - W32/Nuwar@MM!CD0B4366 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCCD0B4366MD5440263E37AB31C0D73A629EA5E4A9697SHA17B0289C94D15C5502077AB2785B8C55C3333D007Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!F15E90AD - W32/Nuwar@MM!F15E90AD at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCF15E90ADMD56489C0CC249E4D1A60C931EE00F3B428SHA1C0E95079CF5CF428851BD53E7674C41B8CB307BCOther Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!8B030076 - W32/Nuwar@MM!8B030076 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC8B030076MD53F4F8BD080D966201AB0EFB326F428B4SHA1E686023FC96F1A5A65D3E2C0EAF5274E56796876Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!0268010F - W32/Nuwar@MM!0268010F at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC0268010FMD536477EA4FF0CC8738130AD4CCBADCFDESHA1065316D673CDF4427C022DB7E182D8EE9CF7D51AOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!211A3AE6 - W32/Nuwar@MM!211A3AE6 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC211A3AE6MD5804C4FF05CAE16B166BE3EEE210282A3SHA1D05DCA8CD6BC236F1F60072DE82B8A660CA3B2EAOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!04F089BC - W32/Nuwar@MM!04F089BC at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC04F089BCMD5787D716201BD09431199BA7C71FE46AASHA1063F9525B53F319072F2DA1E1EEA2C7FF50F80A3Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wEseta variant of Win32/Nuwar.DH
wormKasperskyEmail-Worm.Win32.Zhelatin.ag...
W32/Nuwar@MM!5E33D27E - W32/Nuwar@MM!5E33D27E at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC5E33D27EMD53D48EB9B61505B658D766209835532B6SHA14171F83321C356B0CD769C83CCCCDEE14D8F0E4FOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wEseta variant of Win32/Nuwar.DH
wormKasperskyEmail-Worm.Win32.Zhelatin.ag...
W32/Nuwar@MM!448ADF41 - W32/Nuwar@MM!448ADF41 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC448ADF41MD535CBDB6041303D481179202DE92422D3SHA1F200F27E71819F827AD5BD061D14A502048F1B25Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!5F2C74A5 - W32/Nuwar@MM!5F2C74A5 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC5F2C74A5MD5CDD9546056258B0E5B2E7D1DCB33CEA8SHA1C5EF21DFC731A7C7B569232A1667C40E571A0668Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!835D01BD - W32/Nuwar@MM!835D01BD at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC835D01BDMD51EF2F09D698B23F5CC25AE3570F80C3FSHA1AEB281BA46424835E663846D60122A41282279EFOther Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!9C623E93 - W32/Nuwar@MM!9C623E93 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC9C623E93MD59988D8E917AE051F4F9D6DA64C361E3DSHA191AF43CECB5066466C29AC09B1ED78F9ED32C598Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Vaklik!7D67CB7B - W32/Vaklik!7D67CB7B at McAfee
File PropertyProperty ValueFileNamezz.exeMcAfee DetectionW32/VaklikLength126,464
bytesCRC7D67CB7BMD5356829E7BFC8A1DDF97390DEA1B43EB7SHA1739E6A2C6CCAED95EF35929A395534A9B96A0EE0Other Common
Detection AliasesCompany NameDetection Namenormansandbox: w32/viking.gen5.dropperAvert® Labs has observed
the following system activities:Activ...
W32/Nuwar@MM!3FA319EA - W32/Nuwar@MM!3FA319EA at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC3FA319EAMD543442EC725900E84022EFC7ACBB3D41CSHA14BB486AF2F0623242A7E3B075C7D3946CAD001F0Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!99CD2313 - W32/Nuwar@MM!99CD2313 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC99CD2313MD56F2FD38CAF983DBE4C872B8BD590528BSHA1DA9C1163821C9D467C5F104A42B85BFA18BA083FOther Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!C13A4C04 - W32/Nuwar@MM!C13A4C04 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCC13A4C04MD5E1FB6D3A625F611E656F3469F50758DFSHA1CB2C36AC556F1C8C282E614C4FB357E3A990F119Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!DE152003 - W32/Nuwar@MM!DE152003 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCDE152003MD5D65A2DFB3DAACC9813D0639CCB99C0DBSHA16F9FA333CC01AA73DA28CB0B5EEEE4E26D3910B3Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!E80F07A1 - W32/Nuwar@MM!E80F07A1 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCE80F07A1MD5728B05272276A70C6AFA52C2088D934ESHA1C00300B33E2B3E4D953A2723512E6A6B8C8DBF0BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wEseta variant of Win32/Nuwar.DH
wormKasperskyEmail-Worm.Win32.Zhelatin.ag...
W32/Nuwar@MM!C5F735CF - W32/Nuwar@MM!C5F735CF at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCC5F735CFMD585D2138DBD989AEB5B6817F475F2755CSHA1BC025EB306167B19AC61D434AF7D47485E226D61Other Common
Detection AliasesCompany NameDetection NameKasperskyEmail-Worm.Win32.Zhelatin.aggmicrosoftbackdoor:win32/nuwar.
anormanw32/tibs.gen227SymantecTr...
W32/Nuwar@MM!ACF1F8FD - W32/Nuwar@MM!ACF1F8FD at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCACF1F8FDMD5C3FB336D1D3EFE8F8B77E6DAEE0DB6BFSHA1029529AA061FD6D6AFAF0BDF4F635D6C7FA2D983Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!45B24548 - W32/Nuwar@MM!45B24548 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC45B24548MD54EAF987F794F03C499E4EF0D3B405B4FSHA1453AFFE4126AF3638F6A461B759227427445B802Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!41E0B858 - W32/Nuwar@MM!41E0B858 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC41E0B858MD58034FA7A40D6DB16541FD2E9ACE2FF19SHA1CE6A8B6934C450F7502FCDC0A52FD95A73C65D5BOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wEseta variant of Win32/Nuwar.DH
wormKasperskyEmail-Worm.Win32.Zhelatin.ag...
W32/Nuwar@MM!31F3343F - W32/Nuwar@MM!31F3343F at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC31F3343FMD5EAC02F95CA4838F70EAF3979BFEF3EE0SHA10CF2C31954A72F13EAA7DD3EDEE011E5F7C31EA9Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wEseta variant of Win32/Nuwar.DH
wormKasperskyEmail-Worm.Win32.Zhelatin.ag...
AL/Billy-A - AL/Billy-A at Sophos
AL/Billy-A is a virus that infects AutoCAD LISP files.
...
Troj/Mdrop-BVM - Troj/Mdrop-BVM at Sophos
...
Troj/Agent-HPM - Troj/Agent-HPM at Sophos
...
Troj/Vapsup-Y - Troj/Vapsup-Y at Sophos
Troj/Vapsup-Y is an adware related plugin for Microsoft Internet Explorer, installed by Trojans in
the Troj/Zlob- family. Troj/Vapsup-Y is a DLL which is typically installed to the
Windows system folder. The Troj/Vapsup-Y DLL is registered as a COM object and toolbar,
creating...
Troj/Vundo-AB - Troj/Vundo-AB at Sophos
Troj/Vundo-AB is a Trojan for the Windows platform. Troj/Vundo-AB is
installed by members of the Troj/Zlob- family of Trojans alongside fake Anti-Virus applications.
...
Troj/Zlob-AOC - Troj/Zlob-AOC at Sophos
Troj/Zlob-AOC is a downloader Trojan for the Windows platform.
Troj/Zlob-AOC attempts to download and install a fake Anti-Virus application named "Smart Antivirus-2009".
...
Troj/Agent-HPK - Troj/Agent-HPK at Sophos
...
Troj/Agent-HPL - Troj/Agent-HPL at Sophos
...
Troj/Dload-DC - Troj/Dload-DC at Sophos
Troj/Dload-DC is a Trojan for the Windows platform. Troj/Dload-DC includes
functionality to download, install and run new software. Troj/Dload-DC attempts to
download a file with is detected as Mal/Banspy-F.
...
Troj/PWS-ATF - Troj/PWS-ATF at Sophos
Troj/PWS-ATF is a password stealing Trojan for the Windows platform.
Troj/PWS-ATF typically arrives as an email attachment. When first run Troj/PWS-ATF
copies itself to <System>\oembios.exe and changes the following registry entry to run itself on startup:
...
0 writebacks [09/08/2008 04:46]
[]
permanent link
|
Virus Malware and Threat News for 20080906
W32/Nuwar@MM!43CAE257 - W32/Nuwar@MM!43CAE257 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength82,944
bytesCRC43CAE257MD5EE0F33B849C742D33FAD271426BFF3E2SHA14B8D801E18517D7FC1DC1698B67BB535151533FCOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!34E788A9 - W32/Nuwar@MM!34E788A9 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength82,944
bytesCRC34E788A9MD5AFA777BD41E7391BDF0AF6E49C98550CSHA1378643AB5F588878B6DF2FD09A61366F65095448Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!261B8A1C - W32/Nuwar@MM!261B8A1C at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength81,408
bytesCRC261B8A1CMD5CFFF6FF9C185A91B8C8C8B4D76091A5ASHA135868AE1F1DB0286AE0E6F1280806A428AF0B4E8Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!9802E37E - W32/Nuwar@MM!9802E37E at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC9802E37EMD53470243F0CF512A8C9B294C8339D1BD0SHA1C0EEF527DAFAEE8044F0E44A87E181DC74C05836Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!5E1CF664 - W32/Nuwar@MM!5E1CF664 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC5E1CF664MD51ED433CC4DB650D91B2DC25B9FED8687SHA1EF2C2F3CDE9A48F27288578E40D30DCB5A6E82FBOther Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!505FADB9 - W32/Nuwar@MM!505FADB9 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength82,944
bytesCRC505FADB9MD5DA571252BA6262FF4A22D03973C1EB5BSHA1C13989E4F88F086CD5EE03756C7DDB51956A901DOther Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!FA036ADC - W32/Nuwar@MM!FA036ADC at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCFA036ADCMD540BF8FC44F4FADEB658F0BD25001AE05SHA1F56799E253440DB9E5EE78B674803CCFBC5471B3Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!0717D536 - W32/Nuwar@MM!0717D536 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC0717D536MD54FEF8350262D59D54372FB06C252DA9ESHA199E1297C0E085F0F00E9F056AAC476849CACAD32Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!FD55C8C4 - W32/Nuwar@MM!FD55C8C4 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCFD55C8C4MD53FF4CA99579A8E69A203A0FA021D296ESHA10FF47B4C44D5F25462950E464E5B99437DE956FAOther Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!485CFCC9 - W32/Nuwar@MM!485CFCC9 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC485CFCC9MD5BD5C6889C38526AF59D03AB35045EAF3SHA1CB4EF46588CF081A942DF6BDB49C057C3547C3B8Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!1551C285 - W32/Nuwar@MM!1551C285 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC1551C285MD50B386DDB6E33E0CC6EA6A10E44103529SHA17B7C5C983DBBD55703116E6F264D289FE4F90D03Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
FakeAlert-AX!56E1BBC0 - FakeAlert-AX!56E1BBC0 at McAfee
File PropertyProperty ValueFileNamevideo.exeMcAfee DetectionFakeAlert-AXLength14,336
bytesCRC56E1BBC0MD5D9912559F11E10E4824DD94E92649C62SHA12F6DA284F3F4A2485F2A2C89609E6DE1959F5C78Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)I-Worm/Nuwar.XAviraTR/Hijacker.GenBitDefenderTrojan.
FakeAlert.ABZclamavTrojan.Fakealer...
W32/Nuwar@MM!CE15F864 - W32/Nuwar@MM!CE15F864 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCCE15F864MD5957BD42AA91C3D792AF0C38D23C913B7SHA148B38BCBFF707285A6928D1F2C7679ABD191663BOther Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!765D10A4 - W32/Nuwar@MM!765D10A4 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC765D10A4MD55915A4AC3451D819EEF9FFC310649DC3SHA1653B3FA017B5009E7D705AADE37AFDFB505EC6DDOther Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!858464EB - W32/Nuwar@MM!858464EB at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC858464EBMD58458EA7038020686266A8E68C0155BC6SHA1959A8B4142356A889A0AB5DB0E6D9D2CDD2D6D60Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!550D65F7 - W32/Nuwar@MM!550D65F7 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC550D65F7MD5D825D385F3D1397A3A70827BD12B41D6SHA1DE2AE1C683ACE2A11E9D795084049E259248DB5DOther Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!B30AA097 - W32/Nuwar@MM!B30AA097 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCB30AA097MD5A2C1E860AD87842FE61C0B49843BF924SHA1D513C99AE3EFCA54F5784B1AB6AB3708FE675F3FOther Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!62F6845B - W32/Nuwar@MM!62F6845B at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC62F6845BMD5751C84E1D3ED5A7049E121E9AC074111SHA1E929D67CA36C285FCFD2D0ABA1497DBE9E95DC05Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!D5B6EAD3 - W32/Nuwar@MM!D5B6EAD3 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCD5B6EAD3MD56CB277F1E2429AC3D196D606FA09B26ESHA121EAFD9A33074711F9F4C2A467B731D3FC670F36Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!88BAA13F - W32/Nuwar@MM!88BAA13F at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC88BAA13FMD59635732E80C3E2E92EB9DAE542867051SHA129BA6406DD23F11B3C66FEBA222C492E45CEDBB9Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!191747F0 - W32/Nuwar@MM!191747F0 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength84,480
bytesCRC191747F0MD5964A677B0F8C0AE111451088A91E361BSHA1E27E68793C8E564C6C101BFA477B45E0B5819E89Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!B4304046 - W32/Nuwar@MM!B4304046 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCB4304046MD5276F17F624148B1FE6D7BA5AFA87D820SHA1CFC85400062480A398BEE0370280E0C7CBCD50A6Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wEseta variant of Win32/Nuwar.DH
wormKasperskyEmail-Worm.Win32.Zhelatin.ag...
W32/Nuwar@MM!5C629C22 - W32/Nuwar@MM!5C629C22 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength84,480
bytesCRC5C629C22MD582216E204841BD1B15FA7A803EEFCACDSHA1FC81D51935425C275AFE1EBC7850D1705262FDA4Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wEseta variant of Win32/Nuwar.DH
wormKasperskyEmail-Worm.Win32.Zhelatin.ag...
W32/Nuwar@MM!C0DF324C - W32/Nuwar@MM!C0DF324C at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength84,480
bytesCRCC0DF324CMD58FF7D169D989E63D01647344D2AB7F17SHA1DBF5DC1A9070E66EB7B6F028D0A2EA0708B4E917Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wEseta variant of Win32/Nuwar.DH
wormKasperskyEmail-Worm.Win32.Zhelatin.ag...
W32/Nuwar@MM!8723550F - W32/Nuwar@MM!8723550F at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC8723550FMD506D4EA5894ECBCEB86CC990D9928355CSHA1B392EC1D78E3FECD1EA09F99CE2B7E5C9166E889Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wEseta variant of Win32/Nuwar.DH
wormmicrosoftbackdoor:win32/nuwar.anorman...
W32/Vaklik!094BE7EC - W32/Vaklik!094BE7EC at McAfee
File PropertyProperty ValueFileNamezz.exeMcAfee DetectionW32/VaklikLength126,464
bytesCRC094BE7ECMD51731A4DC8B2FCBD08D3B5A693792FF1DSHA1B111B033546E518994FA4CEBD7EF50F7F9CC14E0Other Common
Detection AliasesCompany NameDetection Namenormansandbox: w32/viking.gen5.dropperAvert® Labs has observed
the following system activities:Activ...
W32/Nuwar@MM!A9BBFF29 - W32/Nuwar@MM!A9BBFF29 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCA9BBFF29MD528F4AC8A5E456E806E691A191FBA284ESHA1BB319CA7788FA022092FAE93F91A2A3FE4AA0D89Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!3E6EB7A6 - W32/Nuwar@MM!3E6EB7A6 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC3E6EB7A6MD58B8FC88D3E91AA71B9989C07C3ADEEE9SHA126E6D620DDA163E69FA6724E9575E320A5C32F74Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!CDC96B85 - W32/Nuwar@MM!CDC96B85 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCCDC96B85MD52C6333B15355EB3B649F59DF3E4B660ASHA16F0941F266D3D91C09B8B5F28850900AF0D4F5AAOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wEseta variant of Win32/Nuwar.DH
wormKasperskyEmail-Worm.Win32.Zhelatin.ag...
W32/Nuwar@MM!BEA58956 - W32/Nuwar@MM!BEA58956 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCBEA58956MD5B3CBC98D5D47DC83D0C8B469C6ADD38CSHA1CCFADFF5A5B7D7AA79C57CD3DD28F33DB565163AOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wEseta variant of Win32/Nuwar.DH
wormKasperskyEmail-Worm.Win32.Zhelatin.ag...
Troj/PWS-ATC - Troj/PWS-ATC at Sophos
...
Troj/Agent-HPF - Troj/Agent-HPF at Sophos
...
Troj/Agent-HPI - Troj/Agent-HPI at Sophos
Troj/Agent-HPI is a Trojan for the Windows platform. Troj/Agent-HPI
includes functionality to access the internet and communicate with a remote server via HTTP.
When first run Troj/Agent-HPI copies itself to <System>\msservice.exe.
...
Troj/Agent-HPJ - Troj/Agent-HPJ at Sophos
...
Troj/Psyme-JR - Troj/Psyme-JR at Sophos
...
Troj/PWS-ATB - Troj/PWS-ATB at Sophos
...
Troj/Agent-HPE - Troj/Agent-HPE at Sophos
Troj/Agent-HPE is a Trojan for the Windows platform. Troj/Agent-HPE may
install a new version of the file <System>\msxml71.dll.
...
Troj/Agent-HPG - Troj/Agent-HPG at Sophos
...
Troj/Dwnldr-HHN - Troj/Dwnldr-HHN at Sophos
Troj/Dwnldr-HHN is a Trojan for the Windows platform. Troj/Dwnldr-HHN
includes functionality to access the internet and communicate with a remote server via HTTP.
The following registry entry is created to run Troj/Dwnldr-HHN on startup:
HKCU\Software\Mi...
Troj/FakeAV-CX - Troj/FakeAV-CX at Sophos
...
0 writebacks [09/07/2008 04:45]
[]
permanent link
|
Virus Malware and Threat News for 20080905
Trojan-Downloader:W32/Exchanger.AJ - Trojan-Downloader:W32/Exchanger.AJ at F-Secure
This type of trojan secretly downloads malicious files from a remote server, then installs and executes the
files....
Trojan-Downloader:JS/Agent.CTL - Trojan-Downloader:JS/Agent.CTL at F-Secure
This type of trojan secretly downloads malicious files from a remote server, then installs and executes the
files....
Python.Sibi!inf - Python.Sibi!inf at Norton Symantec
Python.Sibi!inf is a detection for python script files infected by a polymorphic virus.
...
JS.Qsiframe - JS.Qsiframe at Norton Symantec
JS.Qsiframe is a virus that infects HTML files on the compromised computer.
...
W32/Nuwar@MM!7FBD3128 - W32/Nuwar@MM!7FBD3128 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC7FBD3128MD5ADB574857F7851FB81F8B31B76EB7CF5SHA18118EF5F4374A15549A69831D4BA522E40000E35Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!2774A261 - W32/Nuwar@MM!2774A261 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC2774A261MD577FAB5CB2A2391AB8F4575A5DB8F4139SHA1AA8C8A572EAEB7D75FE099C9D1D24299E17E25ECOther Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!12C9289E - W32/Nuwar@MM!12C9289E at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC12C9289EMD513352588D63CE2AE1552526766565904SHA12264513941E55D57607DCBC8098418E86A265C59Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!6E8F8FEB - W32/Nuwar@MM!6E8F8FEB at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC6E8F8FEBMD50E7729B5C266B69889CA55D6BDD41FC7SHA1060870FAA65C0E2FE60BF49D0443E64DA581CB17Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!BEB4F8F6 - W32/Nuwar@MM!BEB4F8F6 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCBEB4F8F6MD5B89BA269BCB30F8C6EB653E1559817F2SHA1E8E440D6AE01657AA6D1718066CD24E1EE1352D4Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!9C9689F1 - W32/Nuwar@MM!9C9689F1 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC9C9689F1MD5FB2C13DCA45AC1E663B81C7434C128A3SHA1099C6A7223C6450EA2DBC6BB7DFE2C5AB391A787Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!4610CF38 - W32/Nuwar@MM!4610CF38 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC4610CF38MD57F0BC285FEFF9B4F307766BBE6EF97C6SHA15F9E75850CD8C4889DB1385A709B5E157848E0AEOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!1F4A97FA - W32/Nuwar@MM!1F4A97FA at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC1F4A97FAMD57CB94EF3B646284C4CF04AA1294466A5SHA1D6E6510E7ED369DC1F05CA4E2EA02981A0569BC7Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!75B2BE7B - W32/Nuwar@MM!75B2BE7B at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC75B2BE7BMD5242B690D11424087AF379C045859186CSHA1A6DA441231E3D9E3A7D95C2BC0C6A366AC43089FOther Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!258D3808 - W32/Nuwar@MM!258D3808 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC258D3808MD58E745F2F510B9DC2361010BF8DE3CE66SHA1F53A49EFBF65FCBB93A67209849B6A814E5E1749Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!B0FE1D7B - W32/Nuwar@MM!B0FE1D7B at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCB0FE1D7BMD52A3014C67EAC20B41C4C8FF6E6536A64SHA1E7C832415F12383F5C0E04E25639C6BC5C610530Other Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!8050C5DC - W32/Nuwar@MM!8050C5DC at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC8050C5DCMD51FB820609E33E46623886EDEDE6EC875SHA159E0B2867DD7CF7BFBEEE27691330F6376AA6B2AOther Common
Detection AliasesCompany NameDetection NameavastWin32:Zbot-ALS [Trj]AVG (GriSoft)i-worm/nuwar.
wBitDefenderDropped:Trojan.Peed.JQVDr.WebTrojan.P...
W32/Nuwar@MM!7D23A441 - W32/Nuwar@MM!7D23A441 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength81,920
bytesCRC7D23A441MD5E1AD1CE49E3FEDC06FA9571E6D8D2415SHA1B2A36ED25BB3AA0578FE4602E75D3E568F5083B3Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wKasperskyEmail-Worm.Win32.Zhelatin.
aggmicrosoftbackdoor:win32/nuwar.anorm...
W32/Nuwar@MM!1B450F70 - W32/Nuwar@MM!1B450F70 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength84,480
bytesCRC1B450F70MD5048BECAC20BC3A8127CF5A1BE474F86FSHA11CBCDF9CFCAD9F46F6ECC7FBBF25356DB35A980DOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wEseta variant of Win32/Nuwar.DH
wormmicrosoftbackdoor:win32/nuwar.anorman...
W32/Nuwar@MM!20BC6D61 - W32/Nuwar@MM!20BC6D61 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength84,480
bytesCRC20BC6D61MD549DC3932E75022B38DF475479480A58CSHA184507BC4CC0C12D4F8B1695FABAB740256E72B1AOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wEseta variant of Win32/Nuwar.DH
wormmicrosoftbackdoor:win32/nuwar.anorman...
W32/Nuwar@MM!A5D3E647 - W32/Nuwar@MM!A5D3E647 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength84,480
bytesCRCA5D3E647MD5A7568BDC4167D78ECCCCFE3B449371BDSHA1D313DC6770D8D79B295BEF9198377BACE0CA32D8Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wEseta variant of Win32/Nuwar.DH
wormmicrosoftbackdoor:win32/nuwar.anorman...
W32/Nuwar@MM!CE427603 - W32/Nuwar@MM!CE427603 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCCE427603MD56C12831F4862941667660149DFD06120SHA1C91ED05205057BA87E56FFCB0E87CB6CE9C95E03Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wmicrosoftbackdoor:win32/nuwar.
anormanw32/tibs.gen227SymantecTrojan.Peacom...
W32/Nuwar@MM!613AEDF8 - W32/Nuwar@MM!613AEDF8 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength84,480
bytesCRC613AEDF8MD55F76CBD498DBB89D9E376F4303CAA4B7SHA102CEA00F758C9D35A429E3C32E1E51727A8B49B0Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wmicrosoftbackdoor:win32/nuwar.
anormanW32/Tibs.gen227SymantecTrojan.Peacom...
W32/Nuwar@MM!47A73975 - W32/Nuwar@MM!47A73975 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC47A73975MD572D9E27B974707E9ABA16E5953B86A55SHA17A54D9C25DC3F1357E131938DA1105250B4A40F5Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wmicrosoftbackdoor:win32/nuwar.
anormanw32/tibs.gen227SymantecTrojan.Peacom...
W32/Nuwar@MM!7EAD2366 - W32/Nuwar@MM!7EAD2366 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC7EAD2366MD58FB94A657084040F992965E2A13BFDF4SHA1B9796630E526997FE9D96A951878E54864455ECAOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wmicrosoftbackdoor:win32/nuwar.
anormanw32/tibs.gen227SymantecTrojan.Peacom...
W32/Nuwar@MM!AFD8EEE3 - W32/Nuwar@MM!AFD8EEE3 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCAFD8EEE3MD51A3704DDC84407F20989F56AD753CF92SHA1328B8A68A1A9A15E5B2A3B00BD62828C83541E81Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wmicrosoftbackdoor:win32/nuwar.
anormanw32/tibs.gen227SymantecTrojan.Peacom...
W32/Nuwar@MM!004F05D6 - W32/Nuwar@MM!004F05D6 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC004F05D6MD588FA5B006AF3C18BA0D8416AB464024CSHA12B07E36861DC02D3CCC4AF5BF09C3CBAC1382DA4Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wmicrosoftbackdoor:win32/nuwar.
anormanw32/tibs.gen227SymantecTrojan.Peacom...
W32/Nuwar@MM!581EE160 - W32/Nuwar@MM!581EE160 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC581EE160MD5850F07682E989E5DCFB0C45DDC18CDF2SHA161C209A9CD7CD0F0F44F147611EC1839988A1954Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wmicrosoftbackdoor:win32/nuwar.
anormanw32/tibs.gen227SymantecTrojan.Peacom...
Troj/Agent-HOZ - Troj/Agent-HOZ at Sophos
...
Troj/Agent-HOY - Troj/Agent-HOY at Sophos
...
Troj/Agent-HNY - Troj/Agent-HNY at Sophos
...
Troj/Banc-D - Troj/Banc-D at Sophos
Troj/Banc-D is a Trojan for the Windows platform. Troj/Banc-D includes
functionality to access the internet and communicate with a remote server via HTTP.
...
Troj/Dloadr-BSI - Troj/Dloadr-BSI at Sophos
Troj/Dloadr-BSI includes functionality to access the internet and communicate with a remote server
via HTTP. When Troj/Dloadr-BSI is installed the following files are created:
<User>\Application
Data\Microsoft\Crypto\rsa\S-1-5-21-854245398-413027322-725345543-1003\1c96f5...
Troj/Ezio-E - Troj/Ezio-E at Sophos
Troj/Ezio-E is a Trojan for the Windows platform. When first run
Troj/Ezio-E copies itself to <System>\CbEvtSvc.exe. The file CbEvtSvc.exe is
registered as a new system driver service named "CbEvtSvc", with a display name of "CbEvtSvc" and a startup
type of automatic, so...
Troj/FakeAV-CV - Troj/FakeAV-CV at Sophos
...
Troj/Sharp-AA - Troj/Sharp-AA at Sophos
Troj/Sharp-AA is a Trojan for the Windows platform. Troj/Sharp-AA includes
functionality to access the internet and communicate with a remote server via HTTP.
...
Troj/Agent-HOW - Troj/Agent-HOW at Sophos
...
Troj/Agent-HOX - Troj/Agent-HOX at Sophos
...
0 writebacks [09/06/2008 04:44]
[]
permanent link
|
Virus Malware and Threat News for 20080904
Trojan-Downloader:JS/Agent.CKK - Trojan-Downloader:JS/Agent.CKK at F-Secure
This type of trojan secretly downloads malicious files from a remote server, then installs and executes the
files....
Trojan-Downloader:HTML/IFrame.SU - Trojan-Downloader:HTML/IFrame.SU at F-Secure
This type of trojan secretly downloads malicious files from a remote server, then installs and executes the
files....
Trojan-Downloader:JS/Agent.CKL - Trojan-Downloader:JS/Agent.CKL at F-Secure
This type of trojan secretly downloads malicious files from a remote server, then installs and executes the
files....
Trojan-Dropper:W32/Agent.FBB - Trojan-Dropper:W32/Agent.FBB at F-Secure
This type of trojan contains one or more malicious programs, which it will secretly install and execute.
...
Trojan-PSW:W32/Nilage.AFZ - Trojan-PSW:W32/Nilage.AFZ at F-Secure
Trojan-PSW:W32/Nilage.AFZ attempts to steal username and password information for the Lineage MMORPG.
...
Trojan-Downloader:JS/Agent.CTK - Trojan-Downloader:JS/Agent.CTK at F-Secure
This type of trojan secretly downloads malicious files from a remote server, then installs and executes the
files....
Spyware.CheatMonitor - Spyware.CheatMonitor at Norton Symantec
BehaviorSpyware.CheatMonitor is a spyware program that can be used to record information on the computer.
...
W32/Nuwar@MM!EFEE0376 - W32/Nuwar@MM!EFEE0376 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCEFEE0376MD5FF8A0859F5920CB8A65EA0F55151E248SHA1214BB53539C3F2A1571BF333344BE0401EA84434Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wmicrosoftbackdoor:win32/nuwar.
anormanw32/tibs.gen227SymantecTrojan.Peacom...
W32/Nuwar@MM!615A1FF2 - W32/Nuwar@MM!615A1FF2 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC615A1FF2MD547F8703B38A61618DCD929863DC3BA9ESHA111908563AB866A1B832D039855F09026C93578C6Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wEseta variant of Win32/Nuwar.DH
wormmicrosoftbackdoor:win32/nuwar.anorman...
W32/Nuwar@MM!E90BA242 - W32/Nuwar@MM!E90BA242 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCE90BA242MD57E94C103E4506C1B76F0971304B63609SHA1694114480841B9459924BCC1BE267D2E10BB6B34Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wEseta variant of Win32/Nuwar.DH
wormmicrosoftbackdoor:win32/nuwar.anorman...
W32/Nuwar@MM!9045B962 - W32/Nuwar@MM!9045B962 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC9045B962MD50026860A411EF7CE8A6A933A7F0891BDSHA179E577FADA86C61F199C9DFF5CB854C61FEDF4A9Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wmicrosoftbackdoor:win32/nuwar.
anormanw32/tibs.gen227SymantecTrojan.Peacom...
W32/Nuwar@MM!3726F8B6 - W32/Nuwar@MM!3726F8B6 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC3726F8B6MD598D3B649F14E214FDD8B93D8F9FDB701SHA149187B45C6AC852911C9720936A54D392BB5B336Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wEseta variant of Win32/Nuwar.DH
wormmicrosoftbackdoor:win32/nuwar.anorman...
BackDoor-CEP.svr!BEF5B6B3 - BackDoor-CEP.svr!BEF5B6B3 at McAfee
File PropertyProperty ValueFileNamesample2.exeMcAfee DetectionBackDoor-CEP.svrLength113,719
bytesCRCBEF5B6B3MD54C91F14D5ED82A9BD338D4BAF0A67011SHA10BC387A3EAF59F581A189B7D88C98FEA07723A9FOther Common
Detection AliasesCompany NameDetection NameavastWin32:Delf-LAC [Drp]AVG (GriSoft)Dropper.Generic.AARI (Trojan
horse)AviraDR/Delphi.GenB...
W32/Nuwar@MM!D1D69DE8 - W32/Nuwar@MM!D1D69DE8 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCD1D69DE8MD57899236428B7630466A16ADD9B004774SHA11E6F695495F0C0C7728E2610862954F7A99F6A5DOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wEseta variant of Win32/Nuwar.DH
wormmicrosoftbackdoor:win32/nuwar.anorman...
Generic StartPage!391AEC0B - Generic StartPage!391AEC0B at McAfee
File PropertyProperty ValueFileName79_003.exeMcAfee DetectionGeneric StartPageLength165,376
bytesCRC391AEC0BMD520597B03158D34C08C06D657E29D9F47SHA1F2BB9FAF1054DBB109867BAA96C02E6E1CE542E7Other Common
Detection AliasesCompany NameDetection NameavastWin32:Trojan-gen {Other}AviraTR/Agent.159744.
DBitDefenderTrojan.BHO.OCFDr.WebTrojan.Mul...
W32/Vaklik!EC5C409A - W32/Vaklik!EC5C409A at McAfee
File PropertyProperty ValueFileNamezz.exeMcAfee DetectionW32/VaklikLength126,976
bytesCRCEC5C409AMD5C466702575CB260F51677214AA152A96SHA1CE87CFC36FA96B8859BF6A6225E788616BA0BC1EOther Common
Detection AliasesCompany NameDetection Namenormansandbox: w32/viking.gen5.dropperAvert® Labs has observed
the following system activities:Activ...
PWS-Banker!40C8B040 - PWS-Banker!40C8B040 at McAfee
File PropertyProperty ValueFileNameibama.exeMcAfee DetectionPWS-BankerLength396,288
bytesCRC40C8B040MD5BE491488275F4D58E8E987EF8D71D399SHA1C512C81D19A8703B06606B39B56665DE31C9E65EOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)sheur.bzizEsetprobably a variant of Win32/Spy.Banker
trojanKasperskyTrojan-Banker.Win32...
W32/Autorun.worm.f!71E37966 - W32/Autorun.worm.f!71E37966 at McAfee
File PropertyProperty ValueFileNamese813.exeMcAfee DetectionW32/Autorun.worm.fLength425,984
bytesCRC71E37966MD5B55E79F81EBD549C53C14B3EF5F836EESHA16D63C15C4377CDD21A07C78822EB635F7C0992D3Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)win32/pemask.aEsetprobably a variant of Win32/Hupigon
trojanSymantecW32.SillyFD...
Downloader-BCF!1D0E2FFC - Downloader-BCF!1D0E2FFC at McAfee
File PropertyProperty ValueFileName680d00a3.exeMcAfee DetectionDownloader-BCFLength9,294
bytesCRC1D0E2FFCMD55904C53534B28C41DB2349045821354CSHA196637E1BDD17D30DBD43BBF9A315720484430D99Other Common
Detection AliasesCompany NameDetection NameahnlabWin-Trojan/Downloader.9292.DavastWin32:Small-JMH [Trj]AVG
(GriSoft)Downloader.Zlob.RZAvir...
W32/Nuwar@MM!CA0C90DB - W32/Nuwar@MM!CA0C90DB at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCCA0C90DBMD5B036FFB640D273062975C9F01FD4A75FSHA1D9F7BB43536DBC2D00AAC965A555F2CC534496EAOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wEseta variant of Win32/Nuwar.DH
wormmicrosoftbackdoor:win32/nuwar.anorman...
W32/Nuwar@MM!55D614EB - W32/Nuwar@MM!55D614EB at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC55D614EBMD5ABA7DC7B950D1A7DB7C35EE764644810SHA146769972AFF676145ED55563426B8B7B7634FCFCOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wmicrosoftbackdoor:win32/nuwar.
anormanw32/tibs.gen227SymantecTrojan.Peacom...
W32/Nuwar@MM!E1FC4E3B - W32/Nuwar@MM!E1FC4E3B at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCE1FC4E3BMD5363E78000DBC1A18C6F92B4A6169951BSHA1A2CD4D5DC1122F068996ECE14F950CDF78C89BBBOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wmicrosoftbackdoor:win32/nuwar.
anormanw32/tibs.gen227SymantecTrojan.Peacom...
W32/Nuwar@MM!BB6DEFA6 - W32/Nuwar@MM!BB6DEFA6 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCBB6DEFA6MD565A3BF9B68C234C67C925FB4CD792EDFSHA1FECE8AFED4582DBB7C3F0C0CCE0AD842860CB0E5Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wEseta variant of Win32/Nuwar.DH
wormmicrosoftbackdoor:win32/nuwar.anorman...
W32/Nuwar@MM!A255ABDB - W32/Nuwar@MM!A255ABDB at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCA255ABDBMD5EF30914173B0C588187AF24321B22AB6SHA1C9C5266E0BB8D9C12EA923C7F66FBFAA17B6EC2COther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wEseta variant of Win32/Nuwar.DH
wormmicrosoftbackdoor:win32/nuwar.anorman...
W32/Nuwar@MM!FC8CB11F - W32/Nuwar@MM!FC8CB11F at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRCFC8CB11FMD59455CC492EADCC3EFDDCD62D5815C227SHA1E44B0F64A51E23F0A1BF4E48DFFC6FBA16383DBFOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wEseta variant of Win32/Nuwar.DH
wormmicrosoftbackdoor:win32/nuwar.anorman...
W32/Nuwar@MM!559D6914 - W32/Nuwar@MM!559D6914 at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC559D6914MD532ACA9B1E595257362088B4CE23FAE41SHA1E9DBD91585A0B25F6BE5808D44558DE87E3BAEF3Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wmicrosoftbackdoor:win32/nuwar.
anormanw32/tibs.gen227SymantecTrojan.Peacom...
Fakealert-AP!7132aa96 - Fakealert-AP!7132aa96 at McAfee
Characteristics -File PropertyProperty ValueFile Namebraviax.exeMcAfee DetectionFakeAlert.apLength9,728
bytesCRC327132aa96The trojan shows the following fake warning in bubble warning:This malware try to access the
following websites :virus-quick-{removed}an.com goggl{removed}.comAnd downloading the following file :
%Windir%\system32\...
Lowzones.UH - Lowzones.UH at Panda
It is designed to steal confidential information about the user, such as passwords or usernames. Then, it
sends this information to its creator via the email service of the affected user. It does not spread
automatically by its own means.
...
0 writebacks [09/05/2008 04:44]
[]
permanent link
|
Virus Malware and Threat News for 20080903
Bloodhound.Exploit.199 - Bloodhound.Exploit.199 at Norton Symantec
Bloodhound.Exploit.199 is a heuristic detection for Microsoft Excel Indexing Validation Remote Code Execution
Vulnerability (BID 30638).
...
W32.Silnk - W32.Silnk at Norton Symantec
W32.Silnk is a virus that infects .lnk files on the compromised computer.
...
W32/Nuwar@MM!225E187C - W32/Nuwar@MM!225E187C at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC225E187CMD5135AE636468FF3FF41731103B4B5B853SHA1852C998FCD5C9DEBC1910A0E035729AC183318EAOther Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wmicrosoftbackdoor:win32/nuwar.
anormanw32/tibs.gen227SymantecTrojan.Peacom...
W32/Nuwar@MM!0AAC34BB - W32/Nuwar@MM!0AAC34BB at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC0AAC34BBMD5A73025A012C6266832465B6DCF2128AFSHA1BA1692C9937CC865556CB52C92F681D5A17FDC05Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wEseta variant of Win32/Nuwar.DH
wormmicrosoftbackdoor:win32/nuwar.anorman...
W32/Nuwar@MM!8CD4545A - W32/Nuwar@MM!8CD4545A at McAfee
File PropertyProperty ValueFileNameback.exeMcAfee DetectionW32/Nuwar@MMLength83,968
bytesCRC8CD4545AMD5C1AEAC84F82D10C419CE5613E95A16F7SHA1B0BDBE15611EB78162B9B7A61F748FB2263A52B7Other Common
Detection AliasesCompany NameDetection NameAVG (GriSoft)i-worm/nuwar.wEseta variant of Win32/Nuwar.DH
wormmicrosoftbackdoor:win32/nuwar.anorman...
AutoKitty.A - AutoKitty.A at Panda
It carries out plenty of modifications in the Windows Registry, which prevent the computer from working
properly. It disables several functions of the Start menu, such as Search, and applications such as the Task
Manager. It spreads via the shared and mapped drives.
...
Troj/Dloadr-BSA - Troj/Dloadr-BSA at Sophos
...
Troj/FakeAle-GV - Troj/FakeAle-GV at Sophos
...
Troj/FakeVir-FO - Troj/FakeVir-FO at Sophos
...
Troj/Rootkit-DP - Troj/Rootkit-DP at Sophos
...
W32/Autorun-IV - W32/Autorun-IV at Sophos
...
Mal/AutoInf-A - Mal/AutoInf-A at Sophos
Mal/AutoInf-A is a malicious file that may cause malware to be executed when the media containing
the file is accessed by a computer running Windows. It is typically used by worms for the Windows platform.
...
Mal/EncPk-EX - Mal/EncPk-EX at Sophos
Mal/EncPk-EX is a program that has been packed with a protection system typically used by malware authors.
...
Troj/Agent-HOG - Troj/Agent-HOG at Sophos
...
Troj/FakeVir-FN - Troj/FakeVir-FN at Sophos
...
Troj/Koobfa-A - Troj/Koobfa-A at Sophos
Troj/Koobfa-A is a Trojan. The Trojan attacks Facebook.
When first run, Troj/Koobfa-A diplays a pop-up error message saying: Error installing Codec.
Please contact support. The Trojan creates the file <Windows>\fmark2.dat. This file is not
malici...
0 writebacks [09/04/2008 04:44]
[]
permanent link
|
Virus Malware and Threat News for 20080902
Ruby.Sylrot@mm - Ruby.Sylrot@mm at Norton Symantec
Ruby.Sylrot@mm is a mass-mailing worm that spreads by sending itself as an email attachment to addresses
gathered from the compromised computer.
...
JS.Posmonk - JS.Posmonk at Norton Symantec
JS.Posmonk is a worm that spreads by injecting links in to data when a Web form is submitted.
...
TROJ_FAKEAV.IG - TROJ_FAKEAV.IG at Trend Micro
This Trojan may be dropped by other malware. It may be downloaded unknowingly by a user when visiting
malicious Web site(s).It creates registry entry(ies) to enable its automatic execution at every system startup.
It creates a registry entry to modify the system’s desktop screensaver. It also modifies the system’s desktop
wallpaper to...
MeteorBot.A - MeteorBot.A at Panda
It sends information about the affected computer to its author, such as computer name, IP address or operating
system. It reaches the computer in a file with an EXE extension and the icon of Superman.
...
Mal/FakeAV-E - Mal/FakeAV-E at Sophos
Mal/FakeAV-E is a malicious executable that pretends to be an anti-virus product and that
exaggerates threats on the infected computer.
...
Mal/FakeAV-F - Mal/FakeAV-F at Sophos
Mal/FakeAV-F is a malicious executable that pretends to be an anti-virus product and that
exaggerates threats on the infected computer.
...
Troj/Dloadr-BRU - Troj/Dloadr-BRU at Sophos
...
Troj/FakeAle-GS - Troj/FakeAle-GS at Sophos
...
Troj/FakeAle-GT - Troj/FakeAle-GT at Sophos
...
Troj/FakeAV-CR - Troj/FakeAV-CR at Sophos
...
Troj/FakeVir-FK - Troj/FakeVir-FK at Sophos
Troj/FakeVir-FK is a fake anti-virus program called Antispyware 2008 XP.
The following registry entry is created to run Troj/FakeVir-FK on startup:
HKCU\Software\Microsoft\Windows\CurrentVersion\Run InstallProgram <pathname of the
Trojan executable>...
Troj/IRCBot-ACO - Troj/IRCBot-ACO at Sophos
Troj/IRCBot-ACO is a Trojan for the Windows platform. When first run
Troj/IRCBot-ACO copies itself to <System>\dllcache\iexplore.exe. The following
registry entries are created to run iexplore.exe on startup:
HKCU\Software\Microsoft\Windows\Current...
Troj/Lineag-FI - Troj/Lineag-FI at Sophos
...
0 writebacks [09/03/2008 04:43]
[]
permanent link
|
Virus Malware and Threat News for 20080901
Generic.dx!4462BCA6 - Generic.dx!4462BCA6 at McAfee
File PropertyProperty ValueFile Name01bedbbaa4832f3bc67c1c691e007d71367bc943.exeMcAfee DetectionGeneric.
dxLength29,760 bytesCRC324462BCA6MD59385dbde7207be6517c817d77f65c73aSHA101BEDBBAA4832F3BC67C1C691E007D71367BC943Other
Common Detection AliasesCompany NameDetection NameAVG (GriSoft)Downloader.Tiny.HAviraTR/Crypt.ULPM.
GenBitDefender...
GoGho - GoGho at McAfee
The GoGho trojan copies itself to the following locations : * %WinDir%\system32\%Random
Name%\%Random Name%.exe * %WinDir%\system32\%Random Name%\GoldenGhost.exeIt creates the
following files : * %WinDir%\system32\%Random Name%\devil.ocx *
%WinDir%\system32\%Rand...
Downloader.UNS - Downloader.UNS at Panda
...
Autorun.ADF - Autorun.ADF at Panda
It steals the passwords stored in certain folders of the affected user's computer. Then, it sends the
information to its author. It spreads via email and through the system drives.
...
Troj/Bankr-B - Troj/Bankr-B at Sophos
...
Troj/FakeAle-GP - Troj/FakeAle-GP at Sophos
...
Troj/NtRootK-DW - Troj/NtRootK-DW at Sophos
...
Mal/EncPk-EW - Mal/EncPk-EW at Sophos
...
Mal/FakeAV-B - Mal/FakeAV-B at Sophos
Mal/FakeAV-B is an application for the Windows platform that exhibits malicious behavior.
Mal/FakeAV-B installs a fake anti-virus application that fraudulently reports a users system as
infected and will not clean up these fraudulent reports until the users pays for registration of the
application....
Mal/Pushdo-A - Mal/Pushdo-A at Sophos
Mal/Pushdo-A is a family of Trojans for the Windows platform. Members of
Mal/Pushdo-A typically attempt to to drop files and to load other files directly into memory that are detected
as Troj/Pushu-Gen....
Troj/Exchan-E - Troj/Exchan-E at Sophos
Troj/Exchan-E is a Trojan for the Windows platform. When first run
Troj/Exchan-E copies itself to <System>\CbEvtSvc.exe. The file CbEvtSvc.exe is
registered as a new system driver service named "CbEvtSvc", with a display name of "CbEvtSvc" and a startup
type of automatic...
Troj/Lineag-DY - Troj/Lineag-DY at Sophos
Troj/Lineag-DY is a Trojan for the Windows platform. When Troj/Lineag-DY is
installed the following files are created: <Current Folder>\das.bat
<System>\KcrnaeghDrv.dll The file KarnaeghDrv.dll is also detected as
Troj/Lineag-DY. ...
Troj/Lineag-FH - Troj/Lineag-FH at Sophos
...
0 writebacks [09/02/2008 04:44]
[]
permanent link
|
Virus Malware and Threat News for 20080831
PWS-OnlineGames.bu!71067C41 - PWS-OnlineGames.bu!71067C41 at McAfee
File PropertyProperty ValueFile Name002e84ef096b79117e0259c6dfb31ebea3026ba4.exeMcAfee
DetectionPWS-OnlineGames.buLength16,894
bytesCRC3271067C41MD55044CB61943F5939B93DB62DC70EC1DFSHA1002E84EF096B79117E0259C6DFB31EBEA3026BA4Other Common
Detection AliasesCompany NameDetection NameAhnLabWin-Trojan/OnlineGameHack.16894AvastWin32:OnLineG...
Troj/BHO-GU - Troj/BHO-GU at Sophos
Troj/BHO-GU is a DLL downloader Trojan for the Windows platform. When run
Troj/BHO-GU silently copies itself to <System>\ubpr01.exe and sets the following registry entry to run
itself on startup: HKCU\Software\Microsoft\Windows\CurrentVersion\Run
wblogon ...
Troj/Agent-HNU - Troj/Agent-HNU at Sophos
Troj/Agent-HNU is a Trojan for the Windows platform. When Troj/Agent-HNU is
installed the following files are created: <Windows>\Config\csrss.exe
<System>\mswinsck.ocx The file csrss.exe is also detected as Troj/Agent-HNU, and
the ...
Troj/Dload-CZ - Troj/Dload-CZ at Sophos
Troj/Dload-CZ attempts to download and execute files from a remote website by exploiting
vulnerabilities in some broswers. The downloaded files are currently detected as Mal/EncPk-EI.
...
Troj/FakeAV-CN - Troj/FakeAV-CN at Sophos
Troj/FakeAV-CN is a Trojan for the Windows platform. The following registry
entry is created to run Troj/FakeAV-CN on startup:
HKCU\Software\Microsoft\Windows\CurrentVersion\Run InstallProgram <pathname of the
Trojan executable> ...
Troj/FakeAV-CO - Troj/FakeAV-CO at Sophos
Troj/FakeAV-CO is a Trojan for the Windows platform. Troj/FakeAV-CO
includes functionality to access the internet and communicate with a remote server via HTTP.
...
Troj/Lineag-FF - Troj/Lineag-FF at Sophos
Troj/Lineag-FF is a Trojan for the Windows platform. When Troj/Lineag-FF is
installed it creates the file <Temp>\WowInitcode.dll. The file WowInitcode.dll is
detected as Mal/GamePSW-C.
...
Troj/Lineag-FG - Troj/Lineag-FG at Sophos
Troj/Lineag-FG is a Trojan for the Windows platform. When Troj/Lineag-FG is
installed it creates the file <Temp>\WowInitcode.dll. The file WowInitcode.dll
is also detected as Troj/Lineag-FG.
...
Troj/Agent-HNT - Troj/Agent-HNT at Sophos
Troj/Agent-HNT is a Trojan for the Windows platform. When Troj/Agent-HNT is
installed it creates the file <Program Files>\Internet Explorer\setupapi.dll.
...
0 writebacks [09/01/2008 04:43]
[]
permanent link
|
|
| March 2010 |
|---|
| Sun |
Mon |
Tue |
Wed |
Thu |
Fri |
Sat |
| |
1 |
2 |
3 |
4 |
5 |
6 |
| 7 |
8 |
9 |
10 |
11 |
12 |
13 |
| 14 |
15 |
16 |
17 |
18 |
19 |
20 |
| 21 |
22 |
23 |
24 |
25 |
26 |
27 |
| 28 |
29 |
30 |
31 |
|
|
|
Rss version
|
