Virus Malware and Threat News for 20081229
Packed.Generic.118 - Packed.Generic.118 at Norton Symantec
Packed.Generic.118 is a heuristic detection for files that may have been obfuscated or encrypted in order to
conceal them from antivirus software.
...
Troj/Agent-IMB - Troj/Agent-IMB at Sophos
...
Troj/Bypass-E - Troj/Bypass-E at Sophos
Troj/Bypass-E is a Trojan for the Windows platform. When run Troj/Bypass-E
creates the file <System>\<random characters>.dll (detected as Troj/Virtum-Gen).
Troj/Bypass-E subsequently registers the DLL as a BHO creating registry entries under:
...
Troj/Agent-ILZ - Troj/Agent-ILZ at Sophos
...
Troj/Agent-IMA - Troj/Agent-IMA at Sophos
...
Troj/Boaxxe-I - Troj/Boaxxe-I at Sophos
...
Troj/Daolno-A - Troj/Daolno-A at Sophos
...
Troj/DownLnk-C - Troj/DownLnk-C at Sophos
...
Troj/IRCBot-ZI - Troj/IRCBot-ZI at Sophos
Troj/IRCBot-ZI is a Trojan for the Windows platform. Troj/IRCBot-ZI runs
continuously in the background, providing a backdoor server which allows a remote intruder to gain access and
control over the computer via IRC channels. When first run Troj/IRCBot-ZI copies itself
to <...
Troj/Agent-ILY - Troj/Agent-ILY at Sophos
...
Troj/PWS-AXE - Troj/PWS-AXE at Sophos
...
Trojan.Downexec.C!inf - Trojan.Downexec.C!inf at Norton Symantec
Trojan.Downexec.C!inf is a detection for files infected by Trojan.Downexec.C.
...
Infostealer.Tremzi - Infostealer.Tremzi at Norton Symantec
Infostealer.Tremzi is a generic detection for polymorphic Trojan .dll files.
...
Troj/AdClick-FH - Troj/AdClick-FH at Sophos
Troj/AdClick-FH is a Trojan for the Windows platform. Troj/AdClick-FH
copies itself to the system folder as prunnet.exe and adds registry entries under
HKLM\Software\Microsoft\CurrentVersion\Run\prunnet
HKCU\Software\Microsoft\CurrentVersion\Run\prunnet
HKLM\SO...
Troj/MDrop-BUY - Troj/MDrop-BUY at Sophos
...
Troj/Tidola-Gen - Troj/Tidola-Gen at Sophos
...
Troj/Dloadr-CDP - Troj/Dloadr-CDP at Sophos
...
Troj/Dloadr-CDQ - Troj/Dloadr-CDQ at Sophos
...
Troj/Drop-Q - Troj/Drop-Q at Sophos
...
Troj/FakeVir-IV - Troj/FakeVir-IV at Sophos
...
W32/Waled-D - W32/Waled-D at Sophos
W32/Waled-D is a worm for the Windows platform. W32/Waled-D includes
functionality to access the internet and communicate with a remote server via HTTP and send itself out using
built-in SMTP client. The worm creates the following registry values to run itself on
Windows start...
Mal/Armada-A - Mal/Armada-A at Sophos
Mal/Armada-A is a Trojan which may gather system information and send it to a remote attacker.
...
Troj/Agent-IMG - Troj/Agent-IMG at Sophos
Troj/Agent-IMG is a Trojan for the Windows platform. Troj/Agent-IMG runs
continuously in the background, providing a backdoor server which allows a remote intruder to gain access and
control over the computer via IRC channels. When first run Troj/Agent-IMG copies itself
to <...
0 writebacks [12/30/2008 05:42]
[]
permanent link
|
