Virus Malware and Threat News for 20090110
Worm:W32/Downadup.gen - Worm:W32/Downadup.gen at F-Secure
Downadup is a worm. A standalone malicious program which uses computer or network resources to make complete
copies of itself. May include code or other malware to damage both the system and the network.
...
WiniGuard - WiniGuard at Norton Symantec
BehaviorWiniGuard is a misleading application that may give exaggerated reports of threats on the computer.
...
Exploit-MSWord.j - Exploit-MSWord.j at McAfee
Upon opening the word document the embedded ActiveX control with the following classid is instantiated and
executed. * {AE24FDAE-03C6-11D1-8B76-0080C744F389}This control stores configuration data for
the policy setting Microsoft Scriptlet Component.The control then makes a request to the following webpage*
hxxp://61...
TROJ_INJECT.ZZ - TROJ_INJECT.ZZ at Trend Micro
...
PasswordStealer.BJ - PasswordStealer.BJ at Panda
It steals confidential information from the user, such as passwords, and uses a rootkit in order to make its
detection more difficult. It reaches the computer passing itself off as a Christmas greeting.
...
Troj/MDrop-BXS - Troj/MDrop-BXS at Sophos
When run Troj/MDrop-BXS drops <Temp>\3005593.exe detected as Mal/Generic-A
...
Troj/Agent-IOQ - Troj/Agent-IOQ at Sophos
...
Mal/Behav-148 - Mal/Behav-148 at Sophos
...
Mal/FearDoor-A - Mal/FearDoor-A at Sophos
...
Mal/OnlineG-C - Mal/OnlineG-C at Sophos
...
Mal/Renos-F - Mal/Renos-F at Sophos
...
Troj/Agent-IOP - Troj/Agent-IOP at Sophos
Troj/Agent-IOP is a Trojan for the Windows platform. Troj/Agent-IOP is
registered as a new system driver service named "Wuausurv", with a display name of "Wuausurv" and a startup
type of automatic, so that it is started automatically during system startup. Registry entries are created
under: ...
Troj/Bifrose-VI - Troj/Bifrose-VI at Sophos
Troj/Bifrose-VI is a Trojan for the Windows platform. Troj/Bifrose-VI
copies itself to msddll.exe in the Windows system folder and registers itself as a service process with a
start type of "Automatic". If run with sufficient rights Troj/Bifrose-VI will install
itself as an ap...
Troj/Dloadr-CEM - Troj/Dloadr-CEM at Sophos
...
Troj/FakeAle-KX - Troj/FakeAle-KX at Sophos
...
Troj/Agent-IOV - Troj/Agent-IOV at Sophos
Troj/Agent-IOV is a Trojan for the Windows platform. When run
Troj/Agent-IOV copies itself to <System>\digeste.dll and adds the DLL file to the following registry
entry: HKLM\SYSTEM\CurrentControlSet\Control\SecurityProviders
SecurityProviders <e...
Troj/Bckdr-QRC - Troj/Bckdr-QRC at Sophos
...
Troj/Bckdr-QRD - Troj/Bckdr-QRD at Sophos
...
Troj/Inject-DQ - Troj/Inject-DQ at Sophos
Troj/Inject-DQ is a Trojan for the Windows platform. When run
Troj/Inject-DQ copies itself to: <System>\wuaumqr.exe
<System>\kazaabackupfiles\download_me.exe and sets the following registry entries:
HKCU\Software\Micros...
Troj/MDrop-BXT - Troj/MDrop-BXT at Sophos
...
Troj/Crack-Q - Troj/Crack-Q at Sophos
Troj/Crack-Q is used to patch sattelite receiver boxes to allow for viewing of premium TV channels.
...
Troj/Keygen-BW - Troj/Keygen-BW at Sophos
Troj/Keygen-BW is a key generator for Winamp Pro v5.x
...
Mal/WaledPak-A - Mal/WaledPak-A at Sophos
Mal/WaledPak-A is a worm for the Windows platform. Mal/WaledPak-A includes
functionality to access the internet and communicate with a remote server via HTTP and send itself out using
built-in SMTP client.
...
Troj/Agent-IOU - Troj/Agent-IOU at Sophos
...
Troj/DwnLdr-HMY - Troj/DwnLdr-HMY at Sophos
Troj/DwnLdr-HMY is a Trojan for the Windows platform. Troj/DwnLdr-HMY
includes functionality to access the internet and communicate with a remote server via HTTP.
When first run Troj/DwnLdr-HMY copies itself to the Windows system folder The
following reg...
0 writebacks [01/11/2009 05:49]
[]
permanent link
|
