Virus Malware and Threat News for 20090226
P2P-Worm:W32/Bacteraloh - P2P-Worm:W32/Bacteraloh at F-Secure
A type of worm that spreads over Peer-to-Peer (P2P) networks.
...
Trojan:W32/Monderd.gen - Trojan:W32/Monderd.gen at F-Secure
Trojan.Win32.Monderd.gen is a generic detection for the Vundo trojan family.
...
ThreatNuker - ThreatNuker at Norton Symantec
BehaviorThreatNuker is a misleading application that may give exaggerated reports of threats on the computer.
...
JS_DLOADR.ACF - JS_DLOADR.ACF at Trend Micro
This script may be downloaded from remote sites by JS_DLOADR.ABO. It may be downloaded from certain remote
sites.Once executed, it takes advantage of the vulnerability in Windows Media Encoder 9 ActiveX Control in an
attempt to connect to a certain URL to download a file.As of this writing, however, the download URL is
inaccessible.M...
JS_DLOADR.ACE - JS_DLOADR.ACE at Trend Micro
This script may be downloaded from remote sites by JS_DLOADR.ABO. It may be downloaded from certain remote
sites.It takes advantage of the vulnerability in Microsoft Data Access Components (MDAC) in an attempt to
connect to a URL to download a file. As a result, malicious routines of the downloaded file are exhibited on
the affected...
JS_DLOADR.ABO - JS_DLOADR.ABO at Trend Micro
This script arives on a system as a file downloaded by JS_AGENT.AMWU from a certain remote site.Once executed,
it attempts to connect to several URLs to download more script malware. It also checks for ActiveX controls
and downloads other malicious scripts based on the installed ActiveX controls. Trend Micro detects these
script malw...
JS_AGENT.AMWU - JS_AGENT.AMWU at Trend Micro
This is the Trend Micro detection for script files that use an iFrame tag to redirect users to certain
malicious URLs.Once an unsuspecting user views an infected Web page, it attempts to connect to certain URLs to
download files. Trend Micro detectes one of these downloaded files as JS_DLOADR.ABO. As a result, malicious
routines of t...
Mal/EncPk-HD - Mal/EncPk-HD at Sophos
...
Troj/Agent-JBE - Troj/Agent-JBE at Sophos
...
Troj/Bdoor-ATE - Troj/Bdoor-ATE at Sophos
...
Troj/Cavzopa-A - Troj/Cavzopa-A at Sophos
...
Troj/PWS-AYW - Troj/PWS-AYW at Sophos
...
Troj/PWS-AYX - Troj/PWS-AYX at Sophos
...
Troj/PWS-AYY - Troj/PWS-AYY at Sophos
...
W32/Autoit-BW - W32/Autoit-BW at Sophos
...
W32/Autorun-ZK - W32/Autorun-ZK at Sophos
W32/Autorun-ZK is a worm for the Windows platform. When the application is
installed the following files are created: <System>\drivers\sysdrv32.sys -
detected as W32/Rbot-GXM <System>\wmisys.exe - copy of W32/Autorun-ZK
W32/Autorun...
Troj/Agent-JAZ - Troj/Agent-JAZ at Sophos
...
Suspicious.Vundo - Suspicious.Vundo at Norton Symantec
Suspicious.Vundo is a detection technology designed to detect entirely new malware threats without traditional
signatures for the Vundo family of Trojans. This technology is aimed at detecting malicious software that has
been intentionally mutated or morphed by attackers.
...
Suspicious.Harakit - Suspicious.Harakit at Norton Symantec
Suspicious.Harakit is a detection technology designed to detect entirely new malware threats without
traditional signatures. This technology is aimed at detecting malicious software that has been intentionally
mutated or morphed by attackers.
...
Mal/Blazgel-A - Mal/Blazgel-A at Sophos
...
Mal/Dorf-A - Mal/Dorf-A at Sophos
Mal/Dorf-A is a family malware that attempts to download and execute files from a remote location.
...
Troj/BlazDll-A - Troj/BlazDll-A at Sophos
...
Troj/ObfJS-H - Troj/ObfJS-H at Sophos
...
Troj/Agent-JBK - Troj/Agent-JBK at Sophos
...
Troj/Agent-JBL - Troj/Agent-JBL at Sophos
Troj/Agent-JBL is a Trojan for the Windows platform. Troj/Agent-JBL starts
the Windows installation service "msiserver". Troj/Agent-JBL downloads additional data
from a remote website.
...
Troj/AutoInf-T - Troj/AutoInf-T at Sophos
...
Troj/Clicker-FG - Troj/Clicker-FG at Sophos
Troj/Clicker-FG Trojan for the Windows platform. Troj/Clicker-FG attempts
to generate revenue by collecting email addresses and by automatically subscribing to on-line offers.
Troj/Clicker-FG may be installed as part of the installation for other software, such as
shareware o...
Troj/Clickr-I - Troj/Clickr-I at Sophos
...
Troj/FakeAV-LD - Troj/FakeAV-LD at Sophos
Troj/FakeAV-LD is a Trojan for the Windows platform. When first run,
Troj/FakeAV-LD copies itself to: <System>\sysguard.exe and creates the following
registry entry to launch itself at system startup:
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\system to...
0 writebacks [02/27/2009 22:41]
[]
permanent link
|
