Virus Malware and Threat News for 20090330
Rogue:W32/WinAntiVirus - Rogue:W32/WinAntiVirus at F-Secure
...
Trojan-Proxy:W32/Kvadr.gen!A - Trojan-Proxy:W32/Kvadr.gen!A at F-Secure
...
Trojan-Dropper:W32/Trop.gen!A - Trojan-Dropper:W32/Trop.gen!A at F-Secure
...
Backdoor.Ghostnet - Backdoor.Ghostnet at Norton Symantec
Backdoor.Ghostnet is a Trojan horse that opens a back door on the compromised computer.
...
MalwareDefender2009 - MalwareDefender2009 at Norton Symantec
BehaviorMalwareDefender2009 is a misleading application that may give exaggerated reports of threats on the
computer....
W32.Xanib.A - W32.Xanib.A at Norton Symantec
W32.Xanib.A is a virus that infects executable and multimedia files on the compromised computer.
...
W32.SillyFDC.BBM - W32.SillyFDC.BBM at Norton Symantec
W32.SillyFDC.BBM is a worm that spreads by copying itself to removable drives.
...
Troj/DwnLdr-HPO - Troj/DwnLdr-HPO at Sophos
...
Troj/Poison-AT - Troj/Poison-AT at Sophos
Troj/Poison-AT is a Trojan for the Windows platform. When run
Troj/Poison-AT copies itself to <System>\Msxmlcol.exe and creates the file <System>\Msxmlcol
(which can be safely deleted). The following registry entry is set:
HKLM\SOFTWARE\Microsoft\Active Setup\Insta...
Troj/PSW-GN - Troj/PSW-GN at Sophos
...
W32/Autorun-ADO - W32/Autorun-ADO at Sophos
...
W32/Tiotua-AP - W32/Tiotua-AP at Sophos
...
Mal/VidHtml-H - Mal/VidHtml-H at Sophos
Mal/VidHtml-H is a malicious script that attempts to redirect to a malicious executable file. The
script is often found in a page pretending to be Facebook or another site trying to access a video. The
malicious executable often pretends to be related to a video codec or a Flash update.
...
Troj/Agent-JKC - Troj/Agent-JKC at Sophos
Troj/Agent-JKC is a Trojan for the Windows platform. When run
Troj/Agent-JKC copies itself to <System>\txflocg.dIl and sets the following registry entries:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\txflocg
(default) ...
Troj/Agent-JLG - Troj/Agent-JLG at Sophos
...
Troj/Agent-JLH - Troj/Agent-JLH at Sophos
Troj/Agent-JLH is a Trojan for the Windows platform. Troj/Agent-JLH
installs itself to <WINDOWS>\msa.exe. Troj/Agent-JLH creates scheduled tasks in
the <WINDOWS>\Tasks folder to run itself periodically.
...
Troj/Agent-JLI - Troj/Agent-JLI at Sophos
...
Trojan-Spy:W32/Banker.JAG - Trojan-Spy:W32/Banker.JAG at F-Secure
...
Autorun.ITS - Autorun.ITS at Panda
It is programmed to carry out plenty of modifications in the Windows Registry, which prevent the computer from
working properly. However, due to a programming error, it only disables several functions, such as Search from
the Start menu or System Restore. It spreads via the mapped, shared and removable drives.
...
Troj/Agent-JLP - Troj/Agent-JLP at Sophos
...
Troj/Banker-EQT - Troj/Banker-EQT at Sophos
...
Troj/DwnLdr-HPP - Troj/DwnLdr-HPP at Sophos
...
W32/Autorun-ADQ - W32/Autorun-ADQ at Sophos
...
W32/Autorun-ADR - W32/Autorun-ADR at Sophos
...
W32/Spybot-OQ - W32/Spybot-OQ at Sophos
W32/Spybot-OQ is a worm for the Windows platform. When run W32/Spybot-OQ
copies itself to <Windows>\System\svhost.exe and creates
the file <System>\drivers\sysdrv32.sys - detected as W32/Rbot-GXM
...
W32/Waled-CG - W32/Waled-CG at Sophos
...
Troj/Agent-JLN - Troj/Agent-JLN at Sophos
...
Troj/Agent-JLO - Troj/Agent-JLO at Sophos
...
Troj/BHO-LI - Troj/BHO-LI at Sophos
...
0 writebacks [03/31/2009 21:45]
[]
permanent link
|
