500 entries found.
Displaying page 1
of 25.
Worm:Win32/Hamweq.AA
Worm:Win32/Hamweq.AA is a worm that spreads via removable drives, such as USB memory sticks. It contains an IRC-based backdoor, which may be used by a remote attacker to order the affected machine to participate in Distributed Denial of Service attacks, or to download and execute arbitrary files.
Alert level:
severe
Exploit:HTML/IframeRef.AA
Windows Defender detects and removes this threat.
It is a hidden part of a webpage or email that directs your browser to a website that contains malicious content. This content could download malware onto your PC.
Alert level:
severe
Exploit:Java/CVE-2010-0840.AA
Exploit:Java/CVE-2010-0840.AA is the detection for an obfuscated malicious Java class applet component that exploits the vulnerability described in CVE-2010-0840. Successful exploitation leads to remote code execution.
Alert level:
severe
Backdoor:Win32/IRCbot.gen!AA
Backdoor:Win32/IRCbot.gen!AA is a worm that allows backdoor access and control of your computer by a remote server.
Alert level:
severe
Worm:AutoIt/Autorun.AA
Worm:AutoIt/Autorun.AA is a worm - a self-propagating program that can spread itself from one computer to another. Worms may spread themselves via a variety of different channels in order to compromise new computers. Variants of Worm:Win32/Autorun usually spread using methods that include, but may not be limited to, copying themselves to removable or network drives, and placing an autorun.inf file in the root directory of each affected drive in an attempt to ensure that the worm is run when the removable drive is attached, or the network drive is visited from a remote system supporting the Autorun feature.
Alert level:
severe
VirTool:Win32/Injector.AA
VirTool:Win32/Injector.AA is a generic detection for malicious files that are obfuscated using particular techniques to protect them from detection or analysis.
Alert level:
severe
Worm:Win32/Slenfbot.AA
Worm:Win32/Slenfbot.AA is a worm that can spread via MSN Messenger. The worm also contains backdoor functionality that allows unauthorized access to an affected machine. This worm does not spread automatically upon installation, but must be ordered to spread by a remote attacker.
Alert level:
severe
TrojanDownloader:Win32/Small.gen!AA
TrojanDownloader:Win32/Small.gen!AA is a program that silently downloads and executes arbitrary files without the affected user’s consent. Installation details and the files downloaded and executed may vary from instance to instance of this detection.
Alert level:
severe
Virus:Win32/Virut.AA
Virus:Win32/Virut.AA is a file infector that targets .EXE and .SCR files. It also opens a backdoor by connecting to an IRC server, allowing a remote attacker to download and execute arbitrary files on the infected computer.
Alert level:
severe
VirTool:Win32/VBInject.gen!AA
VirTool:Win32/VBInject.gen!AA is a generic detection for malicious files that are obfuscated using particular techniques to protect them from detection or analysis.
Alert level:
severe
Worm:Win32/Slenping.AA
Worm:Win32/Slenping.AA is a worm that spreads via removable drives and messaging software, and contains backdoor functionality.
Alert level:
severe
VirTool:JS/Obfuscator.AA
VirTool:JS/Obfuscator are detections for programs that have had their purpose obfuscated to hinder analysis or detection by anti-virus scanners. They commonly employ a variety of techniques such as encryption.
Alert level:
severe
Worm:Win32/Roron.AA@mm
Worm:Win32/Roron.AA@mm is a worm that attempts to send personal information to a remote address. It may spread via e-mail, network shares, or peer-to-peer file sharing.
Alert level:
severe
Exploit:Java/CVE-2010-0094.AA
Exploit:Java/CVE-2010-0094.AA is the detection for malicious Java applet stored within a Java Archive (.JAR) that attempts to exploit a vulnerability in the Java Runtime Environment (JRE) up to and including version 6 update 18. The vulnerability allows an unsigned Java applet to gain elevated privileges and potentially have unrestricted access to a host system, outside its "sand box" environment.
Alert level:
severe
Worm:Win32/Vobfus.AA
Worm:Win32/Vobfus.AA is a worm - a self-propagating program that can spread itself from one computer to another. Worms may spread themselves via a variety of different channels in order to compromise new computers. Commonly, worms may spread directly by copying themselves to removable or network drives, or by attempting to exploit particular vulnerabilities on targeted computers. Worms also often attempt to spread via platforms that require user interaction in order to run. They may send themselves as an attachment to an email or an instant message, or send a link to a copy of themselves in the body of a message. In these cases the message needs to be convincing enough to encourage the victim to click on the link or attachment and run or download a copy of the worm.
Alert level:
severe
Trojan:Win32/BHO.AA
Trojan:Win32/BHO.AA is a trojan that drops an adware into the system. It may connect to various remote servers and display advertisements.
Alert level:
severe
Worm:Win32/Taterf.AA
Worm:Win32/Taterf.AA is a worm that spreads via mapped drives in order to steal login and account details for popular online games.
Alert level:
severe
TrojanDownloader:MSIL/Banload.AA
Windows Defender detects and removes this threat.
This threat is part of the Win32/Banload family. Trojans in this family can download other malware onto your PC, including Win32/Banker and Win32/Bancos.
They can also steal your banking user names and passwords and send them to a remote attacker.
Alert level:
severe