70 entries found.
Displaying page 1
of 4.
Worm:Win32/Neeris.B
Updated on Apr 11, 2011
Worm:Win32/Neeris.B is a chat client worm with backdoor Trojan functionality. The worm uses API calls for both Windows Messenger and AOL Messenger to send messages to contacts, with an attached file containing a copy of the worm. Worm:Win32/Neeris.B connects to an IRC server and waits to receive commands, such as to self-update, remove itself, download various programs and malware, or terminate running processes.
Alert level:
severe
VirTool:Win32/Gowfi.A
Updated on Jun 02, 2011
VirTool:Win32/Gowfi.A is part of Win32/Gowfi, a multi-component trojan family that attempts to redirect web browsing from certain sites to phishing web pages for the purpose of harvesting logon credentials. This malware adds five certificate exceptions to allow Firefox to accept untrusted certificates.
Alert level:
severe
Trojan:Win32/Duberath.A
Updated on Apr 11, 2011
Trojan:Win32/Duberath.A is a trojan that poses as a popular legitimate application such as a Adobe Update Manager. Once installed, it may connect to a remote server and download and install additional files onto the compromised computer, and accept commands from a remote attacker.
Alert level:
severe
Backdoor:Win32/Luder.A
Updated on Apr 11, 2011
Backdoor:Win32/Luder.A is a virus that spreads by infecting executable files, by inserting itself into .RAR archive files, and by sending a copy of itself as an attachment to e-mail addresses found on the infected computer. This virus has a date-activated, file damaging payload, and may connect to a remote server and accept commands from an attacker.
Alert level:
severe
Trojan:Win32/Lowzones.DM
Updated on Apr 11, 2011
Trojan:Win32/Lowzones.DM is a trojan that may lower Internet Explorer security settings.
Alert level:
high
TrojanDownloader:Win32/Injector.gen!W
Updated on Apr 11, 2011
TrojanDownloader:Win32/Injector.gen!W is a detection for malware that manipulates other processes in order to load, and to perform tasks on its behalf.
Alert level:
severe
Backdoor:Win32/Floodnet.C
Updated on Jun 01, 2011
Backdoor:Win32/Floodnet.C is a trojan that allows unauthorized and limited remote access and control. The trojan connects to a remote server to accept commands from a remote attacker.
Alert level:
severe
Backdoor:Win32/Ixeshe.E
Updated on May 18, 2011
Backdoor:Win32/Ixeshe.E is a backdoor trojan that allows remote access and control of a computer. In the wild, this trojan is known to be dropped by malicious SWF files.
Alert level:
severe
TrojanProxy:Win32/Ranky.gen!B
Updated on May 26, 2010
TrojanProxy:Win32/Ranky.gen!B is a trojan that attempts to use the affected computer as a proxy server without the user's consent.
Alert level:
severe
Backdoor:Win32/Retulcun.A
Updated on Apr 11, 2011
Backdoor:Win32/Retulcun.A is a trojan that collects information about the affected host computer and attempts to download arbitrary data or files from a remote server named "newsuny.blackberrycluter.com".
Alert level:
severe
Backdoor:Win32/Sdbot.A
Updated on Apr 11, 2011
Backdoor:Win32/Sdbot.A is a backdoor Trojan that allows an attacker to take control of an infected computer. When a computer is infected, the Trojan connects to an Internet Relay Chat (IRC) server and joins a channel in order to receive commands from the controlling attacker. These commands can instruct the Trojan to perform a number of different actions.
Alert level:
severe
Backdoor:MSIL/Sidkey.A
Updated on Oct 09, 2014
Windows Defender detects and removes this threat.
This threat can be used to dispense money from an infected ATM machine.
It can be manually installed on an ATM machine by a malicious hacker.
Alert level:
severe
Trojan:Win32/Womcodi.gen
Updated on May 25, 2010
Trojan:Win32/Womcodi.gen is a trojan that attempts to spread other malware via peer to peer file sharing.
Alert level:
severe
Backdoor:Win32/IRCbot.OR
Updated on Apr 11, 2011
Backdoor:Win32/IRCbot is a Trojan that connects to an Internet Relay Chat (IRC) server and provides attackers with remote access to the infected system. Commands that can be remotely executed include downloading and executing files. Backdoor:Win32/IRCbot also includes the ability to send itself to MSN Messenger contacts.
Alert level:
severe
Trojan:AndroidOS/ShastroSms.A
Updated on Sep 15, 2011
Trojan:AndroidOS/ShastroSms.A is a trojan that affects mobile devices running the Android operating system. It monitors incoming SMS messages.
Alert level:
severe
Trojan:Win32/Diple.A
Updated on Aug 09, 2011
Trojan:Win32/Diple.A is a trojan that allows unauthorized remote access and control of an affected computer. The trojan attempts to connect to a remote server using a specific port to accept and execute commands from a remote attacker. The trojan could download an arbitrary file and run it as "%TEMP%\csrssd.exe".
Alert level:
severe
Trojan:Win32/Lowzones.DO
Updated on Apr 11, 2011
Win32/Lowzones.DO is a trojan that may lower Internet Explorer security settings.
Alert level:
high
Exploit:Win32/Siveras.E
Updated on Apr 11, 2011
Exploit:Win32/Siveras.E is detection for specific known malware used to exploit a vulnerability in the Domain Name System (DNS) Server Service. This vulnerability impacts Microsoft Windows 2000 Server Service Pack 4, Windows Server 2003 Service Pack 1, and Windows Server 2003 Service Pack 2.
For vulnerability details and patch information, please see Microsoft Security Bulletin MS07-029 at http://www.microsoft.com/technet/security/bulletin/ms07-029.mspx.
Alert level:
severe