953 entries found.
Displaying page 21
of 48.
Win32/Reatle.A@mm
Updated on Jan 17, 2007
Win32/Reatle.A@mm is a mass-mailing e-email and network worm that exploits the Windows LSASS vulnerability described in Microsoft Security Bulletin MS04-011. Win32/Reatle.A@mm also downloads and runs a file from a URL specified in the worm's code.
Alert level:
severe
Win32/Bagle.BA@mm
Updated on Jan 25, 2007
Win32/Bagle.BA@mm is a mass-mailing worm. The worm spreads by sending a copy of itself as an e-mail attachment to e-mail addresses that it finds on the host computer. Win32/Bagle.BA@mm also spreads by copying itself to folders containing the string 'shar' in the folder name.
Alert level:
severe
Win32/Netsky.P
Updated on Apr 22, 2007
Win32/Netsky.P@mm is a mass-mailing worm that targets computers running certain versions of Microsoft Windows. The worm sends itself to e-mail addresses that it finds on the infected computer. The worm is activated when a user opens an e-mail attachment that contains the worm. The worm also exploits a vulnerability that is fixed in Microsoft Security Bulletin MS01-020.
Alert level:
severe
Win32/Fotomoto
Updated on Nov 27, 2007
Win32/Fotomoto is a Trojan that lowers security settings, delivers advertisements, and sends system and network configuration details to a remote Web site.
Alert level:
high
Win32/Baglezip
Updated on May 22, 2008
Win32/Baglezip is the ZIP archive that may be used by the greater Win32/Bagle family when spreading. Win32/Bagle is a family of mass-mailing worms. The worm spreads primarily through e-mail, though some variants also spread through peer-to-peer file sharing networks. The worm may also act as a backdoor, allowing an attacker access and control of a compromised computer.
Alert level:
severe
Win32/Corripio
Updated on May 29, 2008
Windows Defender Antivirus detects and removes this threat.
Win32/Corripio is a loosely-related family of trojans that attempt to steal passwords for popular online games. Detections containing the name Win32/Corripio are generic, and hence may be reported for a large number of different malicious password-stealing trojans that are otherwise behaviorally dissimilar.
Alert level:
severe
Win32/Slenfbot
Updated on Aug 25, 2008
Win32/Slenfbot is a worm that can spread via instant messaging programs, which may include MSN Messenger, Yahoo Messenger and Skype. It may also spread via removable drives or exploiting the MS06-040 vulnerability. This worm spreads automatically via shares, but must be ordered to spread via exploit or instant messaging by a remote attacker. The worm also contains backdoor functionality that allows unauthorized access to an affected machine.
Alert level:
severe
Win32/Skintrim
Updated on Aug 31, 2008
Win32/Skintrim is a trojan that downloads and executes arbitrary files, including updates and additional malware, from a predefined Web site, and displays advertisements. This trojan may be distributed by certain Web sites as a Microsoft Outlook add-on used to display 'emoticons', (i.e. icons used to represent emotions) or other animated icons within e-mail messages.
Alert level:
severe
Win32/Koobface
Updated on Mar 03, 2009
Windows Defender Antivirus detects and removes this threat.
Win32/Koobface is a multi-component family of malware used to compromise machines and direct them in various ways at the attacker's will.
This could include using the affected machine to distribute additional malware, generate 'pay per click' advertising revenue, steal sensitive data, break captchas, and subvert the affected user's online experience.
Its components are varied, but include a worm that spreads by utilizing social networking sites such as Facebook and MySpace.
Alert level:
severe
Win32/Bredolab
Updated on Sep 08, 2009
Win32/Bredolab is a downloader which is able to download and execute arbitrary files from a remote host.
Alert level:
severe