Skip to main content
Skip to main content
Microsoft Security Intelligence
Cart 0 items in shopping cart
Sign in
787 entries found. Displaying page 22 of 40.
Updated on Feb 24, 2005
Win32/Bagle.BF@mm is a mass-mailing worm that targets certain versions of Microsoft Windows. The worm sends itself as an attachment to e-mail addresses that it finds on the infected computer. The worm is activated when a user opens the attachment. The worm monitors a random TCP port for instructions from remote attackers.
Alert level: severe
Updated on Mar 02, 2005
Win32/Bagle.BG@mm is a mass-mailing worm that targets certain versions of Microsoft Windows. The worm sends TrojanProxy:Win32/Mitglieder.CL as an attachment to e-mail addresses that it downloads from a specific Web address. The worm is activated when a user opens the attachment.
Alert level: severe
Updated on Mar 10, 2005
Win32/Bropia.N.worm is a worm that targets computers running certain versions of Microsoft Windows. The worm spreads and is activated when a user clicks a file that is sent through MSN Messenger or Windows Messenger. The worm drops Win32/Spybot.BJ.worm when it runs.
Alert level: severe
Updated on Mar 10, 2005
Win32/Bropia.O.worm is a worm that targets computers running certain versions of Microsoft Windows. The worm spreads and is activated when a user clicks a file that is sent through MSN Messenger or Windows Messenger. The worm drops Win32/Spybot.BK.worm when it runs.
Alert level: severe
Updated on Mar 10, 2005
Win32/Bropia.P.worm is a worm that targets computers running certain versions of Microsoft Windows. The worm spreads and is activated when a user opens a file that is sent through MSN Messenger or Windows Messenger.
Alert level: severe
Updated on May 16, 2005
Win32/Bropia.T.worm is a worm that targets computers running certain versions of Microsoft Windows. The worm spreads as a file sent through MSN Messenger or Windows Messenger. The worm runs when the user opens the file.
Alert level: severe
Updated on Dec 16, 2005
Worm:Win32/Dasher.A is a network worm that can infect computers running Microsoft Windows 2000. The worm scans randomly-selected IP addresses to find computers that have a certain TCP port open. The worm exploits a Windows vulnerability when it finds the port open on a Windows 2000 computer that has not been patched with Microsoft Security Update MS05-051. Worm:Win32/Dasher.A then infects the computer in order to connect to a server and execute instructions from an attacker.
Alert level: severe
Updated on Dec 16, 2005
Worm:Win32/Dasher.B is a network worm that can infect computers running Microsoft Windows 2000. The worm scans randomly-selected IP addresses to find computers that have a certain TCP port open. The worm exploits a Windows vulnerability when it finds the port open on a Windows 2000 computer that has not been patched with Microsoft Security Update MS05-051. Worm:Win32/Dasher.B then infects the computer in order to connect to a server and execute instructions from an attacker.
Alert level: severe
Updated on Dec 17, 2005
Worm:Win32/Dasher.C searches random IP addresses for computers listening on specific ports. It then tries to exploit known vulnerabilities on these remote computers.
Alert level: severe
Updated on Feb 06, 2006
Win32/Bagle.X@mm!CME-328 is a mass-mailing worm that targets computers running certain versions of Microsoft Windows. The worm sends itself as an attachment to e-mail addresses that it finds in certain files on the infected computer. The worm is activated when the e-mail recipient opens the attachment. The worm monitors a random TCP port for instructions from remote attackers.
 
This threat was assigned CME ID 328.
Alert level: severe
Updated on Jul 06, 2006
Win32/Sizuma.B is an instant messenger worm that spreads to MSN Messenger contacts by sending a message containing a link to a Trojan downloader. Microsoft detects the downloader as TrojanDownloader:Win32/Agent.ABT. The message sent by Win32/Sizuma.B reads “Ei... Mandei um cartao pra vc” and is accompanied by the link which points to a malicious website hosting the Trojan downloader.
Alert level: severe
Updated on Sep 22, 2006
Win32/Parite.A is a memory resident polymorphic file infector that targets PE EXE and SCR files on the local file system and writeable network shares.
Alert level: high
Updated on Oct 31, 2006
Worm:Win32/Rewdar.A is a network worm that spreads to systems that have not been patched for one or more of the Windows vulnerabilities described in Microsoft Security Bulletins MS04-011, MS05-039, and MS06-040. Worm:Win32/Rewdar.A may also download and run additional malicious software from a specified URL. Worm:Win32/Rewdar.A attempts to terminate security related processes and blocks access to security related websites by modifying the local HOSTS file. These modifications could cause the impacted user to be unable to access updates necessary to detect and remove the worm.
Alert level: severe
Updated on Nov 27, 2006
Win32/Bagle.X@mm!CME-328 is a mass-mailing worm that targets computers running certain versions of Microsoft Windows. The worm sends itself as an attachment to e-mail addresses that it finds in certain files on the infected computer. The worm is activated when the e-mail recipient opens the attachment. The worm monitors a random TCP port for instructions from remote attackers.
 
This threat was assigned CME ID 328.
Alert level: severe
Updated on Nov 30, 2006
Win32/Bagle.BD@mm is a mass-mailing worm that targets certain versions of Microsoft Windows. The worm sends itself as an attachment to e-mail addresses that it finds on the infected computer. The worm is activated when the user opens the attachment. The worm monitors a random TCP port for instructions from remote attackers.
Alert level: severe
Updated on Nov 30, 2006
Win32/Bagle.AX@mm is a mass-mailing worm that creates and runs the worm Win32/Bagle.AS@mm.
Alert level: severe
Updated on Dec 07, 2006
Alert level: severe
Updated on Dec 07, 2006
Alert level: severe
Updated on Dec 07, 2006
Alert level: severe
Updated on Dec 07, 2006
Alert level: severe