787 entries found.
Displaying page 35
of 40.
Worm:Win32/Plexus.B@mm
Updated on Apr 28, 2006
Win32/Plexus.B@mm is a mass-mailing e-mail worm that targets Microsoft Windows. The worm also spreads through Kazaa peer-to-peer network shares and to computers that have not been patched for the Windows vulnerabilities described in Microsoft Security Bulletins MS03-039 and MS04-011. Win32/Plexus.B@mm opens a backdoor which allows attackers to run arbitrary code on the infected computer.
Alert level:
severe
Worm:Win32/Evaman.A@mm
Updated on May 02, 2006
Win32/Evaman.A@mm is a mass-mailing worm that targets Microsoft Windows. The worm spreads by querying Yahoo! People Search for email addresses, sending itself as an e-mail attachment to the retrieved addresses. The worm infects the computer when the user opens the e-mail attachment.
Alert level:
severe
Worm:Win32/Evaman.G@mm
Updated on May 04, 2006
Win32/Evaman.G@mm is a mass-mailing worm that targets Microsoft Windows. The worm spreads by sending itself as an e-mail attachment to e-mail addresses that it finds using Yahoo! People Search. The worm infects the computer when the user opens the e-mail attachment.
Alert level:
severe
Worm:Win32/Plexus.A@mm
Updated on May 08, 2006
Win32/Plexus.A@mm is a mass-mailing e-mail worm that targets Microsoft Windows. The worm also spreads through Kazaa peer-to-peer network shares and to computers that have not been patched for the Windows vulnerabilities described in Microsoft Security Bulletins MS03-039 and MS04-011. Win32/Plexus.A@mm opens a backdoor which allows attackers to run arbitrary code on the infected computer.
Alert level:
severe
Worm:Win32/Bagle.EG@mm
Updated on Jun 21, 2006
Win32/Bagle.EG@mm is a mass-mailing worm that targets certain versions of Microsoft Windows. The worm sends itself as an attachment to e-mail addresses that it finds on the infected computer. The worm is sent in a password protected zip file along with the password for the user to unzip the file. The worm monitors a random TCP port for instructions from remote attackers.
Alert level:
severe
Win32/Dumaru
Updated on Apr 07, 2005
Win32/Dumaru is a family of mass-mailing worms that targets certain versions of Microsoft Windows. The worm sends itself as an e-mail attachment to addresses that it finds on the infected computer. The worm runs when the user opens the attachment. Some variants drop a backdoor Trojan. Win32/Dumaru can infect or overwrite files, open ports, connect to an IRC server, release passwords and other confidential information, and receive commands from attackers.
Alert level:
severe
Win32/Hybris
Updated on May 23, 2005
Win32/Hybris includes both a virus and a worm component. The virus component infects WSOCK32.DLL, enabling the virus to activate when an Internet connection is established. The worm component spreads by monitoring outgoing e-mail traffic and, when a legitimate e-mail is sent, follows that by sending a second email to the same addresses. That email contains a copy of the worm. Win32/Hybris can download plug-ins via anonymous binary postings made to a particular newsgroup, thus changing the functionality.
Alert level:
severe
Worm:Win32/Bagle.ZD@mm
Updated on Feb 06, 2007
Worm:Win32/Bagle.ZD@mm is a mass-mailing e-mail worm that attempts to download and run arbitrary files from remote Web sites. Worm:Win32/Bagle.ZD@mm collects e-mail address from the local drive and also obtains e-mail addresses by checking Web site URLs included in the worm's code. The worm attempts to terminate the Windows Automatic Update service and modifies the System Registry in an attempt to disable booting into Safe Mode.
Alert level:
severe
Worm:Win32/Hybris.A@mm
Updated on Mar 25, 2007
Worm:Win32/Hybris.A@mm includes both a virus and a worm component. The virus component infects WSOCK32.DLL, enabling the virus to activate when an Internet connection is established. The worm component spreads by monitoring outgoing e-mail traffic and, when a legitimate e-mail is sent, follows that by sending a second email to the same addresses. That email contains a copy of the worm. Worm:Win32/Hybris.A@mm can download plug-ins via anonymous binary postings made to a particular newsgroup, thus changing the functionality.
Alert level:
severe
Worm:Win32/Hybris.gen@mm
Updated on Mar 25, 2007
Worm:Win32/Hybris.gen@mm includes both a virus and a worm component. The virus component infects WSOCK32.DLL, enabling the virus to activate when an Internet connection is established. The worm component spreads by monitoring outgoing e-mail traffic and, when a legitimate e-mail is sent, follows that by sending a second email to the same addresses. That email contains a copy of the worm. Worm:Win32/Hybris.gen@mm can download plug-ins via anonymous binary postings made to a particular newsgroup, thus changing the functionality.
Alert level:
severe
Worm:Win32/Netsky.AA@mm
Updated on Sep 15, 2004
Win32/Netsky.AA@mm is a mass-mailing worm that targets computers running Microsoft Windows 9x, Windows NT, Windows 2000, Windows XP, and Windows Server 2003. The worm sends itself to e-mail addresses that it finds on the infected computer. The worm is activated when a user opens an e-mail attachment that contains the worm.
Alert level:
severe