554 entries found.
Displaying page 8
of 28.
Backdoor:Win32/Haxdoor.gen!dll
Updated on Oct 13, 2008
Backdoor:Win32/Haxdoor.gen!dll is a component of Backdoor:Win32/Haxdoor that opens TCP ports and connects with predefined remote Web sites.
Alert level:
severe
VirTool:WinNT/Mader.gen!A
Updated on Apr 20, 2009
VirTool:WinNT/Mader.gen!A is a generic detection for a rootkit that may be bundled or installed by other malware. This rootkit protects itself from being detected or removed by hooking system calls and may download other components.
Alert level:
severe
VirTool:Win32/VBInject.gen!DD
Updated on Apr 07, 2010
VirTool:Win32/VBInject.gen!DD is a generic detection for obfuscated malware. The loader, which is detected as VirTool:Win32/VBInject.gen!DD, is written in Visual Basic and the malicious code, which may have virtually any purpose, is encrypted.
Alert level:
severe
VirTool:Win32/VBInject.gen!DE
Updated on Apr 09, 2010
VirTool:Win32/VBInject.gen!DE is a generic detection for obfuscated malware. The loader, which is detected as VirTool:Win32/VBInject.gen!DE, is written in Visual Basic and the malicious code, which may have virtually any purpose, is encrypted.
Alert level:
severe
Virus:WinNT/Cutwail.gen!A
Updated on Apr 21, 2010
Virus:Win32/Cutwail.gen!A is a generic detection for Win32/Cutwail; a multi-component family of malware that downloads and executes arbitrary files.
Virus:Win32/Cutwail.gen!A is mostly used to install additional Cutwail components, and other malware on an affected machine.
In general, the Cutwail family is used to compromise machines and direct them in various ways at the attacker's will, usually for monetary gain. This could include using the affected machine to:
- Distribute additional malware
- Send spam
- Generate 'pay per click' advertising revenue
- Harvest e-mail addresses
- Break captchas
Its components are varied, but include:
- Trojan downloaders and droppers
- Spammers
- Viruses
Cutwail also employs a rootkit and other defensive techniques to avoid detection and removal.
Alert level:
severe
VirTool:JS/Obfuscator.BB
Updated on Apr 28, 2011
VirTool:JS/Obfuscator.BB is a detection for JavaScript that decodes another script that could contain other malicious code, such as an exploit.
Alert level:
severe
VirTool:WinNT/Syspro.A
Updated on Jun 09, 2005
VirTool:WinNT/Syspro.A is a component of BrowserModifier:Win32/CommonName, unwanted software that mainly tracks Internet usage for marketing purposes, while providing advertising and search assistance with typed keywords. VirTool:WinNT/Syspro.A is installed via a Nullsoft installation program (NSIS archive).
VirTool:WinNT/Syspro.A is a kernel mode rootkit that may exist as a file WINIK.SYS and hide processes, files and registry keys. WinNT/Syspro.A intercepts registry system calls and attaches to file system driver to filter the file IO requests.
Alert level:
severe
VirTool:WinNT/Macpro.A
Updated on Jun 15, 2005
VirTool:WinNT/Macpro.A is a kernel-mode rootkit that targets Windows NT, Windows 2000, and Windows XP. It can hide processes, files, folders, and registry values on the infected computer. It is dropped by Backdoor:Win32/Samsteal.A.dr.
Alert level:
severe
VirTool:Win95/Macpro.A
Updated on Jul 11, 2005
VirTool:Win95/Macpro.A is a virtual device driver that hides files and folders on computers running Windows 9x.
Alert level:
severe
VirTool:Win95/Macpro.B
Updated on Jul 12, 2005
VirTool:Win95/Macpro.B is a virtual device driver that hides files and folders on computers running Windows 9x.
Alert level:
severe