Win32/Ska is mailer worm that targets certain versions of Microsoft Windows. The worm spreads as an attachment to newsgroup postings and e-mail. The worm runs when a user opens the attachment.

PWS:Win32/Ldpinch.VE is a member of Win32/Ldpinch - a family of trojans that steals sensitive information from affected machines and sends it to a remote attacker. In particular, Ldpinch variants target passwords for a comprehensive selection of FTP, chat and e-mail clients, as well as those stored by browsers and in protected storage.

The Win32/Msblast family of network worms exploit a Remote Procedure Call (RPC) Distributed Component Object Model (DCOM) vulnerability on Microsoft Windows 2000 and Windows XP systems. The worm may also attempt denial of service (DoS) attacks on some server sites, or create a backdoor program that allows attackers to access the infected system.

Windows Defender Antivirus detects and removes this threat.

 

Win32/Zafi is a family of mass-mailing worms. The worm sends itself to email addresses that it finds on the infected PC.

 

It may terminate processes that relate to system utilities and security products. It may change security-related registry key values. Some variants also copy the worm to network-share folders.

The Win32/Rbot family of backdoor Trojans targets certain versions of Microsoft Windows. After the Trojan infects a computer, it allows attackers to control the computer through an IRC channel. Some commands instruct Win32/Rbot to spread to other computers by scanning for network shares with weak passwords, exploiting various Windows vulnerabilities, or spreading through backdoor ports opened by other families of malicious software. The Trojan also allows attackers to perform other backdoor functions, such as launching denial of service (DoS) attacks against certain Web sites and retrieving system information from infected computers. 

Win32/Klez is a family of mass-mailing network worms that targets certain versions of Microsoft Windows. It can spread through mapped drives, network shares, executable files, and e-mail. Some Win32/Klez variants infect executable files. Win32/Klez also drops the Win32/Elkern virus to infect executable files.

Win32/Mytob is a family of mass-mailing worms that targets computers running certain versions of Microsoft Windows. The worm can spread by exploiting Windows vulnerabilities that are fixed by installing Microsoft Security Updates MS03-026 and MS04-011. The worm can also spread by sending a copy of itself through e-mail, MSN Messenger, or Windows Messenger. 

Windows Defender Antivirus detects and removes this threat.

 

Win32/Yaha is a family of mass-mailing network worms that targets certain versions of Microsoft Windows. The worm spreads primarily by sending a copy of itself as an attachment to e-mail addresses gathered from an infected computer. It can also spread through mapped drives and writeable network shares. The worm can terminate security-related processes and conduct denial of service (DoS) attacks against certain Web sites.

Windows Defender Antivirus detects and removes this threat.

 

Win32/Swen is a family of mass-mailing network worms that targets certain versions of Microsoft Windows. 

 

The worm spreads through email, newsgroups, writeable network shares, Internet relay chat channels, and peer-to-peer file-sharing programs. 

Win32/Bagz is a family of mass-mailing worms that targets certain versions of Microsoft Windows. The worm spreads as an e-mail attachment and runs when the user opens the attachment. It can download and run other malicious files from a server.

Win32/Gael is a parasitic virus that targets certain versions of Microsoft Windows. The virus infects Win32 PE .exe files locally and on writeable network shares. The virus can also download TrojanDownloader:Win32/Small from a Web site and run the file.

Windows Defender Antivirus detects and removes this threat.

 

Win32/Gibe is a family of mass-mailing network worms that targets certain versions of Microsoft Windows. 

 

The worm spreads primarily by sending a copy of itself as an attachment to e-mail addresses found on the infected computer. It can also spread through writeable network shares, IRC channels, and peer-to-peer network file sharing.

Windows Defender Antivirus detects and removes this threat.

 

Win32/Atak is a family of mass-mailing worms.

 

They search for email addresses in files on an infected PC and send themselves as an attachment to spoofed emails. They can also make duplicate copies of themselves on an infected PC and configure themselves to run when Windows starts.

 

 

Windows Defender detects and removes this threat.

Win32/Chir is a family of malware. It has both worm and virus components. The worm component spreads via email and spreads by exploiting the vulnerability resolved with the release of Microsoft Security Bulletin MS01-020. The virus component infects .EXE and .SCR files in local and remote drives. It's also been known to edit .HTM and .HTML files stored in your PC so that if these files are opened, the virus is run.

Windows Defender Antivirus detects and removes this threat.

 

Win32/Nsag is a family of data-stealing trojans. A Win32/Nsag trojan is created when certain malicious software injects code into wininet.dll, a Windows system file. When a user tries to send data to a website, code in Win32/Nsag may cause code in other malicious software on the computer to capture the user data and send it to an attacker.

Win32/Tibs is a family of Trojans that may download and run other malicious software or may steal user data and send it to the attacker via HTTP POST or email. The Win32/Tibs family frequently downloads Trojans belonging to the Win32/Harnig and Win32/Passalert families, both of which are families of Trojan downloaders which may in turn download and run other malicious software.