 |
Malware Threats 2008.09.18
|
| |
W32/sality!mem
W32/sality!mem, also recognized as sality!mem is a virus that spreads by infecting Windows Win32 .exe files via system loopholes. W32/sality!mem spreads through spam email attachments and adult related wesites. Upon infection, W32/sality!mem will monitor system activity and send private information to remote servers.
|
| |
Backdoor.Eterok.C
Backdoor.Eterok.C, also mentioned as Trojan Eterok.C is a backdoor trojan horse that opens security holes for remote hackers on the infected computer. Backdoor.Eterok.C injects itself into startup processes and runs every time the Windows system boots. Backdoor.Eterok.C allow outside hijackers to remotely control victims PC system. Backdoor.Eterok.C is a serious security risk! information, harm system files and significantly slow down computer speed!
|
| |
CWS.Svchost32
CWS.Svchost32, also recognized as CoolWWWSearch Svchost32 or CoolWebSearch Svchost32 is a dangerous browser hijacker that use the latest hacker techniques to avoid security programs and sneak into victims system to alter IE and FireFox homepage to coolwebsearch.com. CWS.Svchost32 can infect the system automatically via corrupt webpages and add shortcuts and flood the desktop with adult related pop-ups redirecting to different porn and gambling websites.
|
| |
Email-worm.win32.beloy.a
Email-worm.win32.beloy.a, also identified as worm.win32.beloy.a or beloy.a is a malicious file that self-replicate itself on PC's without victims knowledge. Email-worm.win32.beloy.a use security loopholes and spread without infecting Windows system files. Worm win32.Beloy.a will download and install additional malware threats using large amount of system resources causing extreamly slow and unreliable computer.
|
| |
Trojan-Downloader.Win32.Nurech
Trojan-Downloader.Win32.Nurech also known as Downloader.Win32.Nurech, Win32.Nurech or Nurech is a malicious program rapidly spreading on the internet, infecting processes and hijackingWindows registry. Trojan-Downloader.Win32.Nurech is usually spread via infected e-mail attachments, media codecs, messenger programs and porn web sites. Onec installed, Nurech will runs on every startup, disable firewall, spyware virus remover security tools and download additional trojan infections onto the infected system.
|
| |
Win32.Trojan.Crypt
Win32.Trojan.Crypt also referred to as Trojan.Crypt is a backdoor dropper trojan that injects itself into Windows Win32 system files via IE security holes, and drops various malicious programs onto the infected local or network computer. Win32.Trojan.Crypt can steal and foward passwords, usernames, credit card and other information to outlaying parties. Win32.Trojan.Crypt is serious security threat that can harm both Windows system and PC hardware!
|
| |
Trojan.DNSChanger
Trojan.DNSChanger, also identified as DNSChanger or Trojan.DNS_Changer is a malicious program that changes Windows TCP/IP settings (DNS values) to redirect victims to corrupt web sites. Usually Trojan.DNSChanger spread via dubious p2p and freeware applications or via porn websites. The Trojan.DNSChanger is a dangerous hijacker that may initiate critical damage your system!
|
| |
Smitfraud-C.gp
Smitfraud-C.gp is a Trojan-Spy.HTML.Smitfraud.c variant usually found together with, Smitfraud-C.CoreService, Troj_Fakeav.ne, Win32.Agent.pz and other malware. Smitfraud-C.gp is a type of trojan that installs itself via corrupt video codecs or bundled with infected multimedia files, without the victims knowledge. Smitfraud-C.gp infects Windows system dll files and hijacks the desktop background wallpaper with Blue Screen of Death and displays popups that blockers cannot block. Smitfraud-C.gp loads into PC memory and executes at system boot, can therefore not be removed by regular security programs.
|
| |
Trojan.Wimad
Trojan.Wimad also known as Wimad is a is a downloader Trojan variant that disguise as a legit multimedia file, constructed to hijack the PC and download malware files from remote servers by using exploits Windows DRM technology.Trojan.Wimad spreads via dubious p2p and shareware programs, multimedia spam emails or via adult content websites. Once inside, Trojan.Wimad drops random infections into Windows registry and floods the desktop with unwanted porn and security warning pop ups. Trojan.Wimad is a precarious infection that can damage computer activity!
|
| |
Trojan:Win32/Vundo.BR
Trojan:Win32/Vundo.BR also detected as Win32/Vundo.BR or Vundo.BR is a dangerous backdoor trojan, part of the large Win32.Vundo family. Trojan:Win32/Vundo.BR use system loop holes to hijack windows internet browser to give outside hacers access to the infected computer. Trojan:Win32/Vundo.BR infects the Windows/System32 by injecting fake BHO (Browser Helper Objects) and phony DLL files attached to Explorer.exe and Winlogon. Trojan:Win32/Vundo.BR is usually spread via porn web sites, corrupt shareware/freeware and file-sharing downloads or through infected ActiveX and media codec updates.
|
| |
Trojan Horse Generic_c.MFD
Trojan Horse Generic_c.MFD also known as Generic_c.MFD Trojan is a malicious downloader program that infects Windows system32 files usually found togeather with Downloader.FraudLoad.S. Generic_c.MFD infects PC's via music and movie downloads or via pornographic web sites, SPAM e-mail, corrupt Flash updatesAciveX and fake . Onec inside, Trojan Horse Generic_c.MFD will automatically downloads and infects the system with random malware infections without the victims knowledge.
|
| |
Trojan:Win32/Vundo.gen!H
Trojan:Win32/Vundo.gen!H also known as Win32/Vundo.gen!H or Zlob.Vundo!H is a new Win32/Vundo.gen variant. Trojan:Win32/Vundo.gen!H is a generic system exploit trojan that infects the system by dropping fake BHOs dll files into Windows win32 system. Trojan:Win32/Vundo.gen!H will activate unsolicited warning pop-ups spread by fake security programs, usually via spam email, malicious chat programs, filesharing networks or porn web pages.
|
| |
Trojan.Win32.Agent.akk
Trojan.Win32.Agent.akk, also known as Win32.Agent.akk or Agent.akk is a bogus Trojan.Win32.Agent variant displayed by fake scurity programs (rouge antispyware software) like IEDefender to mislead victims into downloading the phony malware cleaner tool. The phony "Your browser was hijacked by Trojan.Win32.Agent.akk" pop up warning messages are activated by Zlob MediaCodec trojan, usually installed via infected video codecs and fake "Video ActiveX Object Error" notifications. The trial tool will display Trojan.Win32.Agent.akk and other phony security threats to scam victims into purchasing the fake antispyware software.
|
| |
Downloader.Generic7.AKOA
Downloader.Generic7.AKOA also known as Generic7.AKOA is backdoor trojan installed by Gwave508.exe. Downloader.Generic7.AKOA is a generic standalone trojan horse program that can hiddenly download and execute malicious programs from remote ftp or websites on to the infected computer. Usually Downloader.Generic7.AKOA trojan spred through questionable porn related websites, via peer to peer programs and spam emails. Downloader.Generic7.AKOA is a destructive infection and a serious security risk that can steal private data and cause slow PC performance!
|
| |
Worm.Autorun.DHA
Worm.Autorun.DHA, also identified as Autorun.DHA is a harmful Worm.Autorun network worm variant that self-replicates via security holes across local and network computers. Worm.Autorun.DHA spreads independently without victims intervention. Worm.Autorun.DHA spread by sending itself through addresses in victims email contact list. Worm.Autorun.DHA will use a large amount of computer resources and cause noticeably slow system performance. Worm.Autorun.DHA malicious threat is a serious security risk that can harm Windows system files!
|
| |
| |
