W32.Kedebe.B@mm
This malware was reported by: Symantec
W32.Kedebe.B@mm is a mass-mailing worm that ends processes and prevents access to some Web sites, some of which are security related.
W32.Antiman.E@mm
This malware was reported by: Symantec
W32.Antiman.E@mm is a mass-mailing worm that uses its own SMTP engine to send itself to all email addresses that it finds on the compromised computer.
W32.Mytob.BV@mm
This malware was reported by: Symantec
Troj/Lohav-R
This malware was reported by: Sophos
W32/Sdbot-XW
This malware was reported by: Sophos
Trojan.Swoop
This malware was reported by: Symantec
Trojan.Swoop is a Trojan horse that flips the images on the screen so that everything will appear upside down.
Kedebe.C
This malware was reported by: Panda Software
Kedebe.C is a worm with backdoor characteristics that ends processes belonging to certain security tools, such as several antivirus programs and firewalls, among others. This leaves the affected computer vulnerable to attacks from other malware.Kedebe.C
W32/Kedebe.b@MM
This malware was reported by: Network Associates Inc
This mass-mailing worm bears the following characteristics:
written in MSVB, packed with UPX
contains its own SMTP engine
mails itself to recipient email addresses extracted from files on the victim machine
contains a backdoor - opens a
Downloader-YH
This malware was reported by: Network Associates Inc
W32/Sober-N
This malware was reported by: Sophos
W32/Mytob-CB
This malware was reported by: Sophos
Troj/Bbprox-A
This malware was reported by: Sophos
W32/Mytob-BZ
This malware was reported by: Sophos
W32/Rbot-ABP
This malware was reported by: Sophos
W32.Kelvir.BF
This malware was reported by: Symantec
W32.Kelvir.BF is a worm that downloads a file and sends a message to all MSN messenger contacts on the compromised computer.
Troj/Zlob-I
This malware was reported by: Sophos
Troj/Agent-DQ
This malware was reported by: Sophos
W32/Agobot-RX
This malware was reported by: Sophos
W32/Mytob-CA
This malware was reported by: Sophos
W32/Mytob-CC
This malware was reported by: Sophos
W32/Rbot-ABQ
This malware was reported by: Sophos
BotMail.C
This malware was reported by: Panda Software
BotMail.C is a backdoor that opens a port in order to allow remote connections to the affected computer to be established. This connection can be used to carry out actions such as download and run files, update the backdoor and run system commands.Additi
W32/Mytob-CE
This malware was reported by: Sophos
Troj/Fireby-B
This malware was reported by: Sophos
Troj/Viper-A
This malware was reported by: Sophos
Troj/JDownL-A
This malware was reported by: Sophos
W32/Mytob-CB
This malware was reported by: Sophos
Trojan.Mdropper.B
This malware was reported by: Symantec
Trojan.Mdropper.B is a Trojan horse that exploits the Microsoft Word Macro Name Handler Buffer Overflow Vulnerability (described in the Microsoft Security Bulletin MS03-050) and drops a file on the compromised computer.
W32.Mytob.BZ@mm
This malware was reported by: Symantec
W32.Mytob.BZ@mm is a mass-mailing worm that uses its own SMTP engine to send an email to addresses that it gathers from the compromised computer.
The worm also opens a back door and spreads through the network by exploiting the Microsoft Windows DCOM R
VBS.Spiltron@mm
This malware was reported by: Symantec
VBS.Spiltron@mm is a mass-mailing worm that may also spread through IRC channels. It also disables the Registry Editor and modifies settings in Windows Explorer.
W32.Bakaver.A
This malware was reported by: Symantec
W32.Bakaver.A is a polymorphic virus that infects portable executable files.
W32.Ezio.A@mm
This malware was reported by: Symantec
W32.Ezio.A@mm is a mass-mailing worm that can spread through file-sharing networks and prevents access to security-related Web sites.
W32/Sdbot-YB
This malware was reported by: Sophos
W32/Mytob-BZ
This malware was reported by: Sophos
VBS.Ypsan.E@mm
This malware was reported by: Symantec
VBS.Ypsan.E@mm is a mass-mailing worm that sends itself to all email addresses gathered from the Windows Address Book and attempts to shut down the compromised computer.
W32.Eshared.A@mm
This malware was reported by: Symantec
W32.Eshared.A@mm is a mass-mailing worm that uses MAPI to send a copy of itself to email addresses gathered from the compromised computer.
W32/Rbot-ABX
This malware was reported by: Sophos
W32.Mydoom.BO@mm
This malware was reported by: Symantec
W32.Roty@mm
This malware was reported by: Symantec
W32.Roty@mm is a mass-mailing worm that attempts to send a copy of itself to email addresses gathered from the Windows Address Book and overwrites the contents of Microsoft Word documents.
Troj/LanFilt-J
This malware was reported by: Sophos
W32/Mytob-BC
This malware was reported by: Sophos
W32/Agobot-RX
This malware was reported by: Sophos
W32/Mytob-CC
This malware was reported by: Sophos
W32/Mytob-CF
This malware was reported by: Sophos
W32/Mytob-CE
This malware was reported by: Sophos
W32/Mytob-CG
This malware was reported by: Sophos
Troj/Viper-A
This malware was reported by: Sophos
W32/Wurmark-K
This malware was reported by: Sophos
Troj/JDownL-A
This malware was reported by: Sophos
Trojan.Esteems.B
This malware was reported by: Symantec
Trojan.Esteems.B is a Trojan horse that steals confidential information from a compromised computer by logging keystrokes and sending them to a remote server.
W97M.Deluz
This malware was reported by: Symantec
W97M.Deluz is a macro virus that deletes files in System folders and infects the Normal.dot file when a Microsoft Word document infected with the virus is closed.
W32.Mydoom.BQ@mm
This malware was reported by: Symantec
W32/Rbot-ACC
This malware was reported by: Sophos
W32/Sdbot-YB
This malware was reported by: Sophos
W32.Antiman.F@mm
This malware was reported by: Symantec
W32.Antiman.F@mm is a mass-mailing worm that uses its own SMTP engine to send itself to all email addresses that it finds on the compromised computer. W32.Antiman.F@mm typically arrives as an email attachment.
Note: Virus definitions version 70509s, ex
Trojan.PWS.QQPass.G
This malware was reported by: Symantec
Trojan.PWS.QQPass.G is a Trojan horse that steals the usernames and passwords of QQ, an instant messaging client popular in China.
W32/Rbot-ACE
This malware was reported by: Sophos
W32/Rbot-ABX
This malware was reported by: Sophos
W32.Beagle.BQ@mm
This malware was reported by: Symantec
W32.Beagle.BQ@mm is a mass-mailing worm that uses its own SMTP engine to send out copies of a Trojan.Tooso variant. The worm also opens a back door on the compromised computer on TCP port 80.
Keylog-Chota
This malware was reported by: Network Associates Inc
Mytob.CX
This malware was reported by: Panda Software
Mytob.CX is a worm with backdoor characteristics that connects to an IRC server in order to receive remote control commands, such as delete, download and run files.Mytob.CX ends processes belonging to several security tools and system tools, among others
Mytob.au
This malware was reported by: F-Secure
Mytob.au is a new variant of Mytob family of worms. Unlike the
previous variants which used email and LSASS vulnerability in
spreading, this variant only uses emails.
Mytob.CU
This malware was reported by: Panda Software
Mytob.CU is a worm with backdoor characteristics that connects to an IRC server in order to receive remote control commands, such as delete, download and run files.Mytob.CU ends processes belonging to several security tools and system tools, among others
Backdoor-SX
This malware was reported by: Network Associates Inc
Virtual Bouncer
This malware was reported by: Network Associates Inc
Troj/Whistler-F
This malware was reported by: Sophos
W32/Mytob-BC
This malware was reported by: Sophos
Hacktool.Underhand
This malware was reported by: F-Secure
W32.Drivus.A
This malware was reported by: Symantec
W32.Drivus.A is a worm that spreads through shared folders and drops a variant of Trojan.Drivus.
W32.Mediakill.A@mm
This malware was reported by: Symantec
W32.Mediakill.A@mm is a mass mailing worm that sends a copy of itself to the first ten addresses in the Windows Address Book.
Backdoor.Prysat
This malware was reported by: Symantec
Backdoor.Prysat is a back door Trojan horse that gives an attacker unauthorized access to the compromised computer and may be highly configurable as it is created by a builder.
MS Vulnerability MS05-024
This malware was reported by: Network Associates Inc
W32.Imspread.Worm
This malware was reported by: Symantec
W32.Imspread.Worm is a worm component that spreads through America Online Instant Messenger (AIM).
W32/Agobot-SE
This malware was reported by: Sophos
Troj/LanFilt-J
This malware was reported by: Sophos
W32.Ifbo.A
This malware was reported by: Symantec
W32.Ifbo.A is a worm that spreads by exploiting he Microsoft Windows Local Security Authority Service Remote Buffer Overflow (as described in Microsoft Security Bulletin MS04-011) and disables security services.
Note: Virus definitions dated prior to
Trojan.Lukuspam
This malware was reported by: Symantec
Trojan.Lukuspam is a Trojan horse that sends emails to addresses that it downloads.
W32/Rbot-ACH
This malware was reported by: Sophos
W32/Mytob-CF
This malware was reported by: Sophos
MS05-024
This malware was reported by: Panda Software
Troj/Goldun-T
This malware was reported by: Sophos
W32/Mytob-CG
This malware was reported by: Sophos
Kelvir.AS
This malware was reported by: Panda Software
Sdbot.DKE
This malware was reported by: Panda Software
Sdbot.DKE is a worm with backdoor characteristics that belongs to the Sdbot worm family. This family has the following common characteristics:It allows hackers to gain remote access to the affected computer in order to carry out actions that compromise u
QuickKeylog
This malware was reported by: Panda Software
QuickKeylog is a hacking tool. Though these programs are legitimate and useful tools when they are appropriately used, a hacker could take advantage of them in order to carry out malicious actions.QuickKeylog logs keystrokes entered by the affected user
Gruesome.229
This malware was reported by: Network Associates Inc
This is a parasitic virus that appends itself to COM files.
It appends the virus code (229 bytes) to COM files, and then modifies the initial 5 bytes of the COM file to allow the viral code to run.
There is no additional payload for this v
W32/PassMail-D
This malware was reported by: Sophos
W32/Wurmark-K
This malware was reported by: Sophos
Spyware-RemoteSpy
This malware was reported by: Network Associates Inc
W32/Kelvir-Gen
This malware was reported by: Sophos
W32/Eyeveg-F
This malware was reported by: Sophos
W32/Rbot-ACC
This malware was reported by: Sophos
Whiter.F
This malware was reported by: Panda Software
BackDoor-APX
This malware was reported by: Network Associates Inc
BackDoor-ADW
This malware was reported by: Network Associates Inc
W32.Lanieca.A@mm
This malware was reported by: Symantec
W32.Lanieca.A@mm is a mass-mailing worm that uses its own SMTP engine to send itself to all e-mail addresses it retrieves from various locations on a compromised computer.
Note: Definitions dated prior to May 12, 2005 detect this threat as W32.Lorac.
BackDoor-SN
This malware was reported by: Network Associates Inc
Trojan.Esteems.C
This malware was reported by: Symantec
Trojan.Esteems.C is a Trojan horse that steals confidential information from a compromised computer by logging keystrokes and sending them to a remote server.
W32/Agobot-SF
This malware was reported by: Sophos
W32/Rbot-ACE
This malware was reported by: Sophos