PWSteal.Raidys
This malware was reported by: Symantec
PWSteal.Raidys is a Trojan horse that attempts to steal confidential information and opens a back door on the compromised computer. The Trojan also uses rootkit capabilities to hide its process in memory.
Trojan.Kangenie
This malware was reported by: Symantec
Trojan.Kangenie is a Trojan horse that places a scrolling display on the task bar. The Trojan also creates and opens a file on a compromised computer and may disable the Task Manager and the Registry Editor.
W32.Mytob.GC@mm
This malware was reported by: Symantec
W32.Mytob.GC@mm is a mass-mailing worm that opens a back door and lowers security settings on the compromised computer.
Troj/Proxy-M
This malware was reported by: Sophos
W32/Mytob-BU
This malware was reported by: Sophos
Trojan.Myftu
This malware was reported by: Symantec
Trojan.Myftu is a Trojan horse that steals email address and registers porn service without notification.
Trojan.Binjo
This malware was reported by: Symantec
Trojan.Binjo is a Trojan horse that steals email address and registers porn service without notification.
Trojan.Alexmo
This malware was reported by: Symantec
Trojan.Alexmo is a Trojan horse that steals email addresses and sends them to predetermined email address.
W32/Mytob-BY
This malware was reported by: Sophos
W32/Kelvir-AP
This malware was reported by: Sophos
W32.Kelvir.DQ
This malware was reported by: Symantec
W32.Kelvir.DQ is a worm that spreads through MSN Messenger.
Mitglieder.CN
This malware was reported by: F-Secure
This Mitglieder variant appeared on June 26, 2005. The Mitglieder appears to have
been seeded to many users.
Trojan.Tooso.J
This malware was reported by: Symantec
Trojan.Tooso.J is a Trojan horse that interferes with the operation of security software by terminating processes, stopping services, removing registry entries, and deleting files.
Troj/BagleDl-R
This malware was reported by: Sophos
W32/Rbot-AGG
This malware was reported by: Sophos
W32/Sdbot-AYF
This malware was reported by: Sophos
W32/Rbot-AGH
This malware was reported by: Sophos
W32/Kelvir-AJ
This malware was reported by: Sophos
Mitglieder.DQ
This malware was reported by: Panda Software
W32/Codbot-N
This malware was reported by: Sophos
Troj/Drivol-A
This malware was reported by: Sophos
Generic Backdoor.m!114688
This malware was reported by: Network Associates Inc
W32.Mytob.GG@mm
This malware was reported by: Symantec
W32.Mytob.GG@mm is a mass-mailing worm that uses its own SMTP engine to send an email to addresses that it gathers from the compromised computer. It also opens a back door on TCP port 80, which allows the remote attacker to have unauthorized access to th
Trojan.Sokiron
This malware was reported by: Symantec
Trojan.Sokiron is a Trojan horse that steals email address and registers the addresses for a pornographic service. The Trojan then prompts the user to pay to cancel the service.
W32.Filukin.A@mm
This malware was reported by: Symantec
W32.Filukin.A@mm is a mass-mailing worm that sends a copy of itself to email addresses gathered from the compromised computer. The worm also attempts to lower security settings on the compromised computer.
W32.Alcra.B
This malware was reported by: Symantec
W32.Alcra.B is a worm that propagates through file-share networks and attempts to disable several programs on the compromised computer.
W32.Kelvir.DR
This malware was reported by: Symantec
W32.Kelvir.DR is a worm that spreads through MSN Messenger.
W32/Kelvir-CB
This malware was reported by: Sophos
W32/Mytob-BV
This malware was reported by: Sophos
Troj/Zlob-K
This malware was reported by: Sophos
W32/Opaserv-V
This malware was reported by: Sophos
Agent.EO
This malware was reported by: F-Secure
Agent.EO is a trojan that spies web traffic and modifies infected
computers desktop settings. It infects WININET.DLL for activating
its spying component. It also downloads and activates PSGuard, which
appears to be anti-spyware program.
VBS.Inker
This malware was reported by: Symantec
VBS.Inker is a VBS script worm that attempts to perform malicious acts, including attempts at a mass-mailing.
Troj/Insor-B
This malware was reported by: Sophos
Troj/Pyfls-A
This malware was reported by: Sophos
Troj/Proxy-M
This malware was reported by: Sophos
W32/Mytob-BY
This malware was reported by: Sophos
W32.Meetot
This malware was reported by: Symantec
W32.Meetot is a worm that copies itself to mapped drives.
W32.Spybot.RBY
This malware was reported by: Symantec
W32.Spybot.RBY is a worm that opens a back door on the compromised computer. It attempts to spread by exploiting various vulnerabilities and network shares with weak passwords.
W32/Codbot-AG
This malware was reported by: Sophos
W32/Sdbot-AYF
This malware was reported by: Sophos
W32.Kelvir.DT
This malware was reported by: Symantec
W32.Kelvir.DT is a worm that spreads through MSN Messenger and drops a W32.Randex variant.
W32.Mytob.GK@mm
This malware was reported by: Symantec
W32.Mytob.GK@mm is a mass-mailing worm that opens a back door and lowers security settings on the compromised computer.
W32.Mytob.GJ@mm
This malware was reported by: Symantec
W32.Mytob.GJ@mm is a mass-mailing worm that opens a back door and lowers security settings on the compromised computer.
Troj/Multidr-DQ
This malware was reported by: Sophos
W32/Kelvir-AJ
This malware was reported by: Sophos
W32.Mydoom.CF@mm
This malware was reported by: Symantec
W32.Mydoom.CF@mm is a mass-mailing worm that uses its own SMTP engine to send an email to addresses that it gathers from the compromised computer.
W32/Codbot-N
This malware was reported by: Sophos
Oscarbot.AY
This malware was reported by: Panda Software
Oscarbot.AY is a worm with backdoor characteristics that connects to the IRC server b0dy3r.q8hell.org, joins a certain channel and waits for remote control commands to be carried out on the affected computer. These control commands include downloading an
PGPCoder.B
This malware was reported by: Panda Software
Fantibag.B
This malware was reported by: F-Secure
Fantibag.B is a trojan that installs a packet filter for preventing
of downloading AV companies database updates and security patches.
It is related to recent Bagle/Mitglieder trojans.
Troj/Psyme-CA
This malware was reported by: Sophos
Troj/BagleDl-R
This malware was reported by: Sophos
Troj/Zlob-K
This malware was reported by: Sophos
PWSteal.Bancos.Y
This malware was reported by: Symantec
PWSteal.Bancos.Y is a password-stealing Trojan horse that logs keystrokes and steals information entered into certain financial Web sites.
W32/Rbot-AGP
This malware was reported by: Sophos
Troj/Insor-B
This malware was reported by: Sophos
W32.Spybot.RDW
This malware was reported by: Symantec
W32.Spybot.RDW is a worm that has distributed denial of service and back door capabilities. The worm spreads to network shares protected by weak passwords and by exploiting computer vulnerabilities.
Exploit-DFind
This malware was reported by: Network Associates Inc
W32.Kelvir.DU
This malware was reported by: Symantec
W32.Kelvir.DU is a worm that spreads through MSN Messenger.
W32.Mytob.GM@mm
This malware was reported by: Symantec
W32.Mytob.GM@mm is a mass-mailing worm that opens a back door and lowers security settings on the compromised computer.
Trojan.Gpcoder.C
This malware was reported by: Symantec
Trojan.Gpcoder.C is a Trojan horse that encrypts files on a compromised computer. Users of the compromised computer are instructed to purchase a decoder to recover the encrypted files.
W32.Mytob.GN@mm
This malware was reported by: Symantec
W32.Mytob.GN@mm is a mass-mailing worm that has back door capabilities and uses its own SMTP engine to send an email to addresses that it gathers from the compromised computer.
W32/Gatina-A
This malware was reported by: Sophos
Adware-AZESearch
This malware was reported by: Network Associates Inc
W32/Rbot-AGQ
This malware was reported by: Sophos
W32/Codbot-AG
This malware was reported by: Sophos
Adware-TalkingBuddy
This malware was reported by: Network Associates Inc
Adware-Ultrabar
This malware was reported by: Network Associates Inc
W32/Mytob-CT
This malware was reported by: Sophos
Troj/Multidr-DQ
This malware was reported by: Sophos
Download.Fugif
This malware was reported by: Symantec
Download.Fugif is a Trojan horse that downloads remote files from predetermined Web sites. The Trojan uses alternate data streams to hide its presence on the compromised computer.
Backdoor.Berbew.S
This malware was reported by: Symantec
Backdoor.Berbew.S is a Trojan that steals passwords and opens a back door allowing a remote attacker unauthorized access to the compromised computer. The Trojan also attempts to lower security settings in Internet Explorer.
PWSteal.Menghuan
This malware was reported by: Symantec
PWSteal.Menghuan is a password-stealing Trojan horse that attempts to steal passwords for the game, Menghuan Xiyou Online. The Trojan also attempts to log keystrokes entered into a Web form on the 163.com domain and sends the stolen information to a pred
Trojan.Kakkeys.B
This malware was reported by: Symantec
Trojan.Kakkeys.B is a Trojan that attempts to leak sensitive information to certain bulletin boards and through the Winny file-sharing network.
VBS.Illicky
This malware was reported by: Symantec
VBS.Illicky is a Trojan that modifies Internet Explorer settings and overwrites certain files on the compromised computer.
CodBot.AP
This malware was reported by: Panda Software
CodBot.AP is a worm with backdoor characteristics that connects to several IRC servers in order to receive control commands, such as download files via HTTP and run them, check the computer for currently known vulnerabilities, log keystrokes in orde
W32/Kelvir-CB
This malware was reported by: Sophos
W32.Mytob.GP@mm
This malware was reported by: Symantec
W32.Mytob.GP@mm is a mass-mailing worm that opens a back door and lowers security settings on the compromised computer.
Backdoor.Ranky.U
This malware was reported by: Symantec
Backdoor.Ranky.U is a Trojan that allows a compromised computer to be used as a covert proxy.
Backdoor.Graybird.M
This malware was reported by: Symantec
Backdoor.Graybird.M is a Trojan horse that hides its presence on the compromised computer and downloads files from remote Web sites.
W32/Rbot-AGT
This malware was reported by: Sophos
W32/Alemod
This malware was reported by: Network Associates Inc
This detection covers a virus that overwrites system file for the purpose of information stealing.
The virus might come bundled with other programs. When run, the following file is created in Windows system directory (%SysDir%):
oleadm.dl
Downloader-YY
This malware was reported by: Network Associates Inc
W32/Alemod.dll
This malware was reported by: Network Associates Inc
This detection covers dll files that are used in W32/Alemod. The files include:
oleadm.dll (6,657)
wininet.dll (varies on different OS)
For detail information, please refer to W32/Alemod
Top of Page
Generic Downloader.s
This malware was reported by: Network Associates Inc
W32.Toxbot.C
This malware was reported by: Symantec
W32/Rbot-AGI
This malware was reported by: Sophos
Troj/Psyme-CA
This malware was reported by: Sophos
SdBot.aay
This malware was reported by: F-Secure
Troj/Banker-EB
This malware was reported by: Sophos
Doomboot.A
This malware was reported by: F-Secure
Doomboot.A is a malicious SIS file trojan that drops corrupted system
binaries and Commwarrior.B into the infected device. The system files
dropped by Doomboot.A cause the device to fail at next reboot.
Doomboot.A pretends to be cracked version of S
Commwarrior.B
This malware was reported by: F-Secure
Commwarrior.B is a close variant of Commwarrior.A, it is a worm that
operates on Symbian Series 60 devices, and is capable of
spreading both over Bluetooth and MMS messages.
The main difference between Commwarrior.A and Commwarrior.B is that
unlike
Trojan.Hirofu
This malware was reported by: Symantec
Trojan.Hirofu is a Trojan horse that sends confidential information to an attacker via email and downloads remote files.
Adware-Wnad
This malware was reported by: Network Associates Inc
Adware-WorldAnywhere
This malware was reported by: Network Associates Inc
Troj/ByteVeri-M
This malware was reported by: Sophos
W32/Rbot-AGP
This malware was reported by: Sophos
SpoofDNS
This malware was reported by: Network Associates Inc
W32/Rbot-AGV
This malware was reported by: Sophos