Dampig.B
This malware was reported by: F-Secure


Trojan.Spamlia
This malware was reported by: Symantec
Trojan.Spamlia is a Trojan horse that sends SPAM email to all recipients in the Windows Address Book.

Adware-WinHound
This malware was reported by: Network Associates Inc


Generic.k
This malware was reported by: Network Associates Inc


Troj/RKNu-A
This malware was reported by: Sophos
Troj/RKNu-A is a rootkit for the Windows platform. The rootkit can be used to hide files, processes, registry entries, network connections and to prevent applications from running.

Troj/Spyaks-B
This malware was reported by: Sophos
Troj/Spyaks-B is a Trojan for the Windows platform. The Trojan downloads and installs additional files from a remote site. Troj/Spyaks-B may create popup alerts with the title "Your computer is infected!" and the message text: "Dangerous m

Generic.da
This malware was reported by: Network Associates Inc


Generic.b
This malware was reported by: Network Associates Inc


Troj/DownLdr-LA
This malware was reported by: Sophos
Troj/DownLdr-LA is a Trojan for the Windows platform. Troj/DownLdr-LA includes functionality to access the internet and communicate with a remote server via HTTP.

Generic.d
This malware was reported by: Network Associates Inc


Generic.e
This malware was reported by: Network Associates Inc


Downloader-AQW
This malware was reported by: Network Associates Inc


Fantibag.P
This malware was reported by: Computer Associates
Description Win32.Fantibag.P is a trojan that creates filters for IPv4 packets to block access to many and varied antivirus company domains. This trojan may be downl

W32/Nosun-A
This malware was reported by: Sophos
W32/Nosun-A is a virus for the Windows platform. On the 23rd of any month it displays the message : "I hate love, i love hate!" On Sundays it displays the message : "Your computer refuses to execute that program on sundays."

Troj/DownLdr-LW
This malware was reported by: Sophos
Troj/DownLdr-LW is a Windows Metafile (WMF) file which exploits a vulnerability allowing the download and execution of an EXE file from a remote URL. At the time of writing, the downloaded file was Troj/DownLdr-LA.

BKDR_BREPLIBOT.R
This malware was reported by: Trendmicro
 This backdoor program may be downloaded from the Internet by unsuspecting users. It may also be dropped by other malware programs. Moreover, it may also arrive as an attachment to a spammed email message.

JS_ONLOADXPLT.B
This malware was reported by: Trendmicro
 This malicious JavaScript contains an exploit code that is triggered upon interaction with the Web page http://www.hyipg{BLOCKED}index.htm. Upon visiting the said Web page, this malicious Javascript that is embedded in the Web page http://www.hyipg{

StartPage-IH
This malware was reported by: Network Associates Inc


Spyware-SpyAnytime
This malware was reported by: Network Associates Inc


MySearch
This malware was reported by: Network Associates Inc


W32/Brontok-L
This malware was reported by: Sophos
W32/Brontok-L is an email worm for the Windows platform. W32/Brontok-L attempts to send itself to email addresses harvested from the computer. The worm will also attempt to modify various Windows Explorer settings.

W32/Rbot-BGH
This malware was reported by: Sophos
W32/Rbot-BGH is a worm with backdoor functionality for the Windows platform. W32/Rbot-BGH spreads to other network computers by exploiting common buffer overflow vulnerabilities, including: LSASS (MS04-011), RPC-DCOM (MS04-012), WKS (MS03-04

ActionsMonitor
This malware was reported by: Network Associates Inc


Troj/Vixup-U
This malware was reported by: Sophos
Troj/Vixup-U is a Trojan for the Windows platform. Troj/Vixup-U includes functionality to download, install and run new software.

Troj/Agent-TM
This malware was reported by: Sophos
Troj/Agent-TM is a Trojan for the Windows platform. Troj/Agent-TM includes functionality to access the internet and communicate with a remote server via HTTP.

ErrorGuard
This malware was reported by: Network Associates Inc


W32/Sdbot.worm.gen.by
This malware was reported by: Network Associates Inc
Due to the large volume of members of this virus family, the size of extra.dats required to detect these is very large. AVERT have therefore split the detection into multiple drivers although the behavior of all members is broadly similar.

FastSearchWeb
This malware was reported by: Network Associates Inc


Tool-PeX
This malware was reported by: Network Associates Inc


Keylog-Spytector
This malware was reported by: Network Associates Inc


W32/Mytob-GK
This malware was reported by: Sophos
W32/Mytob-GK is an mass-mailing worm with backdoor functionality for the Windows platform. W32/Mytob-GK runs continuously in the background, providing a backdoor server which allows a remote intruder to gain access and control over the compu

Troj/Bancban-LF
This malware was reported by: Sophos
Troj/Bancban-LF is a Trojan for the Windows platform. Troj/Bancban-LF includes functionality to send notification messages to remote locations.

WORM_MYTOB.NU
This malware was reported by: Trendmicro
 This memory-resident worm propagates by sending a copy of itself as an attachment to email messages, which it sends to target addresses using its own Simple Mail Transfer Protocol (SMTP) engine. Through this SMTP engine, it is able to easily send th

WMF
This malware was reported by: Panda Software
 WMF is a generic detection for malformed image files that attempt to exploit a critical vulnerability in the Graphics Rendering Engine on Windows 2003/XP/2000/Me/98 computers. This vulnerability affects the library GDI32.DLL, which is used by the Windows

Generic Downloader.c
This malware was reported by: Network Associates Inc


W32/Sdbot-AKZ
This malware was reported by: Sophos
W32/Sdbot-AKZ is a worm with backdoor functionality for the Windows platform. W32/Sdbot-AKZ runs continuously in the background, providing a backdoor server which allows a remote intruder to gain access and control over the computer via IRC

W32/Loosky-K
This malware was reported by: Sophos
W32/Loosky-K is a worm for the Windows platform.

Adware-Virtumundo
This malware was reported by: Network Associates Inc


UnSpyPC
This malware was reported by: Network Associates Inc


AdSquash
This malware was reported by: Network Associates Inc


Adware-abetterintrnt.gen.a
This malware was reported by: Network Associates Inc


TROJ_NASCENE.E
This malware was reported by: Trendmicro
 

WORM_MYTOB.NM
This malware was reported by: Trendmicro
 This memory-resident worm takes advantage of the Windows LSASS vulnerability, which is a buffer overrun that allows remote code execution and enables a malicious user to gain full control of the affected system. This vulnerability is discussed in de

W32.Dabora.B@mm
This malware was reported by: Symantec
W32.Dabora.B@mm is a mass-mailing worm that mimics email notifications that state the user has received an online postcard or online music.

Adware-NDotNet.dr
This malware was reported by: Network Associates Inc


Adware-Virtumundo.dr
This malware was reported by: Network Associates Inc


Adware-Pcadprotector
This malware was reported by: Network Associates Inc


TROJ_NASCENE.H
This malware was reported by: Trendmicro
 The Trend Micro detection for a modified Windows Metafile (WMF) that takes advantage of an unpatched vulnerability discussed in the following Microsoft Web page:

Troj/DownLdr-QB
This malware was reported by: Sophos
Troj/DownLdr-QB is a downloader Trojan which will download, install and run new software without notification that it is doing so. The file downloaded by Troj/DownLdr-QB is detected by Sophos as Troj/Bifrose-CS.

Troj/RKNu-A
This malware was reported by: Sophos
Troj/RKNu-A is a rootkit for the Windows platform. The rootkit can be used to hide files, processes, registry entries, network connections and to prevent applications from running.

PFV-Exploit.D
This malware was reported by: F-Secure


TROJ_NASCENE.I
This malware was reported by: Trendmicro


TROJ_NASCENE.J
This malware was reported by: Trendmicro


TROJ_NASCENE.K
This malware was reported by: Trendmicro


TROJ_NASCENE.L
This malware was reported by: Trendmicro


W32/Rbot-BHQ
This malware was reported by: Sophos
W32/Rbot-BHQ is a worm and IRC backdoor Trojan for the Windows platform. W32/Rbot-BHQ spreads: - to other network computers infected with: Troj/Kuang, Troj/Sub7, Troj/NetDevil, W32/MyDoom, W32/Bagle and Troj/Optix - to other network compu

Troj/Horst-C
This malware was reported by: Sophos
Troj/Horst-C is a keylogging Trojan for the Windows platform. When run Troj/Horst-C may display a fake error message box with the title "Version" and the message "Software incompatibility occured! Please download another version."

W32/Nosun-A
This malware was reported by: Sophos
W32/Nosun-A is a virus for the Windows platform. On the 23rd of any month it displays the message : "I hate love, i love hate!" On Sundays it displays the message : "Your computer refuses to execute that program on sundays."

PFV-Metasploit
This malware was reported by: F-Secure


Mytob.MF
This malware was reported by: Panda Software
 Mytob.MF is a worm that ends processes belonging to several security tools, such as antivirus programs and firewalls, among others. It also ends processes belonging to other malware.Aditionally, it prevents users from accessing certain web pages, mostly

TROJ_NASCENE.M
This malware was reported by: Trendmicro
 This Trojan may be downloaded from a malicious Web site. It may also arrive as an attachment to a spammed email message with the following details:

W32/Brontok-L
This malware was reported by: Sophos
W32/Brontok-L is an email worm for the Windows platform. W32/Brontok-L attempts to send itself to email addresses harvested from the computer. The worm will also attempt to modify various Windows Explorer settings.

Troj/DownLdr-NR
This malware was reported by: Sophos
Troj/DownLdr-NR is a downloader Trojan for the Windows platform.

Tool-WPAKill
This malware was reported by: Network Associates Inc


W32/Crutle-A
This malware was reported by: Sophos
W32/Crutle-A is a peer-to-peer worm for the Windows platform. When first run W32/Crutle-A copies itself to the Windows folder with the filename WinExec.exe. W32/Crutle-A also creates a folder called "files" in the Windows folder, and places

Troj/Vixup-U
This malware was reported by: Sophos
Troj/Vixup-U is a Trojan for the Windows platform. Troj/Vixup-U includes functionality to download, install and run new software.

Apropos
This malware was reported by: Network Associates Inc


W32/Sdbot-DIC
This malware was reported by: Sophos
W32/Sdbot-DIC is a network worm with backdoor Trojan functionality for the Windows platform. The worm spreads through network shares protected by weak passwords, MS-SQL servers, AOL Instant Messenger (AIM) and through various operating syste

W32/Mytob-GK
This malware was reported by: Sophos
W32/Mytob-GK is an mass-mailing worm with backdoor functionality for the Windows platform. W32/Mytob-GK runs continuously in the background, providing a backdoor server which allows a remote intruder to gain access and control over the compu

W32.Cleevix
This malware was reported by: Symantec
W32.Cleevix is a virus that appends itself to executable files.

W32/Spybot-ET
This malware was reported by: Sophos
W32/Spybot-ET is a worm and IRC backdoor Trojan for the Windows platform. W32/Spybot-ET spreads via file sharing on P2P networks and to other network computers infected with: Troj/Kuang and Troj/Sub7. W32/Spybot-ET runs continuously in the

W32/Sdbot-AKZ
This malware was reported by: Sophos
W32/Sdbot-AKZ is a worm with backdoor functionality for the Windows platform. W32/Sdbot-AKZ runs continuously in the background, providing a backdoor server which allows a remote intruder to gain access and control over the computer via IRC

Troj/Keylog-BL
This malware was reported by: Sophos
Troj/Keylog-BL is a keylogging Trojan for the Windows platform.

Troj/DownLdr-QB
This malware was reported by: Sophos
Troj/DownLdr-QB is a downloader Trojan which will download, install and run new software without notification that it is doing so. The file downloaded by Troj/DownLdr-QB is detected by Sophos as Troj/Bifrose-CS.

PWSteal.Bankash.G
This malware was reported by: Symantec
PWSteal.Bankash.G is a Trojan horse program that attempts to steal user names and passwords from the compromised computer and lowers security settings. It is reported that the Trojan is downloaded by malformed .wmf files that utilize Microsoft Windows

WMFMaker
This malware was reported by: Panda Software
 WMFMaker is a virus constructor, which allows images to be created in WMF (Windows MetaFile) format that exploit a critical vulnerability in the Graphics Rendering Engine on Windows 2003/XP/2000/Me/98 computers. This vulnerability affects the library GDI

Troj/Icyfox-B
This malware was reported by: Sophos
Troj/Icyfox-B is a backdoor Trojan for ASP servers. It allows an intruduer to run arbitary scripts on the server side. Intruders can access the backdoor through HTTP Submit traffic, and embed the script in the request. Troj/Icyfox-B may als

W32/Rbot-BHQ
This malware was reported by: Sophos
W32/Rbot-BHQ is a worm and IRC backdoor Trojan for the Windows platform. W32/Rbot-BHQ spreads: - to other network computers infected with: Troj/Kuang, Troj/Sub7, Troj/NetDevil, W32/MyDoom, W32/Bagle and Troj/Optix - to other network compu

Generic Keylogger.h
This malware was reported by: Network Associates Inc


WMFMaker
This malware was reported by: Network Associates Inc


W32/Rbot-BHT
This malware was reported by: Sophos
W32/Rbot-BHT is a worm with backdoor functionality for the Windows platform. W32/Rbot-BHT attempts to spread by copying itself to network shares protected by weak passwords. W32/Rbot-BHT runs continuously in the background, providing a back

Troj/Horst-C
This malware was reported by: Sophos
Troj/Horst-C is a keylogging Trojan for the Windows platform. When run Troj/Horst-C may display a fake error message box with the title "Version" and the message "Software incompatibility occured! Please download another version."

SymbOS.Pbstealer.C
This malware was reported by: Symantec


Nochod.V
This malware was reported by: Computer Associates


W32/Rbot-BHZ
This malware was reported by: Sophos
W32/Rbot-BHZ is a worm and IRC backdoor Trojan for the Windows platform. W32/Rbot-BHZ spreads to other network computers by exploiting common buffer overflow vulnerabilities, including: RPC-DCOM (MS04-012), PNP (MS05-039) and ASN.1 (MS04-007

Phishbank.AAW
This malware was reported by: Computer Associates


Phishbank.ABL
This malware was reported by: Computer Associates


W32/Brontok-M
This malware was reported by: Sophos
W32/Brontok-M is a worm for the Windows platform. When first run W32/Brontok-M may copy itself to: <User>Local SettingsApplication Datar<4 random digits>on.exe <User>Local SettingsApplication Datacsrss.exe <User&

Trojan.Satiloler.B
This malware was reported by: Symantec
Trojan.Satiloler.B is a Trojan horse that attempts to steal user names, passwords, and other information from the compromised computer. It also attempts to open a proxy server on a random TCP port. It has been reported that the Trojan is downloaded by

W32/Crutle-A
This malware was reported by: Sophos
W32/Crutle-A is a peer-to-peer worm for the Windows platform. When first run W32/Crutle-A copies itself to the Windows folder with the filename WinExec.exe. W32/Crutle-A also creates a folder called "files" in the Windows folder, and places

Sendtool.A
This malware was reported by: F-Secure


W32/Sdbot-DIC
This malware was reported by: Sophos
W32/Sdbot-DIC is a network worm with backdoor Trojan functionality for the Windows platform. The worm spreads through network shares protected by weak passwords, MS-SQL servers, AOL Instant Messenger (AIM) and through various operating syste

Troj/Stinx-J
This malware was reported by: Sophos
Troj/Stinx-J is a backdoor Trojan for the Windows platform. Troj/Stinx-J allows a remote attacker to gain access and control over the computer via IRC channels.

W32/Spybot-ET
This malware was reported by: Sophos
W32/Spybot-ET is a worm and IRC backdoor Trojan for the Windows platform. W32/Spybot-ET spreads via file sharing on P2P networks and to other network computers infected with: Troj/Kuang and Troj/Sub7. W32/Spybot-ET runs continuously in the

Pbstealer.D
This malware was reported by: F-Secure


WORM_LOCKSKY.Y
This malware was reported by: Trendmicro
 

GAobot.LTL
This malware was reported by: Panda Software
 Gaobot.LTL is a worm that connects to several IRC servers in order to receive remote control commands, acting as a backdoor. It can be instructed to obtain computer passwords, launch DoS (Denial of Service) attacks, scan IP addresses, etc.This worm also

W32/Rbot-BIA
This malware was reported by: Sophos
W32/Rbot-BIA is a worm and IRC backdoor Trojan for the Windows platform. W32/Rbot-BIA spreads to other network computers by exploiting common buffer overflow vulnerabilities, including: LSASS (MS04-011), RPC-DCOM (MS04-012), WKS (MS03-049) (

Troj/Keylog-BL
This malware was reported by: Sophos
Troj/Keylog-BL is a keylogging Trojan for the Windows platform.

TROJ_DLOADER.BDM
This malware was reported by: Trendmicro
 This Trojan arrives via email messages possibly spammed by another malware or a remote malicious user. The image below is a sample of the said spammed email:


Anti virus links

Anti-virus programs
Virus history
Top-100 malware
Svenska
Antivirus programs


Sitemap


Anti virus and malware

  Anti virus