Troj/BackUrl-A
This malware was reported by: Sophos
W32.Beagle.DO@mm
This malware was reported by: Symantec
W32.Beagle.DO@mm is a mass-mailing worm that uses its own SMTP engine and file-sharing networks to spread. It opens a back door on the compromised computer and attempts to lower security settings. The worm also tries to download and execute remote files.
QDial-37
This malware was reported by: Network Associates Inc
Troj/Swizzor-AW
This malware was reported by: Sophos
Troj/EMDoor-A
This malware was reported by: Sophos
Adware-Vloading
This malware was reported by: Network Associates Inc
Kit-PWRVBGEN
This malware was reported by: Network Associates Inc
Trojan.Mdropper.F
This malware was reported by: Symantec
Trojan.Mdropper.F is a Trojan horse that drops a file on the compromised computer. It spreads by exploiting the Microsoft Visual Basic For Applications Document Handling Buffer Overrun Vulnerability (as described in Microsoft Security Bulletin MS03-037
W32.Beagle.DP
This malware was reported by: Symantec
W32.Beagle.DP is a Worm that drops Trojan.Lodear and opens a back door on the compromised computer.
W32/bagle.ds@MM
This malware was reported by: Network Associates Inc
-- Update Feb 11, 2006 --
Further analysis shows that this is actually a parasitically infected W32/Bagle.dq@MM
virus. The parasitic infection is a new W32/Sality variant (W32/Sality.n). AVERT has seen many such "cocktails" recently
W32/Rbot-CCY
This malware was reported by: Sophos
Bagle.DT
This malware was reported by: Computer Associates
Troj/Cimuz-T
This malware was reported by: Sophos
Troj/Cimuz-U
This malware was reported by: Sophos
Troj/Zlob-FV
This malware was reported by: Sophos
Exploit-MF06-04
This malware was reported by: Network Associates Inc
Exploit-WinampPLS.gen
This malware was reported by: Network Associates Inc
Exploit-MF06-04.demo
This malware was reported by: Network Associates Inc
Olympic Torch
This malware was reported by: F-Secure
W32/Sality-I
This malware was reported by: Sophos
Troj/WowPWS-C
This malware was reported by: Sophos
Linux/Rst.c
This malware was reported by: Network Associates Inc
The Linux/Rst.c virus was discovered in January 2006.
The virus is a direct-action virus, when executed, it will try to infect ELF binary executable files in the /bin directory and current directory.
Infected files have their date an
Dialer-299
This malware was reported by: Network Associates Inc
Downloader-AUA
This malware was reported by: Network Associates Inc
ProcKill-DO
This malware was reported by: Network Associates Inc
Troj/Teros-A
This malware was reported by: Sophos
Troj/PWS-EM
This malware was reported by: Sophos
ValveSteam
This malware was reported by: Network Associates Inc
Bagle.FY
This malware was reported by: F-Secure
WORM_BAGLE.EV
This malware was reported by: Trendmicro
To get a one-glance comprehensive view of the behavior of this worm, refer to the Behavior Diagram shown below.
Exploit-HLPWorkshop.gen
This malware was reported by: Network Associates Inc
Troj/Haxdoor-AT
This malware was reported by: Sophos
W32/Bagle-CJ
This malware was reported by: Sophos
W32/Bagle-CM
This malware was reported by: Sophos
Troj/Drsmartl-L
This malware was reported by: Sophos
BackDoor-CXR
This malware was reported by: Network Associates Inc
W32.Beagle.DR@mm
This malware was reported by: Symantec
W32.Beagle.DR@mm is a mass-mailing worm that uses its own SMTP engine and file sharing networks to spread. It opens a back door on the compromised computer and attempts to lower security settings. The worm also tries to download and execute remote files.
JS/Exploit-GetObject
This malware was reported by: Network Associates Inc
Hanlo.I
This malware was reported by: Computer Associates
Description Win32/Hanlo.I is a trojan that downloads and executes arbitrary files. It has been distributed in a 19,326 byte CAB file. The file is downloaded from a m
W32.Kedebe.H@mm
This malware was reported by: Symantec
W32.Kedebe.H@mm is a mass-mailing worm that lowers security settings by deleting files, ending processes, and preventing access to security-related Web sites.
Troj/Dloadr-LI
This malware was reported by: Sophos
Troj/BackUrl-A
This malware was reported by: Sophos
Exploit-WinampPLS.b
This malware was reported by: Network Associates Inc
Bagle.DV
This malware was reported by: Computer Associates
Description Win32/Bagle.DV is a worm that spreads via e-mail and peer-to-peer file sharing networks. It also contains backdoor functionality that allows unauthorized
W32/Mytob-GW
This malware was reported by: Sophos
Troj/Swizzor-AW
This malware was reported by: Sophos
Downloader-AUD
This malware was reported by: Network Associates Inc
W32/Bagle.dt@MM
This malware was reported by: Network Associates Inc
(Note: McAfee AVERT has observed instances of this threat, infected with W32/Sality.o, spreading in the wild)
W32/Bagle.dt@MM is a trojan downloader and mailing worm that uses its own SMTP engine to send itself to the email addresses th
Trojan.Goldun.J
This malware was reported by: Symantec
Trojan.Goldun.J is a Trojan horse program that steals passwords and bank account details and sends the information to a remote attacker. It uses rootkit techniques to hide any files, registry subkeys and threads it creates.
W32.Exvid.A@mm
This malware was reported by: Symantec
W32.Exvid.A@mm is a virus with keylogging capabilities that spreads using its mass-mailing functionality and through network shares.
Trojan.Satiloler.C
This malware was reported by: Symantec
Trojan.Satiloler.C is a Trojan horse that attempts to steal user names, passwords, and other information from the compromised computer. It also attempts to open a proxy server on a random TCP port.
Note: Virus definitions dated prior to February 14, 200
Troj/Spammit-A
This malware was reported by: Sophos
W32/Rbot-CCY
This malware was reported by: Sophos
W32/Mytob.gen@MM!e82
This malware was reported by: Network Associates Inc
This detection is for a mass-mailing worm that combines W32/Mydoom@MM functionality with W32/Sdbot.worm functionality.
This variant of the Mytob family has the following high level characteristics.
Configures itself to load at
W32/Mytob.gen@MM!53be
This malware was reported by: Network Associates Inc
Configures itself to load at startup
Overwrites or modifies the hosts file to redirect network traffic
Detected as QHosts.APD trojan
Connects to an IRC server
Destination: 70.84.112.50 ( _tcp 27999 )
Spreads via
W32/Mytob.gen@MM!55e5
This malware was reported by: Network Associates Inc
This detection is for a mass-mailing worm that combines W32/Mydoom@MM functionality with W32/Sdbot.worm functionality.
This variant of the Mytob family has the following high level characteristics.
Configures itself to load a
Troj/Bancban-OE
This malware was reported by: Sophos
MS Vulnerability MS06-004
This malware was reported by: Network Associates Inc
MS Vulnerability MS06-005
This malware was reported by: Network Associates Inc
MS Vulnerability MS06-006
This malware was reported by: Network Associates Inc
MS Vulnerability MS06-007
This malware was reported by: Network Associates Inc
MS Vulnerability MS06-008
This malware was reported by: Network Associates Inc
MS Vulnerability MS06-009
This malware was reported by: Network Associates Inc
MS Vulnerability MS06-010
This malware was reported by: Network Associates Inc
Bloodhound.Exploit.58
This malware was reported by: Symantec
Bloodhound.Exploit.58 is a heuristic detection for the Windows Media Player Plug-in with Non-Microsoft Internet Browsers Vulnerability (as described in Microsoft Security Bulletin MS06-006).
Troj/BagleDl-BI
This malware was reported by: Sophos
Troj/Cimuz-U
This malware was reported by: Sophos
Exploit-MS06-004
This malware was reported by: Network Associates Inc
W32/Bagle.FZ.dr
This malware was reported by: F-Secure
ProcKill-DL
This malware was reported by: Network Associates Inc
Exploit-MS06-005
This malware was reported by: Network Associates Inc
Bagle.FZ.dr
This malware was reported by: F-Secure
MS06-004
This malware was reported by: Panda Software
Troj/Haxdoor-AT
This malware was reported by: Sophos
Downloader-ATG
This malware was reported by: Network Associates Inc
Dialer-300
This malware was reported by: Network Associates Inc
Singlejump.J
This malware was reported by: F-Secure
Singlejump.I
This malware was reported by: F-Secure
Singlejump.H
This malware was reported by: F-Secure
Singlejump.G
This malware was reported by: F-Secure
Singlejump.F
This malware was reported by: F-Secure
Singlejump.E
This malware was reported by: F-Secure
Singlejump.D
This malware was reported by: F-Secure
Singlejump.C
This malware was reported by: F-Secure
Singlejump.B
This malware was reported by: F-Secure
Singlejump.A
This malware was reported by: F-Secure
Singlejump
This malware was reported by: F-Secure
MS06-005
This malware was reported by: Panda Software
PWS-JH
This malware was reported by: Network Associates Inc
Exploit-MS06-006
This malware was reported by: Network Associates Inc
Adware-Splashspot
This malware was reported by: Network Associates Inc
BackDoor-CXL
This malware was reported by: Network Associates Inc
Troj/Dloadr-LM
This malware was reported by: Sophos
W32/Bagle-CM
This malware was reported by: Sophos
MS06-006
This malware was reported by: Panda Software
Bagle.GZ
This malware was reported by: Panda Software
 Bagle.GZ is a worm that drops the Trojan Downloader.HRV on the affected computer.This Trojan accesses several web pages in order to display advertisements.Bagle.GZ spreads via email, in a message with variable characteristics that always deals with the
WORM_BAGLE.EW
This malware was reported by: Trendmicro
To get a one-glance comprehensive view of the behavior of this worm, refer to the Behavior Diagram shown below.
MS06-007
This malware was reported by: Panda Software
MS06-008
This malware was reported by: Panda Software
Bagle.GA
This malware was reported by: F-Secure