Troj/Dloadr-NB
This malware was reported by: Sophos
SymbOS.Mabtal.A
This malware was reported by: Symantec
SymbOS.Mabtal.A is a Trojan horse that runs on the Symbian OS, which is used as the operating system for Nokia Series 60 cellular telephones. The Trojan may attempt to install another Symbian threat onto the compromised device and a Windows Trojan horse
W32/Nafbot-A
This malware was reported by: Sophos
Troj/Bancban-OH
This malware was reported by: Sophos
UNIX_MARE.L
This malware was reported by: Trendmicro
To get a one-glance comprehensive view of the behavior of this Unix malware, refer to the Behavior Diagram shown below.
ELF_KAITEN.AJ
This malware was reported by: Trendmicro
To get a one-glance comprehensive view of the behavior of this executable Linux file, refer to the Behavior Diagram shown below.
ELF_MARE.K
This malware was reported by: Trendmicro
To get a one-glance comprehensive view of the behavior of this malware, refer to the Behavior Diagram shown below.
Troj/Haxdoor-BC
This malware was reported by: Sophos
W32/Theals.b
This malware was reported by: Network Associates Inc
W32/Theals.b is a parasitic file infector and mailing worm that send itself to the email addresses on the infected computer. It contains rootkit capabilities and also spreads to networked computers by exploiting the RPC-DCOM (MS03-026)
o
MS06-012
This malware was reported by: Panda Software
MS06-011
This malware was reported by: Panda Software
StartPage-HW
This malware was reported by: Network Associates Inc
W32/Zevity
This malware was reported by: Network Associates Inc
W32/Zevity is win32 parasitic virus. W32/Zevity infects files by appending its virus code to the original file.
Upon execution W32/Zevity scans for executable files (files with ".exe" extensions) in the following folders:
%WINDIR% (c
Cxover.A
This malware was reported by: F-Secure
Troj/Zapchas-AT
This malware was reported by: Sophos
W32/Sdbot-BAY
This malware was reported by: Sophos
StartPage-GA
This malware was reported by: Network Associates Inc
Cabir.W
This malware was reported by: F-Secure
Exploit-MS06-012
This malware was reported by: Network Associates Inc
Cryzip.A
This malware was reported by: Panda Software
 Cryzip.A is a Trojan that compresses in password-protected ZIP format all the files with any of the following extensions: ARH, ARJ (files compressed with ARJ), ASM, BAS, C, CDR, CGI, CHM, CPP, DB, DB1, DB2, DBF, DBT, DBX, DOC (Word documents), DPR, DSW,
WORM_CXOVER.A
This malware was reported by: Trendmicro
To get a one-glance comprehensive view of the behavior of this worm, refer to the Behavior Diagram shown below.
Troj/Drsmartl-R
This malware was reported by: Sophos
Troj/Sickbt-D
This malware was reported by: Sophos
Downloader-AVC
This malware was reported by: Network Associates Inc
Downloader-AVD
This malware was reported by: Network Associates Inc
Downloader-AFH
This malware was reported by: Network Associates Inc
Downloader-ARW
This malware was reported by: Network Associates Inc
MSIL.Cxover.A
This malware was reported by: Symantec
Phishbank.AGI
This malware was reported by: Computer Associates
Phishbank.AGH
This malware was reported by: Computer Associates
Phishbank.AGL
This malware was reported by: Computer Associates
Linux.Mare.K
This malware was reported by: Symantec
Linux.Mare.K is a worm that spreads by exploiting vulnerabilities. The worm opens a back door and then downloads and executes remote files on the compromised computer.
W32/HLLP.41472
This malware was reported by: Network Associates Inc
This is a parasitic file infecting virus that infects .exe files. It searches the hard drive for .EXE files and when it finds one, it infects host file by encrpyts the starting 41,472 bytes of host file and appending the encrpyted data at
MSIL/Compor
This malware was reported by: Network Associates Inc
This virus is EXE prepending virus that attempts to infect all .exe files that are executed on an infected machine. It requires the .NET framework to be installed in order to successfully infect.
Upon execution, it creates a copy of itsel
Phishbank.AGN
This malware was reported by: Computer Associates
Phishbank.AGP
This malware was reported by: Computer Associates
MultiDropper-PP
This malware was reported by: Network Associates Inc
Downloader-AUW
This malware was reported by: Network Associates Inc
Del-500
This malware was reported by: Network Associates Inc
W32/P2Load.gen!p2p
This malware was reported by: Network Associates Inc
Joke-Avoid
This malware was reported by: Network Associates Inc
Phishbank.AGO
This malware was reported by: Computer Associates
Phishbank.AGM
This malware was reported by: Computer Associates
Troj/IBank-E
This malware was reported by: Sophos
Troj/IRCBot-FP
This malware was reported by: Sophos
ELF_LUPPER.H
This malware was reported by: Trendmicro
To get a one-glance comprehensive view of the behavior of this malware, refer to the Behavior Diagram shown below.
Troj/Bancos-RS
This malware was reported by: Sophos
PERL_GETS.A
This malware was reported by: Trendmicro
BackDoor-CYG
This malware was reported by: Network Associates Inc
CXOver.A
This malware was reported by: Panda Software
 CXOver.A is a Trojan used as a proof-of-concept, in order to analyze the possibilities of developing malware that spreads between computers and PDA devices.CXOver.A spreads via ActiveSync connections between computers with the .NET framework installed a
Keylog-Ultra
This malware was reported by: Network Associates Inc
Cabir.AD
This malware was reported by: F-Secure
Cabir.AC
This malware was reported by: F-Secure
Cabir.Q
This malware was reported by: F-Secure
Cabir.X
This malware was reported by: F-Secure
Troj/Drsmartl-S
This malware was reported by: Sophos
Troj/Multidr-FG
This malware was reported by: Sophos
Troj/Zapchas-AS
This malware was reported by: Sophos
TROJ_DLOADER.BXQ
This malware was reported by: Trendmicro
To get a one-glance comprehensive view of the behavior of this Trojan, refer to the Behavior Diagram shown below.
W32/Xrove-A
This malware was reported by: Sophos
W32/Nafbot-A
This malware was reported by: Sophos
UNIX_GETS.A
This malware was reported by: Trendmicro
To get a one-glance comprehensive view of the behavior of this malware, refer to the Behavior Diagram shown below.
Phishbank.AGS
This malware was reported by: Computer Associates
Trojan.Exponny
This malware was reported by: Symantec
Trojan.Exponny is a Trojan horse that changes the settings of the Winny file sharing software to expose all local fixed drives on the compromised computer.
Phishbank.AGT
This malware was reported by: Computer Associates
Phishbank.AGK
This malware was reported by: Computer Associates
Downloader-ART
This malware was reported by: Network Associates Inc
Joke-MSEA
This malware was reported by: Network Associates Inc
Exploit-ScriptAction
This malware was reported by: Network Associates Inc
BackDoor-CYI
This malware was reported by: Network Associates Inc
ELF_KAITEN.AK
This malware was reported by: Trendmicro
To get a one-glance comprehensive view of the behavior of this executable Linux file, refer to the Behavior Diagram shown below.
Phishbank.AGU
This malware was reported by: Computer Associates
Phishbank.AGA
This malware was reported by: Computer Associates
VBS/Pica.worm.gen
This malware was reported by: Network Associates Inc
This is an Internet worm which can send itself via MAPI email.
It sends itself embedded in an email message to EVERY contact in EVERY EMAIL ADDRESS BOOK of MS Outlook .
This worm attempts to send itself via MAPI email with this format:
W32/Kalel.gen@MM
This malware was reported by: Network Associates Inc
W32/Kalel.gen@MM is a mass mailing worm that uses its own SMTP engine to propagate. It also spreads via various Peer-to-Peer network shares. It opens a backdoor and logs keystrokes on infected machines.
Upon execution, it creates a copy
Generic.ca
This malware was reported by: Network Associates Inc
VBS/Daygre
This malware was reported by: Network Associates Inc
Troj/Bancban-OJ
This malware was reported by: Sophos
Troj/Haxdoor-BC
This malware was reported by: Sophos
KeyLog-SurfSentinal
This malware was reported by: Network Associates Inc
Backdoor.Hesive.F
This malware was reported by: Symantec
Backdoor.Hesive.F is a Trojan horse that drops Backdoor.Hesive.E.
Note:
Definitions prior to March 17, 2006 may detect this as Backdoor.Hesive.E.
Backdoor.Hesive.F reportedly arrives as an email attachment with the following file name:
winny_patch.e
W97M.Antiprod
This malware was reported by: Symantec
W97M.Antiprod is a macro virus that lowers security settings. The virus is triggered when an infected document is opened.
SymbOS.Commwarrior.E
This malware was reported by: Symantec
SymbOS.Commwarrior.E is a worm that runs on Series 60 phones. It attempts to spread using Bluetooth and Multimedia Messaging Service (MMS) messages as a randomly named .sis file.
W32/Polybot@MM
This malware was reported by: Network Associates Inc
W32/Polybot@MM belongs to a family of polymorphic IRC bots based on W32/Mytob.gen@MM
family. The polymorphism in the W32/Polybot worms is achieved by adding an "envelope" over a compiled HLL program of the worm. The envelope code re-encr
PWS-JK
This malware was reported by: Network Associates Inc
Keylog-SCKeyLog
This malware was reported by: Network Associates Inc
Downloader-AUL
This malware was reported by: Network Associates Inc
Troj/ServU-CE
This malware was reported by: Sophos
Troj/Zapchas-AT
This malware was reported by: Sophos
Adware-SpyStormer
This malware was reported by: Network Associates Inc
W32/Tilebot-DX
This malware was reported by: Sophos
Troj/Drsmartl-R
This malware was reported by: Sophos
HTML_SCRIPTACT.A
This malware was reported by: Trendmicro
To get a one-glance comprehensive view of the behavior of this HTML file, refer to the Behavior Diagram shown below.
W32.Rontokbro.U@mm
This malware was reported by: Symantec
W32.Rontokbro.U@mm is a mass-mailing worm that causes system instability on the compromised computer.
Trojan.Remojin
This malware was reported by: Symantec
Trojan.Remojin is a Trojan horse that modifies settings for Winny, a file-sharing application. It also attempts to delete files that are associated with variants of the worm W32.HLLW.Antinny.
Troj/Jubik-A
This malware was reported by: Sophos
Troj/IBank-E
This malware was reported by: Sophos
Troj/Steam-F
This malware was reported by: Sophos
Trojan.Ourxin
This malware was reported by: Symantec
Trojan.Ourxin is a Trojan horse that displays advertisements on the compromised computer. It may also log browser activities.
Note: Definitions dated prior to March 18, 2006 may detect this threat as Adware.AllSum or Adware.SmartAllYes.
W32/Tilebot-EA
This malware was reported by: Sophos