Bloodhound.Exploit.63
This malware was reported by: Symantec
Bloodhound.Exploit.63 is a heuristic detection for the Cumulative Security Update or Internet Explorer issue (described in Microsoft Security Bulletin MS06-013).
W32.Kedebe.I@mm
This malware was reported by: Symantec
W32.Kedebe.I@mm is a mass-mailing worm that lowers security settings by deleting files, ending processes, and preventing access to security-related Web sites.
Trojan.Alemod.B
This malware was reported by: Symantec
Trojan.Alemod.B is a Trojan horse that infects the oleext32.dll file and monitors all Web traffic. It also modifies desktop settings and downloads files from the Internet.
W32/Letum-A
This malware was reported by: Sophos
Troj/ExpHm-B
This malware was reported by: Sophos
WORM_MYTOB.PP
This malware was reported by: Trendmicro
To get a one-glance comprehensive view of the behavior of this worm, refer to the Behavior Diagram shown below.
W32/Tilebot-EK
This malware was reported by: Sophos
W32/Agobot-ABR
This malware was reported by: Sophos
W32/Bagle-GM
This malware was reported by: Sophos
W32/Francette-Z
This malware was reported by: Sophos
Troj/Mlsuc-A
This malware was reported by: Sophos
W32.Beagle.EA@mm
This malware was reported by: Symantec
W32.Beagle.EA@mm is a mass-mailing worm that uses its own SMTP engine to spread. The worm also tries to download and execute remote files.
WORM_KEBEDE.E
This malware was reported by: Trendmicro
To get a one-glance comprehensive view of the behavior of this worm, refer to the Behavior Diagram shown below.
PE_LUDER.A-O
This malware was reported by: Trendmicro
To get a one-glance comprehensive view of the behavior of this malware, refer to the Behavior Diagram shown below.
Trojan.Sufiage.C
This malware was reported by: Symantec
Trojan.Sufiage.C is a Trojan horse that steals information and sends it to a message board.
Symantec Security Response is currently investigating this threat and will post more information as it becomes available.
WORM_ARESES.C
This malware was reported by: Trendmicro
To get a one-glance comprehensive view of the behavior of this worm, refer to the Behavior Diagram shown below.
W32/Bagle-GN
This malware was reported by: Sophos
Troj/Bdoor-YL
This malware was reported by: Sophos
Troj/Bdoor-YP
This malware was reported by: Sophos
Troj/BCB-B
This malware was reported by: Sophos
Troj/Zlob-HQ
This malware was reported by: Sophos
Troj/Banker-BFB
This malware was reported by: Sophos
WORM_LUPAR.A
This malware was reported by: Trendmicro
To get a one-glance comprehensive view of the behavior of this worm, refer to the Behavior Diagram shown below.
MSIL.Lupar.A
This malware was reported by: Symantec
MSIL.Lupar.A is a worm that opens a back door and spreads through file sharing networks.
W32.Mytob.PE@mm
This malware was reported by: Symantec
W32.Mytob.PE@mm is a mass-mailing worm that uses its own SMTP engine to send an email to addresses that it gathers from the compromised computer. The worm lowers security settings and also spreads by exploiting vulnerabilities.
PE_LUDER.B-O
This malware was reported by: Trendmicro
To get a one-glance comprehensive view of the behavior of this mother file infector, refer to the Behavior Diagram shown below.
W32.Beagle.EB
This malware was reported by: Symantec
W32.Beagle.EB is a Trojan horse that gathers email addresses from a compromised computer and sends them to a remote Web site. It may be downloaded by other Beagle variants.
W32Mytob-HH
This malware was reported by: Sophos
Troj/Proxy-CE
This malware was reported by: Sophos
Troj/Harnig-P
This malware was reported by: Sophos
W32/Letum-A
This malware was reported by: Sophos
Backdoor.Peerdoor
This malware was reported by: Symantec
Backdoor.Peerdoor is a Trojan horse that opens a backdoor on the compromised computer and allows a remote attacker to have unauthorized access.
Trojan.Colecto
This malware was reported by: Symantec
Trojan.Colecto is a Trojan horse that steals information and sends it to a remote IP address.
Troj/Cosiam-G
This malware was reported by: Sophos
W32/Tilebot-EK
This malware was reported by: Sophos
W32/Bagle-GO
This malware was reported by: Sophos
W32/Bagle-GM
This malware was reported by: Sophos
Troj/Agent-BFZ
This malware was reported by: Sophos
W32/Mytob-HG
This malware was reported by: Sophos
PU97M_AVARTA.A
This malware was reported by: Trendmicro
To get a one-glance comprehensive view of the behavior of this macro virus, refer to the Behavior Diagram shown below.
W32/Rbot-DBU
This malware was reported by: Sophos
Fakemsn.C
This malware was reported by: Computer Associates
W32/Mytob-HI
This malware was reported by: Sophos
W32/Bagle-GN
This malware was reported by: Sophos
WORM_MYTOB.PW
This malware was reported by: Trendmicro
To get a one-glance comprehensive view of the behavior of this worm, refer to the Behavior Diagram shown below.
Troj/Loot-R
This malware was reported by: Sophos
Troj/Bdoor-YP
This malware was reported by: Sophos
Backdoor.Ranky.W
This malware was reported by: Symantec
Backdoor.Ranky.W is a Trojan horse that allows a compromised computer to be used as a covert proxy.
Troj/Banloa-ABL
This malware was reported by: Sophos
Troj/Zlob-HQ
This malware was reported by: Sophos
Trojan.Mdropper.G
This malware was reported by: Symantec
Trojan.Mdropper.G is a Trojan horse that drops a file and spreads by exploiting a remote vulnerability.
Trojan.Mdropper.G is executed when a malicious Microsoft Word document is opened and the Microsoft Visual Basic For Applications Document Handling Bu
WORM_MYTOB.PX
This malware was reported by: Trendmicro
To get a one-glance comprehensive view of the behavior of this worm, refer to the Behavior Diagram shown below.
Troj/Polbot-A
This malware was reported by: Sophos
W32Mytob-HH
This malware was reported by: Sophos
W32/Sdbot-BMG
This malware was reported by: Sophos
Troj/Harnig-P
This malware was reported by: Sophos
Trojan.Nethell
This malware was reported by: Symantec
Trojan.Nethell is a Trojan horse with keylogging capabilities that can download commands from a remote computer.
Tiny.cb
This malware was reported by: F-Secure
WORM_LOVGATE.AW
This malware was reported by: Trendmicro
To get a one-glance comprehensive view of the behavior of this worm, refer to the Behavior Diagram shown below.
W32.Antinny.BF
This malware was reported by: Symantec
W32.Antinny.BF is a worm that spreads through the Winny and Share file-sharing networks and may transmit sensitive information through these programs.
Note: Prior to April 19, 2006, W32.Antinny.BF was detected as W32.HLLW.Antinny.G.
W32.Mytob.PI@mm
This malware was reported by: Symantec
HarBag.A
This malware was reported by: Panda Software
 HarBag.A is Trojan that searches for email addresses in files with the following extensions: ADB, ASP, CFG, CGI, DBX, DHTM, EML, HTM, JSP, MBX, MDX, MHT, MMF, MSG, NCH, ODS, OFT, PHP, SHT, SHTM, STM, TBB, TXT, UIN, WAB, WSH, XLS and XML.Then, it sends t
W32/Tilebot-EM
This malware was reported by: Sophos
Troj/Cosiam-G
This malware was reported by: Sophos
Cardtrap.AF
This malware was reported by: F-Secure
VBS.Morbo@mm!inf
This malware was reported by: Symantec
VBS.Morbo@mm!inf is a detection for files that are infected by VBS.Morbo@mm!int.
VBS.Morbo@mm!int
This malware was reported by: Symantec
VBS.Morbo@mm!int is a proof-of-concept mass-mailer worm that infects .htm, .html, .hta, .asp, .php files and changes the Internet Explorer homepage.
W32/Tex-B
This malware was reported by: Sophos
Troj/Agent-BFZ
This malware was reported by: Sophos
Femad
This malware was reported by: F-Secure
W32.Mytob.PJ@mm
This malware was reported by: Symantec
W32.Mytob.PJ@mm is a mass-mailing worm that opens a back door and lowers security settings on the compromised computer.
Lootseek.AG
This malware was reported by: Panda Software
 Lootseek.AG is a backdoor that connects to an IRC server in order to receive remote control commands, such as download and run files, which can be of any nature, including malware. It also uses an anonimous proxy server in order to send massively new ma
W32/Mytob-HJ
This malware was reported by: Sophos
W32/Rbot-DBU
This malware was reported by: Sophos
WORM_MYTOB.PZ
This malware was reported by: Trendmicro
To get a one-glance comprehensive view of the behavior of this worm, refer to the Behavior Diagram shown below.
W32/Tilebot-EN
This malware was reported by: Sophos
W32/Mytob-HI
This malware was reported by: Sophos
W32.Opanki.P
This malware was reported by: Symantec
W32.Opanki.P is a worm that spreads through Instant Messenger, network shares, and by exploiting vulnerabilities.
W32/Banker-BIX
This malware was reported by: Sophos
Troj/Loot-R
This malware was reported by: Sophos
Trojan.Lisentkey
This malware was reported by: Symantec
Trojan.Lisentkey is a Trojan horse that tries to log all keystrokes and send the information to an?FTP site. Trojan.Lisentkey is generated by Hacktool.Lisentkey.
Troj/Banloa-ABL
This malware was reported by: Sophos
Troj/BankDl-AW
This malware was reported by: Sophos
Troj/Polbot-A
This malware was reported by: Sophos
Goldun.IL
This malware was reported by: Panda Software
 Goldun.IL is a password stealer type Trojan that obtains the access data and passwords to the e-gold account of the affected users. In order to do so, it goes memory resident, and monitors the network traffic until the affected users access the e-gold w
Trojan.Galapoper.A
This malware was reported by: Symantec
Trojan.Galapoper.A is a Trojan horse contacts a remote Web site and downloads other risks onto the compromised computer.
Troj/PcClien-EN
This malware was reported by: Sophos
W32/Sdbot-BMG
This malware was reported by: Sophos
Backdoor.CVM
This malware was reported by: Symantec
Backdoor.CVM is a Trojan horse that claims to have been created by a legitimate company. It opens a back door and can provide unauthorized access to a compromised computer.
W32.Banleed.A
This malware was reported by: Symantec
W32.Banleed.A is a network worm that spreads on shared drive and folders. It steals confidential information and accounts when users contact a bank Web site. The worm may download and execute remote files and send gathered information to a remote host.
Troj/Zapchas-BD
This malware was reported by: Sophos
W32/Tilebot-EM
This malware was reported by: Sophos
W32/Scano-E
This malware was reported by: Sophos
Blabag Family
This malware was reported by: Computer Associates
Description Win32/Blabag is a family of trojans that monitor web sites visited by affected users. They may also open a socks proxy or download additional malware ont
Troj/Dloadr-HAA
This malware was reported by: Sophos
W32/Tex-B
This malware was reported by: Sophos
TROJ_LINEAGE.ALD
This malware was reported by: Trendmicro
To get a one-glance comprehensive view of the behavior of this Trojan, refer to the Behavior Diagram shown below.
Troj/Agent-BHO
This malware was reported by: Sophos
W32/Mytob-HJ
This malware was reported by: Sophos
W32/Bagle-GT
This malware was reported by: Sophos