Spyware, viruses, & security : VIRUS \ SPYWARE ALERTS - June 19, 2009
- 6/19/09 6:40 AM
VIRUS \ SPYWARE ALERTS - June 19, 2009
by Marianna Schmudlach - 6/19/09 6:40 AM
Troj/Bnkmr-Fam
Category
* Viruses and Spyware
Type
* Trojan
Troj/Bnkmr-Fam is a family of Trojans which attempt to steal information related to banking websites
http://www.sophos.com/security/analyses/viruses-and-spyware/trojbnkmrfam.html?_log_from=rss
Troj/Agent-KFY
by Marianna Schmudlach - 6/19/09 6:41 AM
In reply to: VIRUS \ SPYWARE ALERTS - June 19, 2009 by Marianna Schmudlach
Category
* Viruses and Spyware
Type
* Trojan
Affected operating systems Windows
Characteristics
* Installs itself in the registry
Troj/Agent-KFY is a Trojan for the Windows platform.
When run Troj/Agent-KFY copies itself to <Documents and Settings>\<User>\Application Data\Microsoft\Windows\winlogon.exe and sets the following registry entries:
HKCU\Software\Microsoft\Windows\CurrentVersion\Run
Microsoft Windows logon process
<Documents and Settings>\<User>\Application Data\Microsoft\Windows\winlogon.exe
http://www.sophos.com/security/analyses/viruses-and-spyware/trojagentkfy.html?_log_from=rss
Troj/Agent-KFX
by Marianna Schmudlach - 6/19/09 6:42 AM
In reply to: VIRUS \ SPYWARE ALERTS - June 19, 2009 by Marianna Schmudlach
Category
* Viruses and Spyware
Type
* Trojan
Affected operating systems Windows
http://www.sophos.com/security/analyses/viruses-and-spyware/trojagentkfx.html?_log_from=rss
Troj/Agent-KFW
by Marianna Schmudlach - 6/19/09 6:43 AM
In reply to: VIRUS \ SPYWARE ALERTS - June 19, 2009 by Marianna Schmudlach
Category
* Viruses and Spyware
Type
* Trojan
Affected operating systems Windows
http://www.sophos.com/security/analyses/viruses-and-spyware/trojagentkfw.html?_log_from=rss
Troj/Agent-KFV
by Marianna Schmudlach - 6/19/09 6:44 AM
In reply to: VIRUS \ SPYWARE ALERTS - June 19, 2009 by Marianna Schmudlach
Category
* Viruses and Spyware
Type
* Trojan
Affected operating systems Windows
Characteristics
* Installs itself in the registry
Troj/Agent-KFV is a Trojan for the Windows platform.
When run Troj/Agent-KFV copies itself to <System>\drivers\svchost.exe and sets the following registry entry:
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
Userinit
<System>\userinit.exe,<System>\drivers\svchost.exe
http://www.sophos.com/security/analyses/viruses-and-spyware/trojagentkfv.html?_log_from=rss
Troj/Agent-KFU
by Marianna Schmudlach - 6/19/09 6:45 AM
In reply to: VIRUS \ SPYWARE ALERTS - June 19, 2009 by Marianna Schmudlach
Category
* Viruses and Spyware
Type
* Trojan
Affected operating systems Windows
http://www.sophos.com/security/analyses/viruses-and-spyware/trojagentkfu.html?_log_from=rss
W32/Fujacks-BC
by Marianna Schmudlach - 6/19/09 6:45 AM
In reply to: VIRUS \ SPYWARE ALERTS - June 19, 2009 by Marianna Schmudlach
Category
* Viruses and Spyware
Type
* Virus
How it spreads
* Infected files
Affected operating systems Windows
http://www.sophos.com/security/analyses/viruses-and-spyware/w32fujacksbc.html?_log_from=rss
Troj/Renos-DC
by Marianna Schmudlach - 6/19/09 6:46 AM
In reply to: VIRUS \ SPYWARE ALERTS - June 19, 2009 by Marianna Schmudlach
Category
* Viruses and Spyware
Type
* Trojan
Affected operating systems Windows
http://www.sophos.com/security/analyses/viruses-and-spyware/trojrenosdc.html?_log_from=rss
Troj/DwnLdr-HTJ
by Marianna Schmudlach - 6/19/09 6:47 AM
In reply to: VIRUS \ SPYWARE ALERTS - June 19, 2009 by Marianna Schmudlach
Category
* Viruses and Spyware
Type
* Trojan
Affected operating systems Windows
Troj/DwnLdr-HTJ is a Trojan for the Windows platform.
When run Troj/DwnLdr-HTJ creates the file <System>\reset5c.dll (detected as Troj/DwnLdr-HTJ) and sets the following registry entry:
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\reset5c\
http://www.sophos.com/security/analyses/viruses-and-spyware/trojdwnldrhtj.html?_log_from=rss
Mal/Behav-268
by Marianna Schmudlach - 6/19/09 6:48 AM
In reply to: VIRUS \ SPYWARE ALERTS - June 19, 2009 by Marianna Schmudlach
Category
* Viruses and Spyware
Type
* Malicious Behavior
Affected operating systems Windows
http://www.sophos.com/security/analyses/viruses-and-spyware/malbehav268.html?_log_from=rss
Suspicious.S.Zlob
by Marianna Schmudlach - 6/19/09 7:08 AM
In reply to: VIRUS \ SPYWARE ALERTS - June 19, 2009 by Marianna Schmudlach
Discovered: June 18, 2009
Updated: June 18, 2009 11:36:10 PM
Type: Trojan
Systems Affected: Windows 98, Windows 95, Windows XP, Windows Me, Windows Vista, Windows NT, Windows Server 2003, Windows 2000
Suspicious.S.Zlob is a detection technology designed to detect entirely new malware threats without traditional signatures. This technology is aimed at detecting malicious software that has been intentionally mutated or morphed by attackers.
http://www.symantec.com/business/security_response/writeup.jsp?docid=2009-061822-5921-99
Suspicious.S.Bifrose
by Marianna Schmudlach - 6/19/09 7:09 AM
In reply to: VIRUS \ SPYWARE ALERTS - June 19, 2009 by Marianna Schmudlach
Discovered: June 18, 2009
Updated: June 18, 2009 11:38:20 PM
Systems Affected: Windows 98, Windows 95, Windows XP, Windows Me, Windows Vista, Windows NT, Windows Server 2003, Windows 2000
Suspicious.S.Bifrose is a detection technology designed to detect entirely new malware threats without traditional signatures. This technology is aimed at detecting malicious software that has been intentionally mutated or morphed by attackers.
http://www.symantec.com/business/security_response/writeup.jsp?docid=2009-061823-0228-99
Suspicious.S.Gen
by Marianna Schmudlach - 6/19/09 7:09 AM
In reply to: VIRUS \ SPYWARE ALERTS - June 19, 2009 by Marianna Schmudlach
Discovered: June 18, 2009
Updated: June 18, 2009 11:39:34 PM
Type: Other
Systems Affected: Windows 98, Windows 95, Windows XP, Windows Me, Windows Vista, Windows NT, Windows Server 2003, Windows 2000
Suspicious.S.Gen is a detection technology designed to detect entirely new malware threats without traditional signatures. This technology is aimed at detecting malicious software that has been intentionally mutated or morphed by attackers.
http://www.symantec.com/business/security_response/writeup.jsp?docid=2009-061823-1006-99
Bloodhound.Exploit.256
by Marianna Schmudlach - 6/19/09 7:11 AM
In reply to: VIRUS \ SPYWARE ALERTS - June 19, 2009 by Marianna Schmudlach
Discovered: June 19, 2009
Updated: June 19, 2009 6:17:00 AM
Type: Trojan, Virus
CVE References: CVE-2008-5346, CVE-2008-5347, CVE-2008-5348, CVE-2008-5349, CVE-2008-5350, CVE-2008-5352, CVE-2008-5353, CVE-2008-5354, CVE-2008-5355, CVE-2008-5345, CVE-2008-5351, CVE-2008-5356, CVE-2008-5357, CVE-2008-5358, CVE-2008-5359, CVE-2008-5360
Bloodhound.Exploit.256 is a heuristic detection for files attempting to exploit the Sun Java Runtime Environment and Java Development Kit Multiple Security Vulnerabilities (BID 32608).
http://www.symantec.com/business/security_response/writeup.jsp?docid=2009-061905-3413-99
mIRCClient
by Marianna Schmudlach - 6/19/09 7:13 AM
In reply to: VIRUS \ SPYWARE ALERTS - June 19, 2009 by Marianna Schmudlach
Category
* Adware or PUA
Type
* Unspecified PUA
Affected operating systems Windows
mIRCClient is a client component of the mIRC IRC application.
http://www.sophos.com/security/analyses/adware-and-puas/mircclient.html
| Forum legend: | |
 |
Locked thread |
 |
Moderator |
 |
CNET staff |
 |
Samsung staff |
 |
Norton Authorized Support team |
 |
AVG staff |
 |
Windows Outreach team |
 |
Dell staff |
 |
Intel staff |
