Spyware, viruses, & security : VIRUS \ Spyware ALERTS - August 26, 2008
- 8/25/08 10:13 PM
VIRUS \ Spyware ALERTS - August 26, 2008
by Marianna Schmudlach - 8/25/08 10:13 PM
Troj/Resex-B
Category Viruses and Spyware
Type Trojan
Affected operating systems Windows
Protection available since 26 August 2008
http://www.sophos.com/security/analyses/viruses-and-spyware/trojresexb.html?_log_from=rss
Troj/Merein-Gen
by Marianna Schmudlach - 8/25/08 10:14 PM
In reply to: VIRUS \ Spyware ALERTS - August 26, 2008 by Marianna Schmudlach
Aliases DR/Delphi.Gen
VirTool:Win32/DelfInject.gen!AM
Category Viruses and Spyware
Type Trojan
Troj/Merein-Gen is a Trojan for the Windows platform
http://www.sophos.com/security/analyses/viruses-and-spyware/trojmereingen.html?_log_from=rss
Troj/Gamania-BW
by Marianna Schmudlach - 8/25/08 10:15 PM
In reply to: VIRUS \ Spyware ALERTS - August 26, 2008 by Marianna Schmudlach
Category Viruses and Spyware
Type Trojan
Troj/Gamania-BW is a Trojan for the Windows platform.
When first run Troj/Gamania-BW copies itself to <System>\ckvo.exe and creates the following files:
<System>\ckvo0.dll
<System>\drivers\klif.sys
Both of these files are detected as Troj/Gamania-BW.
The following registry entry is created to run ckvo.exe on startup:
HKCU\Software\Microsoft\Windows\CurrentVersion\Run
kamsoft
<System>\ckvo.exe
http://www.sophos.com/security/analyses/viruses-and-spyware/trojgamaniabw.html?_log_from=rss
Troj/Gamania-BV
by Marianna Schmudlach - 8/25/08 10:16 PM
In reply to: VIRUS \ Spyware ALERTS - August 26, 2008 by Marianna Schmudlach
Category Viruses and Spyware
Type Trojan
Troj/Gamania-BV is a Trojan for the Windows platform.
When first run Troj/Gamania-BV copies itself to <System>\kavo.exe and creates the following files:
<System>\drivers\klif.sys
<System>\kavo0.dll
Both of these files are detected as Troj/Gamania-BV.
The following registry entry is created to run kavo.exe on startup:
HKCU\Software\Microsoft\Windows\CurrentVersion\Run
kava
<System>\kavo.exe
http://www.sophos.com/security/analyses/viruses-and-spyware/trojgamaniabv.html?_log_from=rss
kamsoft-ckvoexe-malware-manual-removal
by amr_adn - 9/30/08 12:46 AM In reply to: Troj/Gamania-BV by Marianna Schmudlach
http://infosecurityhub.blogspot.com/2008/09/kamsoft-ckvoexe-malware-manual-removal.html
Troj/FakeAle-GE
by Marianna Schmudlach - 8/25/08 10:17 PM
In reply to: VIRUS \ Spyware ALERTS - August 26, 2008 by Marianna Schmudlach
Category Viruses and Spyware
Type Trojan
Affected operating systems Windows
Characteristics Installs itself in the registry
http://www.sophos.com/security/analyses/viruses-and-spyware/trojfakealege.html?_log_from=rss
Troj/Dloadr-BQX
by Marianna Schmudlach - 8/25/08 10:19 PM
In reply to: VIRUS \ Spyware ALERTS - August 26, 2008 by Marianna Schmudlach
Category Viruses and Spyware
Type Trojan
Affected operating systems Windows
http://www.sophos.com/security/analyses/viruses-and-spyware/trojdloadrbqx.html?_log_from=rss
Mal/Emogen-N
by Marianna Schmudlach - 8/25/08 10:20 PM
In reply to: VIRUS \ Spyware ALERTS - August 26, 2008 by Marianna Schmudlach
Category Viruses and Spyware
Type Malicious Behavior
Mal/Emogen-N is a malicious program for the Windows platform.
Detection for members of Mal/Emogen-N is behavior based. It is extremely important that customers report detections of Mal/Emogen-N to Sophos and send a sample for analysis.
http://www.sophos.com/security/analyses/viruses-and-spyware/malemogenn.html?_log_from=rss
Troj/Small-EMB
by Marianna Schmudlach - 8/25/08 10:22 PM
In reply to: VIRUS \ Spyware ALERTS - August 26, 2008 by Marianna Schmudlach
Aliases Trojan.Win32.Small.bgp
TROJ_DROPPER.OA
nfected: VirTool:Win32/DelfInject.gen!T
Category Viruses and Spyware
Type Trojan
Troj/Small-EMB is a Trojan for the Windows platform.
When first run Troj/Small-EMB copies itself to a user folder under:
<Root>\RECYCLER\
and creates the following registry entry to run itself on startup:
HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{28ABC5C0-4FCB-11CF-AAX5-81CX1C635612}
StubPath
<Root>\RECYCLER\<user folder>\<Troj/Small-EMB filename>
http://www.sophos.com/security/analyses/viruses-and-spyware/trojsmallemb.html?_log_from=rss
Troj/Dloadr-BQY
by Marianna Schmudlach - 8/25/08 10:23 PM
In reply to: VIRUS \ Spyware ALERTS - August 26, 2008 by Marianna Schmudlach
Category Viruses and Spyware
Type Trojan
Affected operating systems Windows
http://www.sophos.com/security/analyses/viruses-and-spyware/trojdloadrbqy.html?_log_from=rss
W32/AutoRun-IE
by Marianna Schmudlach - 8/26/08 7:27 AM
In reply to: VIRUS \ Spyware ALERTS - August 26, 2008 by Marianna Schmudlach
Category Viruses and Spyware
Type Worm
W32/AutoRun-IE is a worm for the Windows platform.
When run W32/AutoRun-IE copies itself to :
<Root>\SiZhu.exe
<System>\SiZhu.exe
and creates the files
<Root>\Autorun.inf (also detected as W32/AutoRun-IE)
W32/AutoRun-IE sets the following registry entry:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
SiZhu
<System>\SiZhu.exe
W32/AutoRun-IE spreads by copying itself via removable shared drives.
http://www.sophos.com/security/analyses/viruses-and-spyware/w32autorunie.html?_log_from=rss
W32/Autorun-ID
by Marianna Schmudlach - 8/26/08 7:28 AM
In reply to: VIRUS \ Spyware ALERTS - August 26, 2008 by Marianna Schmudlach
Category Viruses and Spyware
Type Worm
Affected operating systems Windows
http://www.sophos.com/security/analyses/viruses-and-spyware/w32autorunid.html?_log_from=rss
Troj/Tibs-UU
by Marianna Schmudlach - 8/26/08 7:29 AM
In reply to: VIRUS \ Spyware ALERTS - August 26, 2008 by Marianna Schmudlach
Aliases Tibs-Packed trojan
Category Viruses and Spyware
Type Trojan
Troj/Tibs-UU is a Trojan for the Windows platform.
Troj/Tibs-UU includes functionality to access the internet and communicate with a remote server via HTTP.
When first run Troj/Tibs-UU copies itself to <System>\CbEvtSvc.exe.
The file CbEvtSvc.exe is registered as a new system driver service named "CbEvtSvc", with a display name of "CbEvtSvc" and a startup type of automatic, so that it is started automatically during system startup. Registry entries are created under:
HKLM\SYSTEM\CurrentControlSet\Services\CbEvtSvc
http://www.sophos.com/security/analyses/viruses-and-spyware/trojtibsuu.html?_log_from=rss
Troj/Mdrop-BVD
by Marianna Schmudlach - 8/26/08 7:30 AM
In reply to: VIRUS \ Spyware ALERTS - August 26, 2008 by Marianna Schmudlach
Category Viruses and Spyware
Type Trojan
Affected operating systems Windows
http://www.sophos.com/security/analyses/viruses-and-spyware/trojmdropbvd.html?_log_from=rss
Troj/Mdrop-BVC
by Marianna Schmudlach - 8/26/08 7:31 AM
In reply to: VIRUS \ Spyware ALERTS - August 26, 2008 by Marianna Schmudlach
Category Viruses and Spyware
Type Trojan
Affected operating systems Windows
http://www.sophos.com/security/analyses/viruses-and-spyware/trojmdropbvc.html?_log_from=rss
| Forum legend: | |
 |
Locked thread |
 |
Moderator |
 |
CNET staff |
 |
Samsung staff |
 |
Norton Authorized Support team |
 |
AVG staff |
 |
Windows Outreach team |
 |
Dell staff |
 |
Intel staff |
