Latest News

Virus Alerts from Viruslist.com

• Net-Worm.Win32.Kido Kaspersky Lab has detected that multiple variants of Kido, a polymorphic worm, are currently spreading widely.
• Virus.Win32.Gpcode.ak Kaspersky Lab has detected a new version of the ‘malicious blackmailer’ Gpcode - Virus.Win32.Gpcode.ak.
• Email-Worm.Win32.Warezov.nf Kaspersky Lab has detected mass mailings of a new variant of Warezov, Email-Worm.Win32.Warezov.nf.
• Email-Worm.Win32.Warezov.mx New Warezov variant mass mailed
• Email-Worm.Win32.Warezov.ms A new variant of Warezov has been mass mailed, and is spreading rapidly
• Email-Worm.Win32.Zhelatin Multiple variants spreading
• Email-Worm.Win32.Zhelatin.u New variant of Zhelatin spreading rapidly
• Email-Worm.Win32.Zhelatin.r Sharp increase in the volume of Email-Worm.Win32.Zhelatin.r
• Email-Worm.Win32.Zhelatin.o Kaspersky Lab has detected a mass mailing of Email-Worm.Win32.Zhelatin.o, which is spreading as an attachment to infected emails.
• Email-Worm.Win32.Warezov Multiple new variants spreading

Latest Virus Descriptions from Viruslist.com

• Backdoor.Win32.Clampi.a This Trojan spy program is designed to steal confidential user data and remotely manage the victim machine. It is a Windows PE EXE file. It is 470 bytes in size. Installation When launched, the Trojan creates the following file: %AppData%\<name>.exe <name&gr; is chosen at random from...
• Trojan-Dropper.Win32.Agent.albv This Trojan has a malicious payload. It is a Windows PE EXE file. It is 23552 bytes in size. Installation The Trojan copies its executable file as follows: %WinDir%\system\svhost.exe In order to ensure that the Trojan is launched automatically when the system is rebooted, the Trojan adds a link...
• Backdoor.Win32.Agent.abgg This Trojan provides a remote malicious user with access to the victim machine. It is a Windows PE EXE file. It is 22528 bytes in size. Installation Once launched, the Trojan copies its body to the Windows system directory as "digeste.dll": %System%\digeste.dll In order to ensure that the Trojan...
• Trojan-Dropper.Win32.Kido.a This Trojan is designed to install and launch other programs on the victim machine without the knowledge or consent of the user. It is a Windows PE EXE file. It is 78848 bytes in size. It is written in C++.
• Trojan-Downloader.Win32.Kido.a This malicious program is a Windows DLL file. Installation The malware copies its executable file with random names to the following directories: %Program Files%\Internet Explorer\<rnd>.dll %Program Files%\Windows Media Player\<rnd>.dll %Program Files%\WindowsNT\<rnd>.dll %Program...
• Email-Worm.Win32.Merond.a This worm spreads as an attachment to infected emails and also via file-sharing networks and removable media. The worm itself is a Windows PE EXE file. The worm’s executable file can vary between 150KB to 400KB in size. Installation The worm copies its executable file to the Windows system...
• Trojan.Win32.Agent.azsy This malicious program is a Trojan. It is a Windows PE EXE file. It is 417792 bytes in size. It is packed using UPX. The unpacked file is approximately 439KB in size. It is written in C++. Installation Once launched, the Trojan copies its body to the current user’s Windows startup...
• Trojan.Win32.Agent2.dtb This Trojan calls premium rate numbers without the knowledge or consent of the user. It is a Windows PE EXE file. It is 25131 bytes in size. It is written in Delphi.
• Trojan-Downloader.Win32.Small.ydh This Trojan downloads other files via the Internet and launches them for execution on the victim machine without the user’s knowledge or consent. It is a Windows PE EXE file. It is 34816 bytes in size. It is not packed in any way. It is written in C++. Installation Once launched, the Trojan...
• Trojan-Downloader.Win32.Agent.ahoe This Trojan downloads another malicious program via the Internet and launches it on the victim machine without the user’s knowledge or consent. It is a Windows PE EXE file. It is 9216 bytes in size. It is packed using UPX. The unpacked file is approximately 38KB in size. It is written in...

Latest Virus Descriptions from f-prot.com

• Warezov.AKD This virus was discovered on: 30 Aug 2007
• Downloader.AYEV This virus was discovered on: 21 Jan 2007
• Mitglieder.UZ This virus was discovered on: 12 Dec 2006
• Quickspace.A This virus was discovered on: 7 Dec 2006
• Downloader.ANCJ This virus was discovered on: 14 Nov 2006

Virus Weblog Viruslist.com

• Patch Tuesday Today Microsoft released 2 bulletins addressing 8 vulnerabilities affecting Windows and Microsoft Office products. Both of the bulletins are rated important meaning some users interaction is needed to exploit the vulnerability and allow remote code execution. One thing that this month's updates...
• Too many passwords? Too many passwords?
• More on Yxe More on Yxe
• Return of the Yxe worm Return of the Yxe worm
• The football World Cup kicks off in South Africa The football World Cup kicks off in South Africa in June and it’s just the type of global event that Nigerian spammers can’t resist exploiting
• Cascading false positives Cascading false positives
• Need a Valentine‘s gift? It’s the same every year: as soon as Valentine's Day gets close, all the spammers concentrate on this event to spread unsolicited mails – sometimes with malicious little gifts
• On the way to better testing On the way to better testing
• Patch now: MS10-002 Patch now: MS10-002
• Search poisoning, again Search poisoning, again