- Latest
- May 2013
- Apr 2013
- Mar 2013
- Feb 2013
- Jan 2013
- Dec 2012
- Nov 2012
- Oct 2012
- Sep 2012
- Aug 2012
- Jul 2012
- Jun 2012
- May 2012
- Apr 2012
- Mar 2012
- Feb 2012
- Jan 2012
- Dec 2011
- Nov 2011
- Oct 2011
- Sep 2011
- Aug 2011
- Jun 2011
- May 2011
- Apr 2011
- Mar 2011
- Feb 2011
- Jan 2011
- Dec 2010
- Nov 2010
- Oct 2010
- Sep 2010
- Aug 2010
- Jul 2010
- Jun 2010
- May 2010
- Apr 2010
- Mar 2010
- Feb 2010
- Jan 2010
- Dec 2009
- Nov 2009
- Oct 2009
- Sep 2009
- Aug 2009
- Jul 2009
- Jun 2009
- May 2009
- Apr 2009
- Mar 2009
- Feb 2009
- Jan 2009
- Dec 2008
- Nov 2008
- Oct 2008
- Sep 2008
- Aug 2008
- Jul 2008
- Jun 2008
- May 2008
- Apr 2008
- Mar 2008
- Feb 2008
- Jan 2008
- Dec 2007
- Nov 2007
- Oct 2007
- Sep 2007
- Aug 2007
- Jul 2007
- Jun 2007
- May 2007
- Apr 2007
- Mar 2007
- Feb 2007
- Jan 2007
- Dec 2006
- Nov 2006
- Oct 2006
- Sep 2006
- Aug 2006
- Jul 2006
- Jun 2006
- May 2006
- Apr 2006
- Mar 2006
- Feb 2006
- Jan 2006
- Dec 2005
- Nov 2005
- Oct 2005
- Sep 2005
- Aug 2005
- Jul 2005
- Jun 2005
- May 2005
- Apr 2005
- Mar 2005
- Feb 2005
- Jan 2005
- Dec 2004
- Nov 2004
- Oct 2004
- Sep 2004
- Aug 2004
- Jul 2004
- Jun 2004
- May 2004
- Apr 2004
- Mar 2004
- Feb 2004
- Jan 2004
- Dec 2003
- Nov 2003
- Oct 2003
- Sep 2003
- Aug 2003
- Jul 2003
- Jun 2003
- May 2003
- Apr 2003
- Mar 2003
- Feb 2003
- Jan 2003
- Dec 2002
- Nov 2002
- Oct 2002
- Sep 2002
- Aug 2002
- Jul 2002
- Jun 2002
- May 2002
- Apr 2002
- Mar 2002
- Feb 2002
- Jan 1995
- Jan 1994
12/31: Waled-E Worm Sends Itself Using Built-In SMTP Client
W32/Waled-E is a worm for the Windows platform.
12/31: Autorun-SV Worm Arrives in File Masquerading as Fake Software Installer
W32/Autorun-SV is a worm for the Windows platform.
12/31: OnLineGames.TOB Trojan Drops Files, Modifies Registry
W32/OnLineGames.TOB is a Trojan that upon execution drops kavo.exe and kavo0.dll in Windows System folder.
12/31: Agent-IMV Trojan Arrives in "Christmas Monkey" Email
Troj/Agent-IMV is a Trojan that may arrive in an email as "Christmas Monkeys.exe."
12/31: Agent-IMU Trojan Sets Registry Entry for Execution
Troj/Agent-IMU is a Trojan for the Windows platform.
12/30: Vaklik.ASM Trojan Drops Files, Modifies Registry
W32/Vaklik.ASM is a Trojan that upon execution drops jvvo.exe and jvvo0.dll in Windows System folder.
12/30: SdBot-DKH Worm Copies Itself, Sets Registry Entry
W32/SdBot-DKH is a worm for the Windows platform.
12/30: Trojan.Downexec.C Drops Files
Trojan.Downexec.C is a Trojan horse that may download files on to the compromised computer.
12/30: Conficker.worm Exploits Flaw to Spread
W32/Conficker.worm exploits the MS08-067 vulnerability in order to spread.
12/30: Downadup.B Worm Exploits Windows Flaw
W32.Downadup.B is a worm that spreads by exploiting the Microsoft Windows Server Service RPC Handling Remote Code Execution Vulnerability.
12/29: IRCBot-ZI Trojan Gives Intruder System Access, Control
Troj/IRCBot-ZI is a Trojan for the Windows platform.
12/29: Bypass-E Trojan Creates .Dll File
Troj/Bypass-E is a Trojan for the Windows platform.
12/29: Infostealer.Tremzi a Detection for Trojan .Dll Files
Infostealer.Tremzi is a generic detection for polymorphic Trojan .dll files.
12/29: Mal/Armada-A Trojan Gathers System Information for Attacker
Mal/Armada-A is a Trojan that may gather system information and send it to a remote attacker.
12/29: Lolyda-Gen a Password-Stealing Trojan
Troj/Lolyda-Gen is a password-stealing Trojan for the Windows platform.
12/29: Agent-IMG Trojan Runs Continuously in Background
Troj/Agent-IMG is a Trojan for the Windows platform.
12/29: VirtualBouncer.C Trojan Installs Itself as Antivirus Software, Scans System
W32/VirtualBouncer.C is a Trojan that installs itself as an antivirus software and scans the system.
12/29: BackDr-AF Trojan Targets Windows
Troj/BackDr-AF is a Backdoor Trojan for the Windows platform.
Honing Computer Forensics Skills with Process Explorer
Need to cleanse a malware infected Windows system? Learning to use a free and handy tool called Process Explorer is an essential first step.
12/24: Mal/Banload-I a Malicious Program
Mal/Banload-I is a malicious program.
12/24: Chucem.worm Copies Itself to Disk Roots
W32/Chucem.worm attempts to copy itself to the root of any accessible disk volumes.
12/24: Agent.AURK Trojan Drops Files in System Folder
W32/Agent.AURK is a Trojan that will infect Windows systems.
12/24: Mal/FakeVirPk-A Typically a Fraudulent Security Program
Mal/FakeVirPk-A is a program packed with a protection system typically used by malware authors.
12/23: Waledac Worm Copies Itself by Email to Spread
W32.Waledac is a worm that spreads by sending copies of itself by email.
12/23: Genetik.TI Trojan Adds Multiple Entries to Windows Registry
Troj_Genetik.TI is a Trojan that may be downloaded from certain remote sites.
12/23: Imaut.E Worm Spreads Via Instant Messaging
W32.Imaut.E is a worm that attempts to spread through Instant Messaging clients.
12/23: Rbot-RSL Worm Spreads Through Multiple Means
W32/Rbot-RSL is a worm with IRC backdoor functionality for the Windows platform.
New E-holiday Card Virus Emerges
Could this be the successor to the Storm worm?
Subject Lines Spammers Can't Resist
Any time you see an e-mail with one of these subject lines, delete it without opening if you want to stay safe.
12/23: Tibs.KXN Trojan Drops .Exe Files
W32/Tibs.KXN is a Trojan that drops init32.exe and frmwrk32.exe in Windows System folder upon execution.
12/22: Hapday.PSW Trojan Drops .Exe File, Modifies Registry
W32/Hapday.PSW is a Trojan that upon execution drops svchost.exe in Windows System folder.
12/22: Agent-IJX Trojan Changes IE Browser Settings
Troj/Agent-IJX is a Trojan for the Windows platform.
12/22: PSW-GF Trojan Copies Itself to Windows Temp Folder
Troj/PSW-GF is a Trojan for the Windows platform.
12/22: AutoInf-P A Windows Worm
W32/AutoInf-P is a worm for the Windows platform.
12/22: Danmec.b Trojan Compromises Websites With SQL Attack
Danmec.b is a Trojan that searches several search engines for .asp pages and attempts to compromise websites by launching a SQL injection attack.
12/22: AutoRun-SQ Worm Sets Registry Entry
W32/AutoRun-SQ is a worm for the Windows platform.
12/22: AutoRun-SF Worm Hits Windows
W32/AutoRun-SF is a worm for the Windows platform.
12/22: Trojan.Gimfan.A Exploits Windows Flaw
Trojan.Gimfan.A is a Trojan horse that exploits the Microsoft Windows Server Service RPC Handling Remote Code Execution Vulnerability (BID 31874) in order to download a file on to the compromised computer.
12/19: Graball.R Trojan Drops .Dll File in System Folder
W32/Graball.R is a Windows Trojan that upon execution drops winload.dll in Windows System folder.
12/19: Agent-HXR Trojan Copies Itself, Creates Registry Entry
Troj/Agent-HXR is a Trojan for the Windows platform.
12/19: Silly-H Trojan Modifies File
W32/Silly-H is a Trojan for the Windows platform.
12/19: Autorun-SM Worm Runs Continuously in Background
W32/Autorun-SM is a worm with IRC backdoor functionality for the Windows platform.
12/19: Sdbot-DHJ Worm Creates Registry Entry
W32/Sdbot-DHJ is a worm for the Windows platform.
12/19: Conficker.worm Exploits Flaw to Spread
W32/Conficker.worm exploits the MS08-067 vulnerability in order to spread.
12/19: JS.Downloader.B JavaScript Exploits Flaw
JS.Downloader.B is a generic detection for a javascript that exploits a vulnerability to download files.
12/19: Autorun-SJ Worm Alters Folder Options
W32/Autorun-SJ is an autorun worm for the Windows platform.
12/19: AutoIt-AO Worm Copies Itself, Creates File
W32/AutoIt-AO is a worm for the Windows platform.
12/19: HostInf-C Worm Gives Remote Intruder Access
W32/HostInf-C is a worm with IRC backdoor functionality for the Windows platform.
Critical Internet Explorer Patch: MS08-078 Resource Center
A one-stop guide to understanding the infamous IE7 vulnerability and patching it effectively (the sooner, the better).
12/18: AutoRun.UCO Worm Spreads on Fixed, Removable Drives
W32/AutoRun.UCO is a Windows system worm that propagates on local fixed and removable USB drives.
12/18: MarioF-H Worm Runs Continuously in Background
W32/MarioF-H is a worm that runs continuously in the background, providing a backdoor server that allows a remote intruder to gain access and control over the computer.
12/18: Rbot-GSK Worm Uses Weak Passwords to Spread
W32/Rbot-GSK is a worm with IRC backdoor functionality for the Windows platform.
12/18: VBS_Autorun.HAI Malicious VBScript May be Downloaded, Dropped
VBS_Autorun.HAI is malicious VBScript that may be downloaded from remote sites by other malware.
12/18: Decdec-C a Malicious JavaScript
Troj/Decdec-C is a malicious JavaScript embedded in a web page.
12/18: Mal/ExpJS-C a Malicious Web Page That Exploits ActiveX Flaw
Mal/ExpJS-C is a malicious web page intended to exploit CVE-2008-2463 (Microsoft Office Snapshot Viewer ActiveX control) vulnerability, in order to download and execute other malicious content.
12/18: Mal/ObfJS-BL JavaScript Exploits Browser Flaws
Mal/ObfJS-BL is an obfuscated JavaScript within a web page that is likely to exploit vulnerabilities in the browser in order to infect the victim with malware.
12/18: Mal/ObfJS-BM Malicious JavaScript Embedded in Web Pages
Mal/ObfJS-BM is a malicious JavaScript embedded in web pages that attempts to exploit browser vulnerabilities.
12/17: BHO-IH Trojan Creates Registry Entries
Troj/BHO-IH is a Trojan for the Windows platform.
12/17: Agent-HIV Trojan Copies Itself, Sets Registry Entry
Troj/Agent-HIV is a Trojan for the Windows platform.
12/17: Virut.g a File-Infecting Virus
W32/Virut.g is a file-infecting virus with IRC based backdoor functionality.
12/17: Autorun.worm.zfgen Places Autorun file in System Folder
W32/Autorun.worm.zfgen is a worm that attempts to copy itself to the Windows system folder.
12/17: Agent.AANG Trojan Drops Files, Modifies Registry
W32/Agent.AANG is a Trojan that upon execution drops doskeys.exe and rar.exe in Windows System folder.
12/17: Exp/Datbi-A an XML Parser Flaw in IE 7
Exp/Datbi-A is an XML parser heap overflow exploit for Microsoft Internet Explorer 7 that may result in remote code execution when a specifically crafted web page is rendered.
12/17: Agent-KHK Trojan Deletes Itself, Creates System Copy
Troj/Agent-HKH is a Trojan for the Windows platform.
12/17: Mal/Dropper-AI a Malicious Windows Program
Mal/Dropper-AI is a malicious program for the Windows platform.
12/17: Renos-BW Trojan Contacts Remote Server
Troj/Renos-BW is a Trojan for the Windows platform.
12/17: Bkdr_Agent.VBI Backdoor Drops Files, Modifies Registry
Bkdr_Agent.VBI is a backdoor that may be dropped by TROJ_MCWORDP.A.
Warning, Your Antivirus Software May be Leaky
If you think you're protected because you have antivirus applications installed, think again.
12/17: FakeAV-GA JavaScript File Creates Browser Pop-Ups
Troj/FakeAV-GA is a JavaScript file that creates browser pop-up adverts from a fake anti-virus software site known for installing malicious software.
12/16: Vundeb-A Trojan Registers Itself as IE Debugger
Troj/Vundeb-A is a Trojan that registers itself as a debugger for Internet Explorer and attempts to copy a dll within the (System) folder and execute it.
12/16: FakeVir-IK a Fraudulent Windows Security Product
Troj/FakeVir-IK is a fraudulent security product for the Windows platform.
12/16: Mal/Exp-JS-C a Malicious Web Page That Exploits ActiveX Flaw
Mal/ExpJS-C is a malicious web page intended to exploit CVE-2008-2463 (Microsoft Office Snapshot Viewer ActiveX control) vulnerability, in order to download and execute other malicious content.
12/16: IRCBot.ECT Trojan Drops .Exe Files Upon Execution
W32/IRCBot.ECT is a Trojan that upon execution drops gettyvennes.exe and douquuwubouc.exe in Windows System folder.
12/16: Bkdr_Agent.VBI Backdoor Drops Various Files
Bkdr_Agent.VBI is a backdoor that may be dropped by TROJ_MCWORDP.A.
12/16: AutoRun-CT Worm Hits Windows
W32/AutoRun-CT is a worm for the Windows platform.
12/16: Greener a File-Infecting Virus
W32/Greener is a file-infecting virus.
Several Attacks Behind CheckFree Data Breach
New attack combines several attack techniques into a single, multi-stage attack that is still being examined for a line of defense.
12/15: PWS-AUF a Password-Stealing Trojan
Troj/PWS-AUF is a password-stealing Trojan for the Windows platform.
12/15: MarioF-Gen Worm Uses Weak Network Passwords to Spread
W32/MarioF-Gen Worm copies itself to network shares that are protected by weak passwords.
12/15: Trojan.Chromeinject.A Steals Information
Trojan.Chromeinject.A is a Trojan horse that steals information from the compromised computer.
12/15: FakeVir-IH Trojan Hits Windows
Troj/FakeVir-IH is a Trojan for the Windows platform.
12/15: Tefo a Detection for Parasitically Infected Executable Files
W32/Tefo is a detection for parasitically infected executable files made to load a malicious DLL detected as W32/Tefo.dldr.
Microsoft Expands Zero-Day IE Warning
As reports of attacks in the wild come in, Microsoft says IE 7 is not the only vulnerable version of its browser.
12/15: Span.a a File-Prepending Parasitic Virus
W32/Span.a is a file-prepending parasitic virus.
12/15: BackDoor-DTD Trojan Injects Malicious Thread Into IE
BackDoor-DTD is a generic detection for a remote access Trojan.
12/15: Tefo.dldr a Downloader Trojan
W32/Tefo.dldr is a downloader Trojan, which, when loaded and executed by W32/Tefo, attempts to communicate with a remote server to download and execute additional malware on a schedule.
12/15: Bloodhound.Depby a Detection for Certain Executable Files
Bloodhound.Depby is a detection for executable files that attempt to bypass the Data Execution Prevention protection feature.
12/15: Ciadoor-DW Trojan Creates File, Registry Entry
Troj/Ciadoor-DW is a Trojan for the Windows platform.
12/15: Dloadr-CAI Trojan Connects to Remote Website
Troj/Dloadr-CAI is a Trojan for the Windows Platform.
12/15: Rootkit-ED a Rootkit Trojan
Troj/Rootkit-ED is a rootkit Trojan for the Windows platform.
12/15: Mal/ObfJS-X Uses Obfuscation to Run More Malware
Mal/ObfJS-X uses obfuscation to run other malware.
12/15: Decdec-C a Malicious, Embedded JavaScript
Troj/Decdec-C is a malicious JavaScript embedded in a web page.
12/12: Agent-GOD Trojan Creates Registry Entries
Troj/Agent-GOD is a Trojan for the Windows platform.
12/12: Hytoo.worm Scans IP Ranges and Spreads Multiple Ways
W32/Hytoo.worm scans a set of IP ranges carried in the worm body (may vary depending on the variant).
12/12: Mal/WowPWS-B a Malicious Windows Program
Mal/WowPWS-B is a malicious program for the Windows platform.
12/12: OnLineGames.TRQA Trojan May be Dropped, Downloaded
W32/OnLineGames.TRQA is a Trojan that may be dropped by other malware or may be downloaded from remote website by other malware.
12/12: BackDoor-DTB a Detection for a Remote Access Trojan
BackDoor-DTB is a generic detection for a remote access backdoor Trojan.
12/12: Backdoor-DTC Trojan Ends Services
BackDoor-DTC is a remote access Trojan.
12/12: McWordP.A Trojan Exploits WordPad Flaw
Troj_McWordP.A is a Trojan that may be dropped or downloaded by other malware.
12/12: Exp/Datbi-A an XML Exploit Targeting IE 7
Exp/Datbi-A is an XML parser heap overflow exploit for Microsoft Internet Explorer 7, which may result in remote code execution when a specifically crafted web page is rendered.
12/12: Mal/Iframe-G Malicious Script Exploits Software Flaws
Mal/Iframe-G is a malicious script that redirects to a number of other scripts, many of which attempt to exploit software vulnerabilities in order to download and run a malicious executable file.
12/12: JS_Agent.CSZZ Malicious JavaScript May be Hosted
JS_Agent.CSZZ is malicious Javascript that may be hosted on a Web site and run when a user accesses the said Web site.
12/12: Agent-GPS Trojan Copies Itself, Adds Registry Entries
Troj/Agent-GPS is a Trojan for the Windows platform.
12/12: Calac-A a Downloader Trojan
Troj/Calac-A is a downloader Trojan for the Windows platform.
Which Top Apps Have the Most Security Holes?
Bit9 ranks the most widely used applications with known security vulnerabilities.
12/12: CracSr-Gen Trojan Downloads Serial Numbers
Troj/CracSr-Gen is a Trojan for the Windows platform.
12/11: Renos-BY Trojan Creates Files Upon Installation
Troj/Renos-BY is a Trojan for the Windows platform.
12/11: AutoIT.HI Trojan May be Dropped, Downloaded
W32/AutoIt.HI is a Trojan that may be dropped by other malware or may be downloaded from remote website by other malware.
12/11: Floov-A a Malicious WIndows Program
Mal/Floov-A is a malicious program for the Windows platform.
12/11: Mal/ObfJS-BK JavaScript Exploits Browser Flaws
Mal/ObfJS-BK is an obfuscated JavaScript within a web page that exploits vulnerabilities in the browser in order to infect the victim with malware.
12/11: Mariofev.worm Copies Itself Over Network Shares
W32/Mariofev.worm attempts to spread by copying itself over Network Shares.
12/11: Dloadr-BOB Trojan Drops, Installs, Runs Software
Troj/Dloadr-BOB is a Trojan for the Windows platform.
12/11: Tiotua-L Trojan Copies Itself, Sets Registry Keys
Troj/Tiotua-L is a Trojan for the Windows platform.
Ward Off Mac Exploits
OS Roundup: Don't let the worm get into your Apple. Protecting yourself from exploits is just as critical for Mac users as for those running Linux or Windows -- and not something to get complacent about.
12/10: Agent-ILL Trojan Creates Registry Entries
Troj/Agent-ILL is a Trojan for the Windows platform.
12/10: JS_Dload.MD Malicious JavaScript Exploits Unpatched IE 7 Flaw
JS_Dload.MD is malicious JavaScript that may be hosted on a Web site and run when a user accesses the said Web site.
12/10: AutoRun-SB Worm Overwrites System Files
W32/AutoRun-SB is a worm for the Windows platform.
12/10: Mal/Tibs-A Trojan Family Drop, Install Software
Mal/Tibs-A is a family of Trojans for the Windows platform.
12/10: UltimateAntivirus.CQ Trojan Installs Itself as Software
W32/UltimateAntivirus.CQ is a Trojan that may be dropped by other malware or may be downloaded from remote website by other malware.
12/10: ExploitWordPad.a Trojan Exploits WordPad Flaw
ExploitWordPad.a Trojan is a generic detection for exploits targeting a Microsoft WordPad text converter vulnerability.
12/10: Agent-ILK Trojan Copies Itself
Troj/Agent-ILK is a Trojan for the Windows platform.
12/10: Exploit-XMLhttp.d Trojan Targets IE 7.x
Exploit-XMLhttp.d Trojan is a generic detection for an unidentified vulnerability targeting Internet Explorer 7.x.
12/10: Mal/ObfJS-AS a Malicious JavaScript
Mal/ObfJS-AS is an obfuscated malicious JavaScript within a web page.
12/10: Tidns Worm Spreads Via Removable Drives
W32.Tidns is a worm that spreads through removable drives.
12/10: Dloadr-BGQ Trojan Drops, Installs, Runs New Software
Troj/Dloadr-BGQ is a Trojan for the Windows platform.
12/9: PWS-AWP Trojan Creates Files, Registry Entries
Troj/PWS-AWP is a Trojan for the Windows platform.
12/9: Druzgl.D Worm Drops .Exe File Upon Execution
W32/Druzgl.D is a worm that upon execution drops wuauclt.exe in Program Files\Microsoft Common folder.
12/9: DwnLdr-HLR a Downloader Trojan
Troj/DwnLdr-HLR is a downloader Trojan for the Windows platform.
12/9: Agent-ILF Trojan Creates Files
Troj/Agent-ILF is a Trojan for the Windows platform.
12/9: Exploit-XMLhttp.d a Detection for IE 7.x Flaw
Exploit-XMLhttp.d is a generic detection for an unidentified buffer overflow vulnerability targeting Internet Explorer 7.x.
12/9: SillyFDC-CU Worm Creates Registry Entry, Files
W32/SillyFDC-CU is a worm for the Windows Platform.
12/9: Banker-EOV Trojan Copies Itself, Modifies Hosts File
Troj/Banker-EOV is a Trojan for the Windows platform.
12/9: AutoRun-RY Worm Drops Clean Text File
W32/AutoRun-RY is a worm for the Windows platform.
12/9: Decdec-B Malicious JavaScript Downloads Code
Troj/Decdec-B is a malicious JavaScript embedded in a web page that attempts to download code from another remote site.
12/9: Agent-ILH Trojan Tries to Connect to Websites
Troj/Agent-ILH is a Trojan for the Windows platform.
12/9: Mal/FakeAV-Q a Malicious Windows Program
Mal/FakeAV-Q is a malicious program for the Windows platform.
12/8: Drop.BP Trojan Targets Mozilla FIrefox Users
Troj_Drop.BP is a Trojan that targets users of the Web browser Mozilla Firefox.
12/8: Bkdr_Sinowal.EK Backdoor Overwrites Master Boot Record
Bkdr_Sinowal.EK is a backdoor that may be dropped by other malware.
12/8: PSW-GB Trojan Creates, Registers File
Troj/PSW-GB is a Trojan for the Windows platform.
12/8: Chimerux Virus Infects .Exe, .Scr Files
W32.Chimerux is a virus that infects .exe and .scr files.
12/8: CryptBox-A Trojan Decrypts, Injects Other Components
Troj/CryptBox-A is a Trojan for the Windows platform.
Facebook Moves to Cope With Koobface Virus
A persistent attack by malware writers aims to take advantage of social networking's booming popularity.
12/8: Mal/ObfJS-BN an Obfuscated Malicious Javascript
Mal/ObfJS-BN is an obfuscated malicious JavaScript within a web page.
12/8: Banloa-GD a Windows Trojan
Troj/Banloa-GD is a Trojan for the Windows platform.
12/8: Mal/FakeAV-Q a Malicious Windows Program
Mal/FakeAV-Q is a malicious program for the Windows platform.
12/8: Inject.DK Trojan Drops .Exe File in System Folder
W32/Inject.DK is a Trojan that upon execution, drops msw32prt.exe in Windows System folder.
12/8: Clckr-F Trojan Creates Registry Entry
Troj/Clckr-F is a Trojan for the Windows platform.
12/8: Keylog-LA Trojan Records Keystrokes
Troj/Keylog-LA records keystrokes and communicates by HTTP with a remote server via a hidden IExplorer process.
Secure Apache: Out, Damned Bot!
Defend your Web server against abusive spiders and 'flies'.
12/5: OSX_Rsplug.A Malware Connects to IP Address
OSX_Rsplug.A is malware that may be downloaded unknowingly by a user when visiting malicious Web site(s).
12/5: Lopown!inf Virus Infects Files to Download Other Threats
W32.Lopown!inf virus is a detection for files infected to download other threats when executed.
12/5: LdPinch.ABVF Trojan Drops .Exe File Upon Execution
W32/LdPinch.ABVF is a Trojan that upon execution drops wuauclt.exe in Program Files folder.
12/5: AutoRun-RR Worm Spreads Via Removable, Shared Drives
W32/AutoRun-RR is a worm for the Windows platform.
12/5: AutoRun-RS Worm Copies Itself, Creates File
W32/AutoRun-RS is a worm for the Windows platform.
12/5: DwnLdr-HLP a Downloader Trojan
Troj/DwnLdr-HLP is a downloader Trojan for the Windows platform.
12/5: Renocide Worm Spreads Via Removable Media
W32/Renocide is a worm that spreads via removable media using "autorun.inf," and also downloads additional malware.
12/5: AutoIt-AK Trojan Copies Itself; Creates Files
Troj/AutoIt-AK is a Trojan for the Windows platform.
12/5: Pidiefx.B Trojan a Malicious Javascript .PDF File
Troj_Pidiefx.B is a Trojan that may be downloaded from remote site(s) by other malware.
12/5: Inject-DK Trojan Copies Itself, Creates Registry Entry
Troj/Inject-DK is a Trojan for the Windows platform.
12/5: Mdrop-BXI Trojan a Windows Dropper/Installer
Troj/Mdrop-BXI is a Trojan dropper/installer for the Windows platform.
12/4: DwnLdr-HLL a Windows System Trojan
Troj/DwnLdr-HLL is a Trojan for the Windows platform.
12/4: Dloadr-CBY Trojan Drops Additional Malware
Troj/Dloadr-CBY is a Trojan for the Windows platform.
12/4: Bkdr_Agent.CAZZ Backdoor Makes Multiple Registry Changes
Bkdr_Agent.CAZZ is a backdoor that arrives on a system as a file dropped or downloaded by other malware.
12/4: DwnLdr-HLM Trojan Creates Files When Run
Troj/DwnLdr-HLM is a Trojan for the Windows platform.
12/4: Bloodhound.PDF.2 Exploits Adobe Acrobat
Bloodhound.PDF.2 is a heuristic detection for reporting PDF files that may attempt to exploit known vulnerabilities in Adobe Acrobat.
12/4: Ezio-G Trojan Contacts Remote Server Via Http
Troj/Ezio-G is a Trojan for the Windows platform.
12/4: JS/Obfuscated.c Malicious Script Files Exploit System Flaws
JS/Obfuscated.c is a generic detection for obfuscated malicious script files that attempts to exploit unpatched vulnerabilities in the system.
12/4: JS/Obfuscated.b Malcious Script Files Use Obfuscation Techniques
JS/Obfuscated.b is a generic detection for obfuscated malicious script files that attempts to exploit unpatched vulnerabilities in the system.
12/4: Cheuko-F Trojan Contacts Remote Server
Troj/Cheuko-F is a Trojan for the Windows platform.
12/4: Tometa-L Trojan Creates Registry Entry
Troj/Tometa-L is a Trojan for the Windows platform.
12/4: Ezio-H Trojan Runs Continuously in Background
Troj/Ezio-H is a Trojan for the Windows platform.
12/4: Magania.AKRQ Trojan Drops Files in System Folder
W32/Magania.AKRQ is a Trojan that upon execution drops kamsoft.exe and gasretyw0.dll in the Windows System folder.
12/4: Sdbot-DNO Worm Drops, Installs, Runs New Software
W32/Sdbot-DNO is a worm with IRC backdoor functionality for the Windows platform.
12/4: Infostealer.Vipect Detects Encrypted, Malicious DLL Files
Infostealer.Vipect is a generic detection for encrypted DLL files that are injected into processes to steal information from the compromised computer.
12/4: Rootkit-EI a Rootkit Trojan
Troj/Rootkit-EI is a rootkit for the Windows platform.
12/4: VBS/AutoRun-RO Worm Creates Files, Registry Entries
VBS/AutoRun-RO is a worm for the Windows platform.
12/4: Dwnldr-HLN Trojan Tries to Download Files
Troj/Dwnldr-HLN is a Trojan for the Windows platform.
12/4: Dloadr-CCB Trojan Creates Files Upon Installation
Troj/Dloadr-CCB is a Trojan for the Windows platform.
12/4: Deca-C Trojan Access Internet
Troj/Deca-C is a Trojan for the Windows platform.
12/3: Bacalid-A Virus Infects Local Executable Files
W32/Bacalid-A is a virus for the Windows platform.
12/3: Rbot-GXI Worm Creates Registry Entries
W32/Rbot-GXI is a worm for the Windows platform with IRC backdoor functionality.
12/3: Ackantta@mm Worm Gathers Email Addresses
W32.Ackantta@mm is a mass-mailing worm that gathers email addresses from the compromised computer and spreads by copying itself to removable media.
12/3: Mydoom.CG Worm Arrives as Email Attachment
Worm_Mydoom.CG arrives as attachment to email messages spammed by another malware or a malicious user.
12/3: Xirtem@MM a Mass Mailing Worm
W32/Xirtem@MM is a mass mailing worm that also spreads through removable media using autorun.inf.
12/3: DwnLdr-HLK Trojan Creates Multiple Registry Entries
Troj/DwnLdr-HLK is a Trojan for the Windows platform.
12/3: Autorun.JJ Worm Modifies System Registry
Worm_Autorun.JJ may be dropped by other malware.
12/3: Mal/EncPk-GL Program Uses Unique Encryption Mechanism
Mal/EncPk-GL is a program that uses an encryption mechanism that is unique to malware, which is typically mass-mailed out.
12/3: Spy-Agent.de Malware Disables File Protection
Spy-Agent.de is malware that once executed, will disable Windows File Protection.
12/3: Rbot-GXH Worm Copies Itself, Sets Registry Entries
W32/Rbot-GXH is a worm for the Windows platform with IRC backdoor functionality.
12/3: AutoIt-AJ Worm Copies Itself, Creates Files
W32/AutoIt-AJ is a worm for the Windows platform.
12/3: Trojan.Flush.M Impacts Network Traffic, Security
Trojan.Flush.M is a Trojan horse that impacts network traffic with Address Resolution Protocol (ARP) requests and lowers security settings.
12/3: AutoRun.DJV Worm Drops Files in System Folder
W32/AutoRun.DJV is a worm that will infect Windows systems.
Apple Recommends Antivirus for Mac Users
The Mac maker quietly suggests customers use antivirus software, though threats are still few in number.
12/3: Zlob-ARL Trojan Creates Files Upon Installation
Troj/Zlob-ARL is a Trojan for the Windows Platform.
12/3: Crack-P a Cracking Tool Used to Bypass Authentication
Troj/Crack-P is a cracking tool used to bypass the authentication process of certain applications.
12/3: Koobface.worm Spreads Via Social Networking Sites
W32/Koobface.worm spreads via Facebook and MySpace.
12/2: Autorun-RI Worm Copies Itself, Creates Registry Values
W32/Autorun-RI worm copies itself to (System)\vxworks.exe.
12/2: DwnLdr-HLF a Downloader Trojan
Troj/DwnLdr-HLF is a downloader Trojan for the Windows platform.
12/2: Mal/EncPk-GJ Program Uses Unique Encryption Mechanism
Mal/EncPk-GJ is a program that uses an encryption mechanism unique to malware.
12/2: BitTera.C a Virus Constructor Type Malware
BitTera.C is a virus constructor type malware.
12/2: Dadobra.ALA Trojan Drops .Exe File in Windows Folder
W32/Dadobra.ALA is a Trojan that will infect Windows systems.
12/2: Mal/Sality-B File Infected by Sality Virus Family
Mal/Sality-B is a file infected by the Sality family of viruses.
12/2: Gampass-V a Password-Stealing Trojan
Troj/Gampass-V is a password-stealing Trojan for the Windows platform.
Botnets Bouncing Back
Despite McColo's takedown, observers say that major senders of spam and malware are returning -- and may be stronger than ever.
40 Open Source Tools for Protecting Your Privacy
Open source offers email encryption, anonymous file sharing, anonymous surfing, and many other apps for those with pressing privacy needs.
12/1: Spy-BL Backdoor Trojan Gives Intruder Remote Access
Troj/Spy-BL is a backdoor Trojan that allows a remote intruder to gain access and control over the computer.
12/1: Keylog-KY a Keylogging Trojan
Troj/Keylog-KY is a keylogging Trojan for the Windows platform.
12/1: TDSS-F Trojan Copies Itself, Creates Files
Troj/TDSS-F is a Trojan for the Windows platform.
12/1: Autorun.BUO Worm Arrives as .DLL File
Worm_Autorun.BUO may be dropped by other malware.
Walsh to Tout CA's 'Most Wanted' Malware
TV personality is the public face of CA's updated online security software suite.
12/1: Randsom.A Trojan May be Downloaded or Dropped
Troj_Randsom.A Trojan may be downloaded from remote sites by other malware.
12/1: Zbot-BC Trojan Creates File Upon Installation
Troj/Zbot-BC is a Trojan for the Windows platform.
- What are the top Android security apps?
- What are the top Android security risks?
- What are today's top cyber threats?
- What's the most secure way to delete data?
- How does hard drive encryption work?
- Is old software inherently insecure?
- Are Macs immune to malware?
- How can BYOD risk be managed?
- Which web browser is the most secure?
- How do I protect my iOS device?
- What are the top iPhone security apps?
- How do I secure my wireless network?
- Are public Wi-Fi hotspots safe?
