W32.Qakbot is a virus that usually propagates through unsecured network shares. W32/Pinkslipbot downloads additional files, steals confidential information, and opens a back door on the affected system. The virus contains rootkit functionality to allow it to hide its presence. Read more…
W32/Spybot.worm!dw is a virus that will inject itself into Winlogon.exe to make itself run each time Windows is started. W32/Spybot.worm!dw also gathers confidential information from an infected computer including user name, passwords and web site visited. Read more…
W32/Expiro.e is a file-infector virus that will look for executable files on victims computer. W32/Expiro.e will append all .exe files by attaching its code to the end of the file. Read more…
W32/Sality.gen.e is a generic detection for a parasitic virus that belongs to a W32/Sality family. W32/Sality.gen.e will search local drives, network-shared drives and removable drives for PE executable files for it to infect. It will append the infected file with viral code on the last section of the PE image. Read more…
W32/Palevo.gen.a is a worm that will propagate from infected computer to another drive when connected. W32/Palevo.gen.a also steals information such as user name and passwords related to file-sharing networks or P2P programs. A backdoor activity can also performed by W32/Palevo.gen.a that will download and execute more malware on the compromised computer. Read more…
W32/Rimecud is the worm that can propagate via removal USB drives, Yahoo and MSN Messenger, file-sharing network and network shared resources. W32/Rimecud will inject a malicious code on explorer.exe to run itself on the infected computer. Read more…
W32.Xpiro.B is a virus that infects all .exe files on the affected computer. W32.Xpiro.B can monitor Internet connections and gathers sensitive information. It also scans the registry, gathering user names and passwords stored within it.
W32.Gammima.AG!gen1 is a heuristic detection used to identify computer security threats that were related to the W32.Gammima.AG family. Read more…
W32/Sdbot.worm!fn is a virus that can provide a remote attacker full access on the victims computer via an IRC (Internet Relay Chat) protocol. W32/Sdbot.worm!fn can spread via spam email messages, network shared drives or downloaded by another threat. Read more…
Win32/Cryptor is a detection for a malicious file that was encrypted in to be able to conceal itself from target computer and antivirus programs. Win32/Cryptor will attempt to communicate to a remote server to download additional malware. Blocking Internet access, disabling security programs and modifying registry entries are just some of Win32/Cryptor payload to harm the affected computer. Read more…
العربية