daili.exe sample submitted on 2012-01-28 and identified as a threat.
Alias:
Threat File:daili.exe
Submit time:2012-01-28
Excute time:3 min 27 sec
Level of Spread:5
Level of Threat:1
type:TR/Dldr.Swizzor
Filesize:22K Bytes
Files type
daili.exe is Windows exe file.
MD5:3aMlY8S0v1024c2WJA7L2f0BWEhptCn1
gdfyghret.exe
gdfyghret.exe sample submitted on 2012-01-28 and identified as a threat.
Alias:
Threat File:gdfyghret.exe
Submit time:2012-01-28
Excute time:5 min 59 sec
Level of Spread:2
Level of Threat:1
type:BackDoor.Generic
Filesize:44K Bytes
0K Bytes
1K Bytes
Files type
gdfyghret.exe is Windows exe file.
MD5:5rI41Pgs6MlaH1KnvA3tk5NBs4422k35
0.40896154119849515fdrgs.exe; 0.9280284723755723.exe; svohcst.exe; taskmgrwxp.exe; taskmgrw7.exe; svohcst.exe; qing.exe; svohcst.exe; svohcst.exe; svohcst.exe; svohcst.exe; odeyxeo9h5.exe; msc.exe; winloggon.exe; uninst.exe; ibup.exe; w32krn.exe; vxzqzl.exe; ydut.exe; xfgnp.exe; wnddsl.exe; winat.exe; systemz.exe; siaport.exe; svhost.exe; sothinkswx.exe; securitycenter.exe; qing.exe; qgcl.exe; mltox.exe; lolsbmxx2.exe; herss.exe; gqln.exe; flashxp.exe; flashanim.exe; error.exe; enrollopen.exe; cvasds9.dll; cvasds8.dll; cvasds7.dll; cvasds6.dll; cvasds5.dll; cvasds4.dll; cvasds3.dll; cvasds2.dll; cvasds1.dll; cvasds0.dll; axupdatems.exe; ad.exe;
fastscan.exe; express.exe; explorer.exe; unins000.exe; dana.exe; connect.exe; server.exe; applications.exe; adobe.exe; admmgr.exe; uninstall.exe; iesm_nm.dll; iesb_nm.dll; admrup.exe; xgvghhk.exe; win_sp.exe; utillauncher.exe; temp4100.dll; srvloget.dll; vwht.exe; udoh.exe; twft.exe; jivh.exe; videom.exe; rtsp40.dll; rgblc.exe; vbvopenj.src; mstsr.exe; playback.dll; password.dll; netsdk.dll; hikplaympeg4.dll; hi_h264dec_w.dll; h264play.dll; dlldeinterlace.dll; configmodule.dll; msaspy.dll; kbdngeml.dll; javahost.exe; quickdownloader.exe; moveex.exe; md5file.exe; svcsrvms.dll; dmstas40.dll; df9u.bmp; cleancontrol.exe; cedrox.exe; bluebirds.exe; audioinstall.exe;
sponsorkeyword.exe sample submitted on 2011-09-20 and identified as a threat.
Alias:
Threat File:sponsorkeyword.exe
Submit time:2011-09-20
Excute time:4 min 51 sec
Level of Spread:2
Level of Threat:2
type:Win32/Parite
Filesize:80K Bytes
Files type
sponsorkeyword.exe is Windows exe file.
MD5:cu032CQ3H5F2mWCEs46CYsh8xHWQeoMN
Constructor.Win32.Agent.ux
Threat Name: Constructor.Win32.Agent.ux
Spread Method:
Connection to Specific Sites
Windows Vulnerability
Threat type:Constructor.Win32
Constructor.Win32.Agent.ux first detected:2011-08-26
Virus file known is PE EXE file written in Dephi
File Size:527K Bytes.
Behavior:Creat files in Documents and Settings\[Users]\Local Settings\Temp\
C:\Documents and Settings\Administrator\Local Settings\Temp\E_4\krnln.fnr
Level of Spread:6
Level of Threat:1
Reported Path:Unkonow path
MD5:5UM34b6a32hp2M5L1lWBD6350Xrg8w2v
SHA1..:VdnST302ROjxPoWmNtejl0S8Jg05G1Oex4vtvRKP
is2010.exe; intrwt.dll; iexp1ore.exe; iekey.dll; iedate.dll; iiexp10re.exe; rund1132.exe; iexplorer.exe; iexpl0re.exe; 1explore.exe; uninstall.exe; securitycenter.exe; pthreadvc2.dll; hjengine.dll; desktop security.exe; uninstall.exe; securitycenter.exe; pthreadvc2.dll; hjengine.dll; desktop security 2010.exe; rreg.exe; rising.exe; mscs.exe; msinfo32system.exe; iexp10re.exe; install_fbgt.exe; exfine.exe; iwhdeej.exe; rpcapd.exe; winggou.exe; winggosetup.exe; windecrypt.exe; updatefile.exe; sxplayer.exe; svchost.exe; soxunexserver.exe; uninst.exe; sxplayer.exe; soxunexserver.exe; eplayer.ocx; autoupdate.exe; uninstall.exe; slhelper.dll; searchlite.dll; sachost.exe; pro.exe; unins000.exe; doc2pdf.dll; ssubtmr.dll;
Trojan-Downloader.Win32.NSIS.ns is a trojan and you should remove it asap.
Threat Name: Trojan-Downloader.Win32.NSIS.ns
Spread Method:
File Creation
Threat type:Trojan-Downloader.Win32
Trojan-Downloader.Win32.NSIS.ns first detected:2011-08-19
Virus file known is driver file *.sys written in C++
File Size:376K Bytes.
Behavior:Unknow behavior
Level of Spread:2
Level of Threat:3
Reported Path:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\NSLBFCC.TMP\configuration.ini
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\NSLBFCC.TMP\inetc.dll
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\NSLBFCC.TMP\system.dll
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\FTP-SERVER-U.exe_
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\START.htm_
MD5:iVtH2CjFm380K7GRJ1Upo3J2NqyC4wn0
SHA1..:qe1PPk3m7QY1sXOaREd883rNu82kT17B8lExXsS7
bclm.exe has been detected as a threat. the malware initiates itself, replicating & it makes like 4000 to 6000 processes within the task manager which is freaking ridiculous.
bclm.exe sample submitted on 2011-08-15 and identified as a threat.
Alias:
Threat File: bclm.exe
Submit time:2011-08-15
Excute time:6 min 41 sec
Level of Spread:5
Level of Threat:6
type:Win32:Virtob
Filesize:35K Bytes
0K Bytes
1K Bytes
Files type
bclm.exe is [...]
7017AC7FC4D.exe; inid.exe; googleire.exe; mamita.exe; hsbc.exe; hahahahaha.exe; inid.exe; mamatije2.exe; hsbca.exe; 3kal.cmd; Lcxaxl.exe; mamatije2.exe; Svchost.exe.exe; net.vbs; iexp10re.vbs; googleire.exe; svchoshthht.exe; NLWYET.EXE; mamatije2.exe; hsbca.exe; 3kal.cmd; Lcxaxl.exe; 9.exe; mamatije2.exe; WinIo64.sys; WinIo64.dll; WinIo32.sys; WinIo32.dll; Unlock_16d4s.exe; my.sys; teogoo.exe; gxuqjuy.exe; original.exe; svchost.exe; efqrvlqfyuoiepnw.exe; 81.exe; viaho.exe; bico.exe; oqsn4e9.exe; csrcs.exe; ldxaxl.exe; msnmsg32.exe; uninstall.exe; hantiat6.exe; update.exe; uninstall.exe; filehunter.exe; filehunter.exe; maswtjoy.exe;