Archive for the 'NOD32' Category
icn_19f4ad9090a22324bac8b67c0490d63e.dll; icn_191c6d002a05c9d4295881718d24f06b.dll; icn_156add4851af2fd4a88e9ef83a921bdc.dll; icn_0a6524732aaeb210da06000000000000.dll; 15815828.exe; libexpatw.dll; bgh.exe; 15815828.exe; oog.exe; r9rqzxqr.exe; kern.dll; fjyyz6iy.exe; takk.exe; msw.exe; 15815828.exe; kwlyifod.sys; fwldipoc.sys; ypartmgr.sys; fftdapod.sys; uxldqpob.sys; pxlyypob.sys; 9715sys.dll; pxldypob.sys; 19731254.exe; cuakep.exe; cuakep.exe; cuakep.exe; searchsettings.exe; svchosf.exe; netmeet.exe; juschedit.exe; dchcp.exe; antispyware.exe; vistadrive.exe; ckp32.log; cuakep.exe; bliss.exe; greendot.exe; cuakep.exe; stripe.exe; cuakep.exe; cuakep.exe; ckpexp.exe; greendot.jpg.exe; ipysvr.exe; ipysvc.exe; mszyplcq.dll; revent.dll; qhkparux.dll;
March 10th, 2010 | Posted in DrWeb, NOD32 | No Comments
59427.exe; uyupesiq.dll; jiffmt.dll; mediaacck.exe; netsi.exe; uyupesiq.dll; jiffmt.dll; izekegasudevibeb.dll; eputahefozujecaz.dll; is-nor64.exe; bill102.exe Win32.Trojan.VB.ENI 4.3.2010.; odbns.exe Win32.Trojan.Agent.MPM 4.3.2010.; wmisftl.exe; smvm232.exe; sikvnxhn.dll; 59.doc.exe; j-di_vr.exe; fd33.exe; cbd3c7.exe; vnkgsmjexjdnrofkuia.exe .; ujdwfwqiyhyfgaoq.exe; runver2.exe; regdllhelper.exe; oner2010.dll; nt32inf10.exe; nhdldrht.exe; iawmaqua.exe; hujeneje.dll; e569e6.exe; dirstems.exe; atnadm.exe; a6087d.exe; a14c40.exe; 5d7d74.exe; 31f52b.exe; 7dea53.exe; e840ee.exe; f385b0.exe; 6adaa8.exe; dc50cc.exe; dc50cc.exe; wx4d15e4.exe; wx48a701.exe; wx43410f.exe; nt32inf10.exe; e569e6.exe; xv447c65.exe; wx63af95.exe; tx8d2fec.exe;
March 5th, 2010 | Posted in Clam, Kaspersky, NOD32 | No Comments
Trojan-GameThief.Win32.Magania.cjqd
Threat Name: Trojan-GameThief.Win32.Magania.cjqd
Different descriptin:Net-Worm.SillyFDC [PCTools]
W32.SillyFDC [Symantec]
Trojan-GameThief.Win32.Magania.cjqd [Kaspersky Lab]
PWS-Mmorpg!ha [McAfee]
Mal/Taterf-B, Mal/Taterf-A [Sophos]
Worm:Win32/Taterf.B [Microsoft]
Dropper/OnlineGameHack.116183 [AhnLab]
Spread Method:
Windows Vulnerability
E-Mail
detect files name: C:\nds0q.exe
%Temp%\cvasds0.dll
%Temp%\cvasds1.dll
%Temp%\cvasds2.dll
%Temp%\herss.exe
c:\nds0q.exe
c:\autorun.inf
The newly created Registry Value is:
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
cdoosoft = “%Temp%\herss.exe”
Threat type:Trojan-GameThief.Win32
Trojan-GameThief.Win32.Magania.cjqd first detected:2010-02-28
Virus file known is Unkown type
File Size:587K Bytes.
Behavior:Attempted Connection to External Sites
Level of Spread:2
Level of Threat:6
Reported Path:Unkonow path
MD5:i2ttoV6YuKowIsevPh0BV7r0D45X30M1
SHA1..:5Oc08wYh1lp2kb4eq5JjxE0HlTWgRInL8q3311hi
February 28th, 2010 | Posted in NOD32, TrendMicro | No Comments
hazikubu.dll sample submitted on 2010-02-26 and identified as a threat.
Alias:
Threat File:hazikubu.dll
Submit time:2010-02-26
Excute time:8 min 42 sec
Level of Spread:3
Level of Threat:6
type:Rootkit.Win32.Agent
Filesize:68K Bytes
Files type
hazikubu.dll is a A dynamic-link library,which acts as a shared library of functions.
MD5:pdcOOJ5m7QFJsEnaQKC876rMu82kS17H
February 26th, 2010 | Posted in NOD32 | No Comments
ddaqaez4.exe sample submitted on 2010-02-23 and identified as a threat.
Alias:
Threat File:ddaqaez4.exe
Submit time:2010-02-23
Excute time:7 min 43 sec
Level of Spread:3
Level of Threat:6
type:AntivirusXPPro
Filesize:71K Bytes
Files type
ddaqaez4.exe is Windows exe file.
MD5:ocbNNI5l6OEIrDMxPJB775pLt81jR17G
February 23rd, 2010 | Posted in NOD32, Panda | No Comments
wwwpos32.exe sample submitted on 2010-02-15 and identified as a threat.
Alias:
Threat File:wwwpos32.exe
Submit time:2010-02-15
Excute time:8 min 52 sec
Level of Spread:6
Level of Threat:1
type:Trojan.Win32.Possador
Filesize:54K Bytes
4297K Bytes
28357K Bytes
Files type
wwwpos32.exe is Windows exe file.
MD5:7HSqrn0m544C46uR4yJ2385w21Ft1K4I
February 15th, 2010 | Posted in McAfee, NOD32 | No Comments
incognito.exe sample submitted on 2010-02-15 and identified as a threat.
Alias:
Threat File:incognito.exe
Submit time:2010-02-15
Excute time:6 min 57 sec
Level of Spread:3
Level of Threat:2
type:W32/Aliser
Filesize:21K Bytes
28685K Bytes
Files type
incognito.exe is Windows exe file.
MD5:fv2ylkFES0u1GO6bMDiG6L2f0aDdgosI
February 15th, 2010 | Posted in AntiVir, NOD32 | 1 Comment
Threat Name: Trojan-DDoS.Win32.Agent.iz
Spread Method:
E-Mail
Threat type:Trojan-DDoS.Win32
Trojan-DDoS.Win32.Agent.iz first detected:2010-02-08
Virus file known is dll file written in C language
File Size:79K Bytes.
Behavior:Downloads files from URLs
Level of Spread:6
Level of Threat:1
Reported Path:Unkonow path
MD5:y2D4PfKBME8p331eAh3t8G6344xWkkfF
SHA1..:2IlTxnSiumYxLKF4i5M0FO0JVM2Xs64nJq7cg5aq
February 8th, 2010 | Posted in Kaspersky, NOD32 | No Comments
Threat Name: Trojan-Dropper.Win32.StartPage.cr
Spread Method:
E-Mail
Instant Message(MSN,Gtalk,QQ etc.)
Threat type:Trojan-Dropper.Win32
Trojan-Dropper.Win32.StartPage.cr first detected:2010-01-30
Virus file known is driver file *.sys written in C
File Size:638K Bytes.
Behavior:Save files to the Windows temporary directory %Temp%
Level of Spread:3
Level of Threat:4
Reported Path:C:\Program Files\
MD5:4eQ5DDXEaIEMQgLBnF8q331fBi478H63
SHA1..:O4yXlkgG3JmuyosjvnAyMLG4j6N1GPBKWN2Yt65o
January 30th, 2010 | Posted in McAfee, NOD32 | No Comments
stu.exe; oldy.exe; 007ssinstall.exe; wscsvc32.exe; twunk_32x.exe; fgldapod.sys; cdrmkaun.sys; pqr.exe; fmxgrid.exe; herss.exe; ffpage.exe; nsz.exe; xhl.exe; vkl.exe; cpy.exe; herss.exe; azl.exe; herss.exe; ogh.exe; ilx.exe; herss.exe; ffo.exe; iexplorer.exe; latinleapwill.exe; winpommt.exe; nsz.exe; setuper.exe; xhl.exe; vtdnm.exe; bigc.exe; vkl.exe; yeot.exe; w2dcb93.exe; cpy.exe; rtkbtmnt.exe; clclean.0001; azl.exe; tbeacmewuxd.exe; wrpn.exe; wkvmiq.exe; winjkjquk.exe; winutctxv.exe; winkkoj.exe; winfhgh.exe; winecrjld.exe; winbjqd.exe; w91ee6.exe; w40531a.exe; w319ec2.exe;
January 30th, 2010 | Posted in Kaspersky, NOD32 | No Comments
