Latest Virus

Trojan horse Patched_c.CZA.dropper file ACTIVA~1.EXE
Threat Name: Trojan horse Patched_c.CZA.dropper
Spread Method:
E-Mail
Threat type:Trojan horse Patched_c.CZA
Trojan horse Patched_c.CZA.dropper first detected:2010-03-09
Virus file known is PE exe file written in C language
File Size:14K Bytes.
Behavior:Unknow behavior
Level of Spread:1
Level of Threat:2
Reported Path:D:\Winnt\System32\ACTIVA~1.EXE
MD5:E6P118eAi1t826041y5KkfF0IlTXhsJu
SHA1..:MYx4KG2i5M78O63V40Ys62nJq7cg5br7uH8TSOO5

Threat Name: Trojan.JS.PrygSkok.a
Spread Method:
USB Disk
Internet or website browser
Threat type:Trojan.JS
Trojan.JS.PrygSkok.a first detected:2010-02-25
Virus file known is dll file written in Basic script
Commonly reported viruse files as the type of *.jpg, *.gif or *.ico,it’s a javascript trojan,
actully it is not the true *.jpg file,it’s the java script.
File Size:479K Bytes and more.
Behavior:Unknow behavior
Level of Spread:3
Level of Threat:4
Reported Path:Unkonow [...]

Threat Name: Rootkit.Win32.Pakes.zo
Spread Method:
Malware Installation
External Storage Device (USB Device etc.)
Hacked Website
Threat type:Rootkit.Win32
Rootkit.Win32.Pakes.zo first detected:2010-02-17
Virus file known is Unkown type
File Size:549K Bytes.
Behavior:Registry Modification
Level of Spread:1
Level of Threat:5
Reported Path:E:\Windows\
MD5:g1srnT58tJMvHqdtNg0AU7qxB34W28K0
SHA1..:5Nb07vXF0ko1iy4QDC773qMt82jS17A8k1wVrR7U

Rootkit.win32.agent.aioy as uyofn.sys
It is affecting internet browsing , and wouldn’t let user post using my ‘old’ username
Threat Name: Rootkit.win32.agent.aioy
Spread Method:
Malware Installation
Threat type:Rootkit.win32
Rootkit.win32.agent.aioy first detected:2010-02-09
Virus file known is dll file written in C++
File Size:529K Bytes.
Behavior:Add program s process
Level of Spread:5
Level of Threat:1
Reported Path:windows\system32\drivers\uyofn.sys
MD5:833wwrY7Cxnr0lv2yskFEY8u1GO6bMDp
SHA1..:GTR210aCk25sI41P276nmbH1LowA3ul5OBtN433k

paupjwlv.dll sample first submit on 2009-06-28 and considered unsafe.
Description:
Threat File:paupjwlv.dll
Sample Submission:2009-06-28
Processing time:2 min 29 sec
Threat type:Trojan.Crypt
Filesize:63K Bytes
Path:
D:\System Volume Information\ _restore…\paupjwlv.dll

bndmss.exe known as W32/Autorun.worm.fn,the file path is c:\windows\system32,after the bndmss.exe run ,it Lookup67.159.44.253 bnew.hmarhelo.com .
bndmss.exe was detected as threat by different antivirus program as the following:Generic BackDoor by McAfee,Backdoor.Trojan by Symantec,Mal/Generic-A by Sophos,Virus.Win32.Delf.IFY by Ikarus,Backdoor.Win32.Agent.sdf by Kaspersky Lab,
Mal/Heuri-D by Sophos.
To remove bndmss.exe should kill the bndmss.exe process and use kill box to destroy the file.

msxml71.dll file path known as C:\Windows\System32 \msxml71.dll
C:\Documents and Settings\[UserName]\Local Settings\Temp\msxml71.dll
msxml71.dll was mostly identified as a threat by different antiviurs program.
msxml71.dll was detected by the following names :AdWare.BHO by Ikarus,Trojan.Fakeavalert.B Trojan.Skintrim and Trojan Horseby Symantec,AdWare.BHO.aes by Ikarus, Generic Downloader.x by McAfee,Mal/Renos-B by Sophos

twext.exe file path as C:\WINDOWS\system32\twext.exe,total number of reports analysed as threat 492,381 times.twext.exe was detected as virus by different antivirus program as following:TrojanSpy:Win32/Zbot.gen!C by Microsoft,PWS-Zbot.gen.c by McAfee,Infostealer.Banker.C and Packed.Generic.196by Symantec ,Virus.Win32.VB.FEW by Ikarus,Mal/VB-Z, Mal/Behav-211 by Sophos
For remove twext.exe need kill the file process and use tools as killbox to kill the file.

Name: Troj/Agent-HGT
Category: Viruses and Spyware

Viruse name: Troj/Agent-HGT
Category: Viruses and Spyware
Type: Trojan