Archive for the 'TrendMicro' Category
tr.exe; temp7789.exe; sshnas21.dll; puker.exe; bind1.exe; amcfjskmp.exe; alh.exe; alf.exe; advhelp.dll; tgt.exe; herss.exe; cvasds0.dll; am.exe; x.exe; x.exe; mspdb12.dll; pwtdqpob.sys; kfaoqfoc.sys; rzm.exe; pxryiaob.sys; pdfupd.exe; kxliiuob.sys; jinyehh.exe; winktkmg.exe; tlr.exe; winvrlgal.exe; winumbshr.exe; winafkui.exe; winacnew.exe; w9616d.exe; w19a29e4.exe; winpefwj.exe; winoqdppw.exe; rrehc.exe; im1.exe; wineqsq.exe; winqvgu.exe; winyimmje.exe; winctyoh.exe; w9b1cf.exe; rfwl.exe; beubfu.exe; winqxlut.exe; ycl.exe; winyrvk.exe; winlqjl.exe; iuucgk.exe; kzd.exe; akqp.exe;
March 2nd, 2010 | Posted in McAfee, TrendMicro | No Comments
Trojan-GameThief.Win32.Magania.cjqd
Threat Name: Trojan-GameThief.Win32.Magania.cjqd
Different descriptin:Net-Worm.SillyFDC [PCTools]
W32.SillyFDC [Symantec]
Trojan-GameThief.Win32.Magania.cjqd [Kaspersky Lab]
PWS-Mmorpg!ha [McAfee]
Mal/Taterf-B, Mal/Taterf-A [Sophos]
Worm:Win32/Taterf.B [Microsoft]
Dropper/OnlineGameHack.116183 [AhnLab]
Spread Method:
Windows Vulnerability
E-Mail
detect files name: C:\nds0q.exe
%Temp%\cvasds0.dll
%Temp%\cvasds1.dll
%Temp%\cvasds2.dll
%Temp%\herss.exe
c:\nds0q.exe
c:\autorun.inf
The newly created Registry Value is:
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
cdoosoft = “%Temp%\herss.exe”
Threat type:Trojan-GameThief.Win32
Trojan-GameThief.Win32.Magania.cjqd first detected:2010-02-28
Virus file known is Unkown type
File Size:587K Bytes.
Behavior:Attempted Connection to External Sites
Level of Spread:2
Level of Threat:6
Reported Path:Unkonow path
MD5:i2ttoV6YuKowIsevPh0BV7r0D45X30M1
SHA1..:5Oc08wYh1lp2kb4eq5JjxE0HlTWgRInL8q3311hi
February 28th, 2010 | Posted in NOD32, TrendMicro | No Comments
Threat Name: Backdoor.Tidserv!inf
Spread Method:
File Creation
External Storage Device (USB Device etc.)
External Storage Device (USB Device etc.)
Threat type:Backdoor
Backdoor.Tidserv!inf first detected:2010-02-26
Virus file known is PE EXE file written in Basic
File Size:417K Bytes.
Behavior:places the file shown below in the root of the disk::\autorun.inf
Level of Spread:6
Level of Threat:4
Reported Path:D:\Winnt\
MD5:BaNMI5k6OEHqCLxP3Bu75pLs71iR16Fw
SHA1..:j3VupQ6AwfJ8dt2WKj1DQ8t0EM5aL0h16JedxyBc
February 26th, 2010 | Posted in DrWeb, TrendMicro | No Comments
Threat Name: trojan-downloader.JS.Kazmet
Spread Method:
Windows Vulnerability
Windows Vulnerability
Threat type:trojan-downloader.JS
trojan-downloader.JS.Kazmet first detected:2010-02-17
Virus file known is dll file written in Basic
File Size:475K Bytes.
Behavior:Creates service in system
Level of Spread:4
Level of Threat:5
Reported Path:Unkonow path
MD5:f41cdSlQbxYGyEg1wD567jcir5JXpOxN
SHA1..:4UF34aty32BO2F5E1LVBDr350Xrg8w2VOdNLM302
February 17th, 2010 | Posted in Kaspersky, TrendMicro | No Comments
Threat Name: Win32.FraudPack.azjh
Spread Method:
Instant Message(MSN,Gtalk,QQ etc.)
Threat type:Win32.FraudPack
Win32.FraudPack.azjh first detected:2010-02-17
Virus file known is driver file *.sys written in C
File Size:579K Bytes.
Behavior:Unknow behavior
Level of Spread:6
Level of Threat:2
Reported Path:D:\Program Files\
MD5:A4L8y6B7Eapt1n830u4HGb0w1IQ7dOFr
SHA1..:IUt22CcEm36uK52R37Uoo1J1MqyC4wn6qD7PPK3m
February 17th, 2010 | Posted in Kaspersky, Pctools, TrendMicro | No Comments
Threat Name: Trojan.Win32.Pincav.plf
Spread Method:
Network Spread
Threat type:Trojan.Win32
Trojan.Win32.Pincav.plf first detected:2010-01-30
Virus file known is PE EXE file written in Dephi
File Size:20K Bytes.
Behavior:Copies files to the Windows system directory
Level of Spread:6
Level of Threat:1
Reported Path:Unkonow path
MD5:De4diLhB28WYNGMwT7Cu0CyRY3opfxEn
SHA1..:k1Tl3s3jPBfhvou1c7K10k0aHR78ngm76Nb6R0Q3
January 30th, 2010 | Posted in TrendMicro, VBA32 | No Comments
zd55e2.exe sample first submit on 2009-07-11 and considered unsafe.
Description:
Threat File:zd55e2.exe
Sample Submission:2009-07-11
Processing time:3 min 10 sec
Threat type:Win32.SillyFDC
Filesize:3K Bytes
Path:
D:System Volume Information _restore…zd55e2.exe
July 9th, 2009 | Posted in TrendMicro | No Comments
winsvc32.exe sample first submit on 2009-07-11 and considered unsafe.
Description:
Threat File:winsvc32.exe
Sample Submission:2009-07-11
Processing time:6 min 31 sec
Threat type:TR/Dropper
Filesize:4K Bytes
Path:
C:Documents and SettingsAll UsersApplication Datawinsvc32.exe
E:System Volume Information _restore…winsvc32.exe
July 9th, 2009 | Posted in TrendMicro | No Comments
tayr4x.exe sample first submit on 2009-07-11 and considered unsafe.
Description:
Threat File:tayr4x.exe
Sample Submission:2009-07-11
Processing time:1 min 58 sec
Threat type:Win32:Bifrose
Filesize:39K Bytes
Path:
E:System Volume Information tayr4x.exe
July 9th, 2009 | Posted in TrendMicro | No Comments
st_1243892684.exe sample first submit on 2009-07-11 and considered unsafe.
Description:
Threat File:st_1243892684.exe
Sample Submission:2009-07-11
Processing time:1 min 43 sec
Threat type:BDS/Hupigon
Filesize:12K Bytes
Path:
D:Windowsst_1243892684.exe
July 9th, 2009 | Posted in TrendMicro | No Comments
