Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

General discussion

VIRUS ALERTS - December 28, 2005

by roddy32 Dec 27, 2005 10:33PM PST

Discussion is locked

1 - 30 of 64 Posts
- Collapse + Expand Details
- Collapse -
Troj/Bifrose-CH
by roddy32 Dec 27, 2005 10:35PM PST
- Collapse -
Troj/Dropper-CG
by roddy32 Dec 27, 2005 10:37PM PST
- Collapse -
W32/Sdbot-AJV
by roddy32 Dec 27, 2005 10:39PM PST

Type
Worm

Aliases
WORM_SDBOT.CVL
Backdoor.Win32.SdBot.ajn

W32/Sdbot-AJV is a worm and IRC backdoor Trojan for the Windows platform.

W32/Sdbot-AJV runs continuously in the background, providing a backdoor server which allows a remote intruder to gain access and control over the computer via IRC channels.

http://www.sophos.com/virusinfo/analyses/w32sdbotajv.html

- Collapse -
Troj/DownLdr-JG
by roddy32 Dec 27, 2005 11:25PM PST

Type
Trojan

Aliases
Trojan-Downloader.Win32.Small.amb
StartPage-DU

Troj/DownLdr-JG is a downloader Trojan for the Windows platform.

Troj/DownLdr-JG includes functionality to access the internet and communicate with a remote server via HTTP.

http://www.sophos.com/virusinfo/analyses/trojdownldrjg.html

- Collapse -
Troj/Bancban-MY
by roddy32 Dec 27, 2005 11:34PM PST
- Collapse -
W32/Sdbot-AJU
by roddy32 Dec 27, 2005 11:35PM PST

Type
Worm

Aliases
Backdoor.Win32.SdBot.xd

W32/Sdbot-AJU is a worm and IRC backdoor Trojan for the Windows platform.

W32/Sdbot-AJU spreads to other network computers by exploiting common buffer overflow vulnerabilities, including: WKS (MS03-049) (CAN-2003-0812), PNP (MS05-039) and ASN.1 (MS04-007).

W32/Sdbot-AJU runs continuously in the background, providing a backdoor server which allows a remote intruder to gain access and control over the computer via IRC channels.

http://www.sophos.com/virusinfo/analyses/w32sdbotaju.html

- Collapse -
Troj/Spyaks-B
by roddy32 Dec 27, 2005 11:38PM PST

Type
Trojan

Troj/Spyaks-B is a Trojan for the Windows platform.

The Trojan downloads and installs additional files from a remote site.

Troj/Spyaks-B may create popup alerts with the title "Your computer is infected!" and the message text:

"Dangerous malware infection was detected on your PC
The system will now download and install most efficient anti malware program to prevent data loss and your private information theft.
Click here to protect your computer from the biggest malware threats."

http://www.sophos.com/virusinfo/analyses/trojspyaksb.html

- Collapse -
troj axs
by JESSEJEAN Dec 29, 2005 2:35AM PST

How do I get it off my computer?

- Collapse -
Troj/Zlob-DA
by roddy32 Dec 27, 2005 11:40PM PST
- Collapse -
Troj/Yaemb-A
by roddy32 Dec 27, 2005 11:41PM PST
- Collapse -
Troj/VBClick-B
by roddy32 Dec 27, 2005 11:42PM PST
- Collapse -
Troj/StartP-B
by roddy32 Dec 27, 2005 11:44PM PST
- Collapse -
Troj/Small-FO
by roddy32 Dec 27, 2005 11:45PM PST
- Collapse -
Troj/Small-FN
by roddy32 Dec 27, 2005 11:47PM PST
- Collapse -
Troj/DownLdr-LA
by roddy32 Dec 28, 2005 2:49AM PST
- Collapse -
Troj/Hackarmy-C
by roddy32 Dec 28, 2005 2:50AM PST

Type
Trojan

Aliases
W32/Backdoor.HPJ

Troj/Hackarmy-C is a backdoor Trojan which allows a remote intruder to gain access and control over the computer trough the randomly chosen TCP port or an IRC channel.

Troj/Hackarmy-C includes functionality to access the internet and communicate with a remote server via HTTP.

http://www.sophos.com/virusinfo/analyses/trojhackarmyc.html

- Collapse -
Troj/Delta-F
by roddy32 Dec 28, 2005 2:52AM PST
- Collapse -
Troj/Mircgirl-A
by roddy32 Dec 28, 2005 2:54AM PST

Type
Trojan

Troj/Mircgirl-A is a backdoor Trojan for the Windows platform.

Troj/Mircgirl-A searches for files with a MRC extension (mIRC scripts) and appends them with code that causes another mirc script to load. This script may attempt to drop a thrid party DLL that extends the scripting capability of mIRC.

http://www.sophos.com/virusinfo/analyses/trojmircgirla.html

- Collapse -
Troj/DownLdr-LW
by roddy32 Dec 28, 2005 2:55AM PST

Type
Trojan

Aliases
Exploit.Win32.Agent.t
Exploit-WMF trojan

Troj/DownLdr-LW is a Windows Metafile (WMF) file which exploits a vulnerability allowing the download and execution of an EXE file from a remote URL.

At the time of writing, the downloaded file was Troj/DownLdr-LA.

http://www.sophos.com/virusinfo/analyses/trojdownldrlw.html

- Collapse -
Troj/Cinject-A
by roddy32 Dec 28, 2005 2:57AM PST
- Collapse -
Troj/Torpig-Y
by roddy32 Dec 28, 2005 2:59AM PST

Type
Spyware Trojan

Aliases
Trojan-PSW.Win32.Agent.bu
PWS-JA trojan

Troj/Torpig-Y is a password stealing Trojan for the Windows platform.

Troj/Torpig-Y attempts to steal passwords, as well as logging keypresses and open window titles to text files and periodically sends the collected information to a remote user via HTTP.

http://www.sophos.com/virusinfo/analyses/trojtorpigy.html

- Collapse -
W32/Rbot-BGH
by roddy32 Dec 28, 2005 5:31AM PST

Type
Worm

Aliases
Backdoor.Win32.Rbot.gen
WORM_RBOT.GEN

W32/Rbot-BGH is a worm with backdoor functionality for the Windows platform.

W32/Rbot-BGH spreads to other network computers by exploiting common buffer overflow vulnerabilities, including: LSASS (MS04-011), RPC-DCOM (MS04-012), WKS (MS03-049) (CAN-2003-0812), PNP (MS05-039) and ASN.1 (MS04-007) and by copying itself to network shares protected by weak passwords.

W32/Rbot-BGH runs continuously in the background, providing a backdoor server which allows a remote intruder to gain access and control over the computer via IRC channels.

http://www.sophos.com/virusinfo/analyses/w32rbotbgh.html

- Collapse -
Troj/Mipbot-C
by roddy32 Dec 28, 2005 5:33AM PST
- Collapse -
Troj/DownLdr-NO
by roddy32 Dec 28, 2005 5:35AM PST
- Collapse -
Troj/DownLdr-NN
by roddy32 Dec 28, 2005 5:36AM PST
- Collapse -
Troj/DownLdr-NM
by roddy32 Dec 28, 2005 5:38AM PST
- Collapse -
Troj/MisDOM-B
by roddy32 Dec 28, 2005 5:39AM PST
- Collapse -
Troj/DownLdr-NL
by roddy32 Dec 28, 2005 5:41AM PST

Type
Trojan

Aliases
Trojan-Downloader.Win32.Agent.acd

Troj/DownLdr-NL is a Windows Metafile (WMF) file which exploits a vulnerability allowing the download and execution of an EXE file from a remote URL.

At the time of writing, the downloaded file was detected as Troj/Bizves-Gen.

http://www.sophos.com/virusinfo/analyses/trojdownldrnl.html

- Collapse -
Troj/DownLdr-NK
by roddy32 Dec 28, 2005 5:43AM PST

Type
Trojan

Aliases
Trojan-Downloader.Win32.Agent.acd

Troj/DownLdr-NK is a Windows Metafile (WMF) file which exploits a vulnerability allowing the download and execution of an EXE file from a remote URL.

At the time of writing, the downloaded file was detected as Troj/DownLdr-NN.

http://www.sophos.com/virusinfo/analyses/trojdownldrnk.html

- Collapse -
Troj/DownLdr-NJ
by roddy32 Dec 28, 2005 5:45AM PST

Type
Trojan

Aliases
Trojan-Downloader.Win32.Agent.acd

Troj/DownLdr-NJ is a Windows Metafile (WMF) file which exploits a vulnerability allowing the download and execution of an EXE file from a remote URL.

At the time of writing, the downloaded file was detected as Troj/Dloadr-ACT.

http://www.sophos.com/virusinfo/analyses/trojdownldrnj.html

Back to Spyware, Viruses, & Security forum

CNET Forums

Operating Systems
Software
Electronics & Gadgets
Hardware
Tablets & Mobile Devices
General Help
Brand Forums
Roadshow Autos
Off Topic

Other Forums

Forum Info