Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

General discussion

VIRUS ALERTS - December 6, 2005

by roddy32 Dec 5, 2005 8:29PM PST

W32/Rbot-BAM

Type
Worm

W32/Rbot-BAM is a worm and IRC backdoor Trojan for the Windows platform.

W32/Rbot-BAM spreads:

- to other network computers infected with W32/Sasser
- to other network computers by exploiting common buffer overflow vulnerabilities, including: LSASS (MS04-011) and RPC-DCOM (MS04-012)
- by copying itself to network shares protected by weak passwords

http://www.sophos.com/virusinfo/analyses/w32rbotbam.html

Discussion is locked

31 - 60 of 63 Posts
- Collapse + Expand Details
- Collapse -
Troj/Lineage-BT
by roddy32 Dec 6, 2005 1:05AM PST

Type
Spyware Trojan

Aliases
Trojan-PSW.Win32.Hangame.s
PWS-Lineage
PWSteal.Trojan

Troj/Lineage-BT is an information stealing Trojan for the Windows platform.

Troj/Lineage-BT has the functionality to communicate with a remote server via HTTP.

http://www.sophos.com/virusinfo/analyses/trojlineagebt.html

- Collapse -
Troj/Graybrd-AU
by roddy32 Dec 6, 2005 2:56AM PST
- Collapse -
W32/Vulgar-A
by roddy32 Dec 6, 2005 2:58AM PST
- Collapse -
Troj/Badmaca-C
by roddy32 Dec 6, 2005 3:03AM PST

Type
Trojan

Aliases
Trojan-Downloader.Win32.Small.bwg
Generic Downloader.k

Troj/Badmaca-C is a downloader Trojan for the Windows platform.

Troj/Badmaca-C attempts to download a file via FTP and execute it.

Troj/Badmaca-C also attempts to open a specific website.

http://www.sophos.com/virusinfo/analyses/trojbadmacac.html

- Collapse -
Troj/PWSDelf-P
by roddy32 Dec 6, 2005 3:05AM PST

Type
Spyware Trojan

Aliases
Backdoor.Win32.Beastdoor.207
BackDoor-AMQ

Troj/PWSDelf-P is a password stealing Trojan for the Windows platform.

Troj/PWSDelf-P can be used by other malware (in particualr by some Troj/BeastDo Trojans) to scan a system for passwords.

http://www.sophos.com/virusinfo/analyses/trojpwsdelfp.html

- Collapse -
Troj/Bancban-KI
by roddy32 Dec 6, 2005 3:08AM PST

Type
Spyware Trojan

Aliases
Trojan-Spy.Win32.Banker.ahy

Troj/Bancban-KI is a banking Trojan for the Windows platform.

Troj/Bancban-KI attempts to log information sent to certain websites and online banking applications. The Trojan may display fake user interfaces in order to persuade the user to enter confidential details. Stolen information is sent by email to a remote user.

http://www.sophos.com/virusinfo/analyses/trojbancbanki.html

- Collapse -
Troj/Prosti-P
by roddy32 Dec 6, 2005 3:09AM PST
- Collapse -
W32/Hilin-B
by roddy32 Dec 6, 2005 3:12AM PST
- Collapse -
Troj/Agent-TH
by roddy32 Dec 6, 2005 3:15AM PST
- Collapse -
Troj/Favadd-AN
by roddy32 Dec 6, 2005 3:17AM PST
- Collapse -
Troj/VBDown-JI
by roddy32 Dec 6, 2005 3:19AM PST
- Collapse -
Troj/Danmec-G
by roddy32 Dec 6, 2005 3:52AM PST

Type
Spyware Trojan

Aliases
MultiDropper-PH

Troj/Danmec-G is a Trojan for the Windows platform.

The Trojan opens a port and offers remote attackers the ability to route HTTP traffic through the infected computer. The Trojan may also download and install additional files and retrieve information about an infected system, including network details, and send these to a remote intruder.

Troj/Danmec-G displays a fake error message with the title "Component not found" and the message text "Application can not run because vbrun64.dll not found".

http://www.sophos.com/virusinfo/analyses/trojdanmecg.html

- Collapse -
Troj/Mutbot-D
by roddy32 Dec 6, 2005 3:54AM PST
- Collapse -
Troj/Doorila-B
by roddy32 Dec 6, 2005 3:55AM PST
- Collapse -
W32/Bobax-Z
by roddy32 Dec 6, 2005 4:00AM PST

Type
Worm

Aliases
Net-Worm.Win32.Bobic.z

W32/Bobax-Z is a virus for the Windows platform.

W32/Bobax-Z infects executable files. Infected files are detected as W32/Bobax-S.

W32/Bobax-Z spreads to other network computers by exploiting common buffer overflow vulnerabilities, including PNP (MS05-039) and by copying itself to network shares protected by weak passwords.

W32/Bobax-Z includes functionality to access the internet and communicate with a remote server via HTTP.

http://www.sophos.com/virusinfo/analyses/w32bobaxz.html

- Collapse -
Troj/RuinDl-F
by roddy32 Dec 6, 2005 4:03AM PST
- Collapse -
Troj/ConHook-M
by roddy32 Dec 6, 2005 4:04AM PST

Type
Trojan

Aliases
Trojan-Downloader.Win32.ConHook.m
TROJ_DLOADER.AIK

Troj/ConHook-M is a Trojan for the Windows platform.

Troj/ConHook-M attempts to download and install further software and disable Microsoft Anti-Spyware. Troj/ConHook-M may also monitor user activity.

http://www.sophos.com/virusinfo/analyses/trojconhookm.html

- Collapse -
Troj/Zapchas-AC
by roddy32 Dec 6, 2005 4:07AM PST

Type
Trojan

Troj/Zapchas-AC is a Trojan for the Windows platform.

Troj/Zapchas-AC runs continuously in the background, providing a backdoor server
which allows a remote intruder to gain access and control over the computer via
IRC channels.

http://www.sophos.com/virusinfo/analyses/trojzapchasac.html

- Collapse -
Troj/Spabot-E
by roddy32 Dec 6, 2005 4:09AM PST

Type
Trojan

Aliases
Trojan.Win32.Spabot.t
TROJ_SPABOT.K
Trojan-Dropper.Win32.Small.aih

Troj/Spabot-E is a Trojan for the Windows platform.

Troj/Spabot-E contacts a remote URL to download configuration data and to report that the computer is infected.

Troj/Spabot-E may be configured to download a file from a remote website to <Temp> \file.exe and execute it.

Troj/Spabot-E may be used to send configurable spam emails.

http://www.sophos.com/virusinfo/analyses/trojspabote.html

- Collapse -
W32/Falus-B
by roddy32 Dec 6, 2005 4:11AM PST
- Collapse -
Troj/Krepper-V
by roddy32 Dec 6, 2005 4:13AM PST

Type
Trojan

Aliases
Trojan-Downloader.Win32.CWS.k
Downloader-AQV

Troj/Krepper-V is a downloader Trojan for the Windows platform.

Troj/Krepper-V includes functionality to access the internet and communicate
with a remote server via HTTP.

http://www.sophos.com/virusinfo/analyses/trojkrepperv.html

- Collapse -
W32/Rbot-BAL
by roddy32 Dec 6, 2005 5:01AM PST

Type
Worm

W32/Rbot-BAL is a worm and IRC backdoor Trojan for the Windows platform.

W32/Rbot-BAL spreads to other network computers by exploiting common buffer overflow vulnerabilites, including: WKS (MS03-049) (CAN-2003-0812) and ASN.1
(MS04-007) and by copying itself to network shares protected by weak passwords.

W32/Rbot-BAL runs continuously in the background, providing a backdoor server
which allows a remote intruder to gain access and control over the computer via
IRC channels.

http://www.sophos.com/virusinfo/analyses/w32rbotbal.html

- Collapse -
Troj/Dloadr-ABG
by roddy32 Dec 6, 2005 5:03AM PST
- Collapse -
Troj/Dloadr-ABF
by roddy32 Dec 6, 2005 5:06AM PST
- Collapse -
Troj/Dloadr-ABE
by roddy32 Dec 6, 2005 5:19AM PST
- Collapse -
Troj/Dloadr-ABD
by roddy32 Dec 6, 2005 5:21AM PST
- Collapse -
Troj/Stinx-G
by roddy32 Dec 6, 2005 5:23AM PST

Type
Trojan

Aliases
Backdoor.Win32.Breplibot.l

Troj/Stinx-G is a backdoor Trojan for the Windows platform.

Troj/Stinx-G runs continuously in the background, providing a backdoor server
which allows a remote intruder to gain access and control over the computer via
IRC channels.

http://www.sophos.com/virusinfo/analyses/trojstinxg.html

- Collapse -
Troj/Feutel-AV
by roddy32 Dec 6, 2005 5:25AM PST

Type
Trojan

Aliases
Backdoor.Win32.Hupigon.so
BackDoor-ARR

Troj/Feutel-AV is a Trojan for the Windows platform.

When Troj/Feutel-AV is installed the following files are created without the user's knowledge:

<System> \temp1.exe
<System> \temp2.exe

The file temp1.exe is also detected as Troj/Feutel-AV. The file temp2.exe is a file used to distract the user.

http://www.sophos.com/virusinfo/analyses/trojfeutelav.html

- Collapse -
Troj/VBbot-H
by roddy32 Dec 6, 2005 5:29AM PST
- Collapse -
Troj/Lineage-BR
by roddy32 Dec 6, 2005 5:30AM PST
Back to Spyware, Viruses, & Security forum

CNET Forums

Operating Systems
Software
Electronics & Gadgets
Hardware
Tablets & Mobile Devices
General Help
Brand Forums
Roadshow Autos
Off Topic

Other Forums

Forum Info