W32.Sober@mm is a mass-mailing worm that utilizes victim’s computer as SMTP engine to email a copy of itself. This infection is a memory-resident worm that specifically targets Windows platform. W32.Sober@mm is written in Microsoft Visual Basic programming language and is UPX compacted. More
W32.Harakit is a worm designed to propagate globally and reach as many computer users as possible to serve as an avenue for malware distribution. The worm may lower security configurations on the affected computer in order to conceal its operation once inside the system. More
W32.Koobface.A is a computer worm that propagates via social networking web sites. It utilizes an infected computer to create a botnet that spreads on peer-to-peer connection. An infected computer will communicate to other compromised machine and receive malicious commands. The main objective of W32.Koobface.A is to drop rogue software on victim’s computer and manipulate search queries to exhibit unexpected advertisements. More
W32.Tufik.E propagates via removable media drives and infects .exe files on the compromised computer. It copies itself as mscrss.exe. More
W32.Mariofev.A is a computer worm that propagates by creating a copy of its codes on unsecured network shared drives and removable media drives of target computer. This worm has backdoor functionalities that allow a remote attacker to perform malicious tasks on infected computer. W32.Mariofev.A also deletes registry keys and entries that are associated to anti-virus and other security software. More
JS.Faizal is a worm that duplicate itself on all attached and removable drives of the infected computer. This JavaScript-based worm will utilize the autorun function of Windows for automatic execution once user gain an access on infected drive. JS.Faizal infects the computer on a network also with the same method. It is usually USB, memory stick and flash disk that transmit JS.Faizal to individual computers if not network-connected. More
VBS.Solow.F is a malicious visual basic script that can spread itself by creating a copy on local and removable media drives. It also displays pop-up messages on the infected computer. More
W32.Mandaph is a computer worm that can propagate on mapped network drives and local hard drive. It can also download and execute additional threat from a distant server. More
W32.Launcer.A is a computer worm that propagates by creating a copy of its files on every removable drives located on the target system. Next, after dropping files on specific places, this worm will display a warning message stating about the illegitimate version of Windows discovered on victim’s computer. More
W32.Imaut.CN is a worm that will propagate on unsecured network-shared folders and drives. It also spreads by means of malicious links sent out from an infected computer. W32.Imaut.CN will connect to a remote computer and download malware files and codes. More