Trojan

HTML:IFrame-HM [Trj]

HTML:IFrame-HM [Trj] is a detection for an infected web pages that can harm visiting computers by executing commands unknown to users. This Trojan is injected as a malicious and invisible Iframe into clean web pages. Typically, it starts the attack by searching the infected computer for File Transfer Protocol (FTP) user name and passwords. It then uses the gathered credential to login to web servers and infect a web file. A code will be inserted to the header part of the web page that runs a script in order to infect visitor’s computer. More

Trojan horse Generic 14.DYJ

Trojan horse Generic 14.DYJ is detection for a Trojan that applies a Rootkit technology to remain itself hidden from system so as to avoid being detected by antivirus application. Trojan horse Generic 14.DYJ can hook itself into Windows registry and create a backdoor to allow a remote attacker gain full access on victim’s computer. More

Trojan Packed.Monder

Trojan Packed.Monder is a malicious program with hidden intention. The Trojan will spread in various formats, spam email, infected websites and embedding itself on downloadable programs readily available on unsecured file-sharing networks. Once infected, Trojan Packed.Monder attempts to connect to a remote website and download more malware to be executed on computer without user’s knowledge. More

Trojan Downloader.Win32.Devsog!k

Trojan Downloader.Win32.Devsog!k is a Trojan downloader that connects to a remote computer to pull another malicious file. To initiate an attack, cyber criminals first invade a computer with malware such as Trojan Downloader.Win32.Devsog!k, then a more prevalent and dangerous threat will follow. This threat aims to download and execute more threats from a remote server. It may establish a communication to a remote server in order to perform this action. Added threat may carry out other payload that may cause system instability. Other may mean to steal sensitive information from user including user name and passwords and online banking account. More

Win32/Kryptik.VO

Win32/Kryptik.VO is detection for a Trojan that will self-replicate and spreads over a computer network. It targets Windows platform. Win32/Kryptik.VO is able to hide its presence on the infected PC by embedding its own code on legitimate system files. Additional malicious files will be downloaded from a remote computer. The Trojan will not allow any legitimate antivirus programs to interfere with its harmful activities so their process is disabled. Win32/Kryptik.VO has this re-spawning mechanism that able to bring back its own deleted files. More

Win32/FlyStudio.NCG

Win32/FlyStudio.NCG is a Trojan that may install an adware on the infected computer without user’s consent. This Trojan also targets image files on the compromised system. It will inject malicious code to image file so that an instance of the Trojan will run when the file is viewed. The threat may also make the infected file irrecoverable by altering the header and replacing it with the Trojan code. More

Win32/Spy.Ursnif.A

Win32/Spy.Ursnif.A Virus is a Trojan that monitors computer Internet activities particularly web site-browsing habit of the victim. The data will be sent to a remote server and will be used for another attack conceive by Win32/Spy.Ursnif.A. This Trojan is known to sneak into computers via security exploits and infect a Windows legitimate file winlogon.exe. More

Generic Dropper.fh

Generic Dropper.fh is a name or method to identify malicious files, which contain other binaries on itself. This Trojan was created and spread to further infect a computer. It retrieves more malware files located on a remote server. Added threats may trigger other actions that can cause damage to system files. It can also degrade the system performance of the affected computer. More

Podmena

Podmena is a Trojan that spreads manually on computer through unsafe network drives and removable drives. Once executed, Podmena will drop multiple malicious files like podmena.exe, podmena.dll, podmena.bat and podmena.sys. It will also modify Windows registry to add an entry for itself that will load the malware when Windows starts. This threat also causes system malfunction due to corrupted files on the computer. More

Trojan Horse Injector

Trojan Horse Injector is a generic detection for variants of Trojan that injects a malicious code on web files. This threat may possess payload to alter web site’s layout and to infect visitor’s computer with the injected codes. Since this is a typical detection process for different types, symptoms and effects may vary from one infection to another. Although, one common indication for an infected computer is alert messages originating from installed antivirus program stating compromised .php, .htm, and .html files. More