W32.Qakbot!job
W32.Qakbot!job is a detection for malicious job file created by W32.Qakbot family of computer worms through Windows Task Scheduler. W32.Qakbot!job was made in order to run a randomly named JavaScript file. More
Worm
W32.IRCBot.NG
W32.IRCBot.NG is a harmful computer worm that usually spreads through removable USB drives. Instant messaging applications like MSN Messenger can also distribute W32.IRCBot.NG to contact addresses found on victim’s computer. It will send malicious link to gathered addresses and when executed will open a backdoor on infected computer. Antivirus programs may not detect the intrusion process because of a rootkit technique commonly found on highly developed worm such as W32.IRCBot.NG. More
W32.Minudazash
W32.Minudazash is a computer worm that propagates by duplicating itself to a mapped network drives and USB removable drives. The worm utilizes autorun functions to run itself whenever the drive is accessed. W32.Minudazash can steal sensitive information and allow a remote attacker to gain control of the computer using a backdoor port. It can also hide its presence on the affected system through registry modifications. More
W32.Kradellsh
W32.Kradellsh is a computer worm that will propagate by creating a copy of itself on removable drives. This worm is able to hide itself from anti-virus software through rootkit technique. Once on the system, this worm will make certain adjustment to the Windows registry and create its own entries. More
W32.Ckbface
W32.Ckbface is a computer worm that spread via instant messaging programs. This worm may allow a remote attacker to gain unauthorized access on the infected computer via the backdoor port. The worm may also try to connect to a predefined server to download more threats that it will run onto infected system. Typically, this worm will utilize Facebook chat and MSN messenger program to spread a copy of itself.
W32.Ganipin
W32.Ganipin is a worm specifically infecting removable drives it may found on the target computer. This worm will create a copy of itself on removable drives and drop autorun.inf file so that it will run whenever user access the media. The worm may also open a backdoor on the compromised computer that will allow a remote attacker to gain control of it. It will also add certain registry entries and run as a service under Windows NT system. More
W32.Waledac.B
W32.Waledac.B is a dangerous computer worm that will propagate by using the infected computer as mass-sender of emails containing malicious links. This worm also gathers contact information from the compromised system and sends spam messages or holiday greeting cards that are part of a botnet operation. This threat may open a backdoor that allows a remote attacker to control the infected PC and download additional threats from a remote server.
W32.Pykspa!gen1
W32.Pykspa!gen1 is a generic detection created to identify threats that are related to W32.Pykspa family of worms. W32.Pykspa!gen1 detected files are considered malicious and possess security risks on the compromised system. This worm will collect email address and contact details from the infected computer where it will mass-mail a copy of the harmful code.
W32.Seswol
W32.Seswol is a harmful worm that will attempt to spread by infecting removable USB Drives that are connected to the infected computer. It will also take advantage of Windows Autorun function to run the worm when the infected drive is attached to another computer. Once inside the system, W32.Seswol will create registry entry to run itself each time Windows starts. More
W32.Yimfoca.B
W32.Yimfoca.B is a computer worm that will spread by means of instant messaging programs. It sends spam messages to contacts found on the infected system that contains links pointing to a location of the worm. Once executed, W32.Yimfoca.B will connect to a remote site and download additional threats on the compromised computer.