W32.Pilleuz is a worm that may open a backdoor on compromised computer allowing a remote author to gain unauthorized access. The worm may access local files, download files, execute commands, modify Hosts file and steal web browser’s information. W32.Pilleuz can flood Internet traffic to various web sites that causes distributed denial of service (DDoS) attack. More
Email-Worm.Win32.Merond.a is a worm that will spread by attaching self to spam email messages. It gathers email addresses from infected system and mass-mail a copy utilizing the computer as Simple Mail Transfer Protocol (SMTP) server. This worm also propagates locally by dropping a copy to removable storage devices like USB flash drives, memory sticks, and external hard drives. More
W32.Palevo is a worm that may infect computer by exploiting known software vulnerabilities. System will experience a reduced in system performance due to the infection. This worm can also end security-related process on infected computer that lowers overall security settings. It may also allow a remote attacker to manipulate the compromised PC by sending a number of commands. This backdoor access may also expose victim’s sensitive data that may result to stolen user name and password. More
W32.Fujacks.CB is a USB removable drive-spreading worm that also drops autorun.inf file on infected drives to run the worm when the drive is accessed. W32.Fujacks.CB may also propagate on unsecured network drives by creating a copy of itself on target drives. More
W32/Autorun.worm.es is a generic detection for worm that will create a copy of the malicious file on the root of any accessible drives on the computer incorporating with an autorun.inf file. If the drive is accessed, W32/Autorun.worm.es will look for and infect other drives it found mounted on the compromised computer. More
W32.Fujacks.CA is a computer worm that may spread through at risk network shared resources. It targets executable files on the compromised computer to spread locally. The worm may also drop executable file and modify registry information to serve malicious purposes. Presence of this worm can root to a more endangered PC. More
Win32/Nuqel.E is a worm that may disable certain Windows utility programs such as Folder Options, Task Manager, Registry Editor and Control Panel to prevent users from manually removing the threat. Win32/Nuqel.E propagates on unsecured network shares and send spam messages on contacts via the chat program Yahoo! Messenger. More
W32.Downadup.E is a worm that propagates on Internet by exploiting the Microsoft Windows Server Service RPC Handling Remote Code Execution Vulnerability. W32.Downadup.E will also attempt to download a copy of its variant W32.Downadup.C on to the compromised computer and spread it on the attached network if any was found. More
W32.Downadup.B is a worm that propagates and infects computers by exploiting the Microsoft Windows Server Service RPC Handling Remote Code Execution Vulnerability. W32.Downadup.B will reduce security settings of compromised computer by ending security-related process and blocks them from accessing security websites. This worm will spread on unsecured network shares and removable USB drives. More
W32.Imaut.E is a member of the family known as Imaut, Sohanad, AutoIt and Autorun worms. This infection spreads via removable media drives and unsecured network shares. It also uses several instant messenger programs as another venue of propagation. While inside the infected computer, W32.Imaut.E alters a number of system settings to perform its malicious actions and download additional threats from a remote server. More