The
following list is the most up
to date report on recent viruses
If you suspect unusual activity
on your system you may be able
to match the symptoms to this
list and obtain the removal
tool for any of the large anti-virus
distributors.
Virus warning Fri, 16 May 2008 19:32:00 GMT Experts warn about three types of virus. A worm virus called 'Win32.Troj.Agent.208896' appeared as a folder icon. After it is clicked, it sends emails with the virus to all contacts. Another virus 'Win32.Troj.Delf.tm.315392' rewrites Internet Explorer
TROJ_AGENT.AORZ Fri, 16 May 2008 14:16:00 GMT Description: This Trojan may be installed manually by a user. It may be downloaded unknowingly by a user when visiting malicious Web sites. It creates registry entries to enable its automatic execution at every system startup. It also creates registry
TROJ_ALUREON.AI Fri, 16 May 2008 14:16:00 GMT Description: To get a one-glance comprehensive view of the behavior of this malware, refer to the Behavior Diagram shown below. This Trojan is dropped by TROJ_ZLOB.CCW. It drops copies of itself. It stays resident in the affected system's memory. It
Trojan.Cymdos Fri, 16 May 2008 09:36:00 GMT is a Trojan horse that performs denial of service attacks.Symantec is currently investigating this threat and will post more information as it becomes available. Protection Initial Rapid Release version May 16, 2008 revision 003 Latest Rapid Release
Virus warning Fri, 16 May 2008 03:31:00 GMT Liang Yiwen/Shanghai Daily news Experts warn about three types of virus. A worm virus called 'Win32.Troj.Agent.208896' appeared as a folder icon. After it is clicked, it sends emails with the virus to all contacts. Another virus
Virus warning Thu, 15 May 2008 17:52:00 GMT EXPERTS warn about three types of virus. A worm virus called 'Win32.Troj.Agent.208896' appeared as a folder icon. After it is clicked, it sends emails with the virus to all contacts. Another virus 'Win32.Troj.Delf.tm.315392' rewrites Internet Explorer
Spyware.SpyMan Wed, 14 May 2008 17:26:00 GMT is a spyware program that may steal information from the computer. Protection Initial Rapid Release version pending Latest Rapid Release version pending Initial Daily Certified version pending Latest Daily Certified version pending Initial Weekly
Trojan.Installscash Wed, 14 May 2008 15:17:00 GMT is a Trojan horse that exploits the Microsoft Windows Media Player Plugin Buffer Overflow Vulnerability in order to download files on to the compromised computer. Protection Initial Rapid Release version May 7, 2008 revision 016 Latest Rapid Release
Legal victory against spammers as MySpace wins record payout of $234 million Wed, 14 May 2008 12:52:00 GMT Experts at SophosLabs, Sophos's global network of virus, spyware and spam analysis centers, have applauded a legal judgment that has awarded MySpace a record payment of $234 million from spammers who bombarded its users with junk emails. The payout, the
XP-Shield Wed, 14 May 2008 09:29:00 GMT is a misleading application that may give exaggerated reports of threats on the computer. Protection Initial Rapid Release version May 14, 2008 revision 001 Latest Rapid Release version May 14, 2008 revision 001 Initial Daily Certified version pending
Paul Saucier Acquires Sensible Security Solutions (formerly DynTek Canada) [ Wed, 14 May 2008 04:26:00 GMT May 13th, 2008 - Paul Saucier announced today that he has purchased Sensible Security Solutions Inc. back from DynTek Inc, in Irvine, CA. SSS was founded in 1995 in Arnprior, ON, Canada and in October, 2006, was purchased by DynTek Canada, a division of
(MS08-027) Microsoft Publisher Object Handler Validation Vulnerability (951208) Tue, 13 May 2008 21:57:00 GMT Remote Code Execution user interaction is needed Maliciously Crafted File CVE-2008-0119, Responded and patched Office 2000 SP3, Office XP SP3, Office 2003 SP2, Office 2003 SP3, Office System 2007, Office System 2007 SP1, A vulnerability in
(MS08-026) Microsoft Object Parsing Vulnerability (951207) Tue, 13 May 2008 21:57:00 GMT A vulnerability is present in Microsoft Office that may allow for code execution attacks. Exploitation could occur when processing a specially crafted file. Type of threat, e.g buffer overflow vulnerability. Impact of exploitation, e.g remote code
(MS08-026) Microsoft Word Cascading Style Sheet (CSS) Vulnerability (951207) Tue, 13 May 2008 21:57:00 GMT Word 2000 SP3, Word 2002 SP3, Word 2003 SP3, Word Viewer 2003 SP3, Word 2007 SP1, Office Compatibility Pack Word,Excel,Powerpoint 2007, A vulnerability is present in Microsoft Word that may allow for code execution attacks. Exploitation could
(MS08-029) Microsoft Malware Protection Engine Vulnerability I (952044) Tue, 13 May 2008 21:57:00 GMT Denial of Service no user interaction is needed Maliciously Crafted File CVE-2008-1437, Responded and patched Windows Live Onecare , Antigen for Exchange 9.x, Antigen for SMTP Gateway 9.x, Windows Defender for Windows XP , Windows Defender in
(MS08-029) Microsoft Malware Protection Engine Vulnerability II (952044) Tue, 13 May 2008 21:56:00 GMT Denial of Service no user interaction is needed Maliciously Crafted File CVE-2008-1438, Responded and patched Windows Live Onecare , Antigen for Exchange 9.x, Antigen for SMTP Gateway 9.x, Windows Defender for Windows XP , Windows Defender in
MalwareScanner Tue, 13 May 2008 18:01:00 GMT MalwareScanner is a misleading application that may give exaggerated reports of threats on the computer. Protection Initial Rapid Release version May 13, 2008 revision 019 Latest Rapid Release version May 13, 2008 revision 019 Initial Daily Certified
Stolen hard drive data put Formula One drivers at risk of blackmail, reports claim Tue, 13 May 2008 17:47:00 GMT IT security and control firm Sophos has reminded organizations and home users of the importance of securely disposing of computer equipment, in light of the arrest of a man accused of attempting to blackmail Formula One racing drivers Adrian Sutil and
Trojan-Spy:HTML/Fraud Tue, 13 May 2008 17:04:00 GMT Trojan-Spy.HTML.Fraud detects fraudulent e-mail messages and website HTML. Detailed Description E-mail messages and websites can be detected as Trojan-Spy.HTML.Fraud. Detections are typically the result of a mismatch in HREF tags used by hyperlinks. For
Podcast: How to surf safely amid rising web threats Tue, 13 May 2008 10:39:00 GMT Sophos, a world leader in IT security and control, today announced that it has published a new podcast discussing the growth in web-based threats. In the podcast, web security expert Richard Baldry is interviewed by Carole Theriault about why criminals
Virus:W32/Small.AJ Mon, 12 May 2008 21:16:00 GMT is a simple partially encrypted appending parasitic file infector. The virus does not have any other payload in addition to spreading itself. Detailed Description Infection Virus:W32/Small.AJ infects Windows PE-files (Portable Executable) with .EXE
Infostealer.Fertippy Mon, 12 May 2008 16:41:00 GMT is a Trojan horse that steals FTP account details and may infect files on FTP servers.Symantec Security Response is currently investigating this threat and will post more information as it becomes available. Protection Initial Rapid Release version May
CpuSpike Mon, 12 May 2008 14:19:00 GMT is a security assessment tool that increases CPU usage. Protection Initial Rapid Release version May 12, 2008 revision 008 Latest Rapid Release version May 12, 2008 revision 009 Initial Daily Certified version pending Latest Daily Certified version
Bloodhound.Exploit.189 Mon, 12 May 2008 12:19:00 GMT is a heuristic detection for files that attempt to exploit the Microsoft Works 7 'WkImgSrv.dll' ActiveX Control Remote Code Execution Vulnerability Protection Initial Rapid Release version pending Latest Rapid Release version pending Initial Daily
Bloodhound.Exploit.190 Mon, 12 May 2008 12:19:00 GMT is a heuristic detection for .bmp files that attempt to exploit the Multiple Adobe Products BMP Image Header Buffer Overflow Vulnerability Protection Initial Rapid Release version May 1, 2008 revision 020 Latest Rapid Release version May 1, 2008
Trojan-Dropper:W32/Agent.REK Mon, 12 May 2008 09:22:00 GMT drops and executes other malware applications on the infected system, thus compromising system security. Detailed Description Upon execution, Trojan-Dropper:W32/Agent.REK drops and executes the following files: %System%\WinNt32.dll
TROJ_DNSCHANG.CS Mon, 12 May 2008 05:19:00 GMT Description: To get a one-glance comprehensive view of the behavior of this malware, refer to the Behavior Diagram shown below. Malware Overview This Trojan may be dropped by other malware. It may be installed manually by a user. It may be downloaded
Teenage hacking gang busted in Bavaria Sun, 11 May 2008 10:38:00 GMT Experts at SophosLabs, Sophos's global network of virus, spyware and spam analysis centers, have welcomed the news that German authorities have apprehended 11 people suspected of running a hacking ring. According to media reports, police arrested
TROJ_ALUREON.AH Sat, 10 May 2008 13:34:00 GMT Description: This Trojan is dropped by TROJ_ZLOB.CCW. It seaches for certain strings in the URL cache. If these strings are not found, this Trojan modifies a registry entry. It searches the Windows folder for an executable file, which it executes and
