Keyword: MAL_VUNDO-4
68453 Total Search   |   Showing Results : 261 - 280
  Previous   Next  
TROJ_VUNDO.SMN
Other Details This Trojan adds the following lines or registry entries as part of its routine:
TROJ_VUNDO.SMQ
Other System Modifications This Trojan adds the following registry keys: Other Details This Trojan adds the following lines or registry entries as part of its routine:
TROJ_VUNDO.SMR
WORM_VUNDO.LHL
TROJ_VUNDO.SMAE
Other Details This Trojan adds the following lines or registry entries as part of its routine:
TROJ_VUNDO.BPX
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This Trojan arrives on a system as a
TROJ_VUNDO.XPBR
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It deletes itself after execution. Arrival Details This
TROJ_VUNDO.XPBO
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It deletes itself after execution. Arrival Details This
DDI-RULE-2190
Description Name: VUNDO - HTTP (Request) . This is Trend Micro detection for packets passing through HTTP network protocols that can be used as N/A. This also indicates a malware infection. Below are some indicators of an infected host:Excessive spam...
{blocked}.10dig.net
TROJ_VUNDO.SMCP connects to this URL to download its component file(s).
{blocked}lmall.8866.org
TROJ_VUNDO.SMCP connects to this URL to download its component file(s).
{blocked}r.iphosts.org
TROJ_VUNDO.SMCP connects to this URL to download its component file(s).
{blocked}.008.net
TROJ_VUNDO.SMCP connects to this URL to download its component file(s).
{blocked}ercenter.vicp.cc
TROJ_VUNDO.SMCP connects to this URL to download its component file(s).
TROJ_DROPPER.OIF
Installation This Trojan drops and executes the following files: %System%\kbupdate.dll - detected as TROJ_VUNDO.MBA (Note: %System% is the Windows system folder, which is usually C:\Windows\System on
TROJ_CIAVAX.A
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It deletes itself after execution. Arrival Details This
TROJ_FAM177.TOMA
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It requires its main component to successfully perform
TROJ_PONMOCUP.XXQV
This Trojan may arrive bundled with malware packages as a malware component. It arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting
TSPY_DROPPR.XTRM
"4" HKEY_CURRENT_USER\Software\Microsoft\ Internet Account Manager\Accounts PreConfigVer = "4" HKEY_CURRENT_USER\Software\Microsoft\ Internet Account Manager\Accounts PreConfigVerNTDS = "1
MAL_PCLNT-4
NOTES: This is the Trend Micro heuristic detection for suspicious files that manifest similar behavior and characteristics as the following malware: BKDR_PCCLIENT If your Trend Micro product detects