This worm may arrive via drive-by downloads. When executed, it takes advantage of the following vulnerability as a zero-day exploit: (MS10-092) Vulnerability in Task Scheduler Could Allow Elevation of Privilege (2305420) It also lowers In... [More]

Clippo.A puts a password to all the Office documents it finds in the computer and even in the removable drives, so that users cannot open them. This way users will have to enter a password when they want to open Word or Excel docum... [More]

Visal.A carries out the following actions: It reduces the protection level of the affected computer, as it prevents many programs related to computer security from being run, like antivirus solutions and firewalls. It disables the foll... [More]

MoonLight.V is a worm whose main objective is to spread and affect as many computers as possible. The means it uses to spread are the peer-to-peer (P2P) file sharing programs and email messages.... [More]

Harex.b (aka Genky) is about 4KB when compressed by FSG. The virus file is 33KB when uncompressed. InstallingWhen installing, the worm creates a sub directory called 'windows' within the Windows directory and writes itself to this sub directory un... [More]

Hofox is a worm that spreads via P2P networks. Hofax is a Windows PE exe file; written in Visual Basic; about 49K in size.During launch, the worm blocks the Norton Antivirus Auto Protect ServiceInstallationHofax registers itself as a launched applic... [More]

This is a peer-to-peer worm, also known as Exebat. The worm file is about 2 KB in size, packed with FSG. The unpacked file is 17 KB in size.InstallationDuring installation the worm creates a folder named "sys32" in the Windows system folder and co... [More]

This virus is written in C, and is a Windows PE EXE file, approximately 17KB in size, packed using UPX. The unpacked file is approximately 45KB in size. On launch, the worm checks the victim machine for VMWare. If it is launched under VMWare, some o... [More]

Lolol is a worm virus spreading via the Kazaa file sharing network.The worm has a powerful backdoor routine which connects to an IRC channel where it accepts commands from its "master" (person controlling the worm).The worm itself is a Windows PE ... [More]

This is a Worm virus. It spreads through the peer-to-peer network Kazaa. Additionally, it performs some spying functions, gathering data on certain games installed on the affected PC. This worm is a Windows application (PE EXE-file). It is written i... [More]