ALWIL Software

Win32:Banker

Wed, 16 Apr 2008 16:00:50 +0100

Win32:Banker is a family of Trojans capable of monitoring user activity and stealing private information. Win32:Banker monitors user��s internet access. If certain websites (banking, payment system) are visited, Win32:Banker will��log user��s activity. Win32:Banker will than send all the stolen details to the attacker.

Win32:Beagle

Wed, 16 Apr 2008 16:00:50 +0100

is a massmailing worm which will be active only till 28th January 2004. It installs the backdoor into the operating system.

Win32:Blaster

Wed, 16 Apr 2008 16:00:50 +0100

is a true worm which does not spread via e-mail but exploits a vulnerability called "Buffer Overrun In RPC Interface" which is also known as DCOM/RPC and MS03-026.

Win32:Bugbear-B

Wed, 16 Apr 2008 16:00:50 +0100

is an Internet virus written in Microsoft C and packed with UPX. It is polymorphic, it combines the UPX file compression with simple encryption.

Win32:Dumaru

Wed, 16 Apr 2008 16:00:50 +0100

is an UPX packed virus that spreads using email and also infects other executable using NTFS Alternate Data Stream.

Win32:Fizzer

Wed, 16 Apr 2008 16:00:50 +0100

is an Internet worm which uses an e-mail and Kazaa P2P network to spread itself. It is quite complex and is about 200 kb long.

Win32:Ganda

Wed, 16 Apr 2008 16:00:50 +0100

is an Internet worm which uses the social ingeneering to force the users to run the infected mail attachment.

Win32:Gatina-B

Wed, 16 Apr 2008 16:00:50 +0100

Win32:Gatina-B is a mass mailing worm which can disable some system functions and can block some security related applications.

Win32:Kapucen-B

Wed, 16 Apr 2008 16:00:50 +0100

Win32:Kapucen is a P2P spreading worm, also known as Win32/Puce or W32.ECup.��

Win32:MiMail-A

Wed, 16 Apr 2008 16:00:50 +0100

is a worm that spreads via email. It informs the user that his/her email address will expire soon and tries to convince him/her to open and run the attachment.