Skip to main content
Skip to main content
Microsoft Security Intelligence
Cart 0 items in shopping cart
Sign in
855 entries found. Displaying page 1 of 43.
Updated on Nov 04, 2004
The Berbew family of Trojans retrieves passwords stored on an infected system and sends them to a remote Web server. It also acts as a Web proxy, which allows attackers to use the infected system as a relay for remote access to other systems. Users can become infected with Trojans like Berbew in a number of ways: opening unknown e-mail attachments, running downloaded programs, using peer-to-peer file sharing programs.
Alert level: severe
Updated on Feb 24, 2005
Trojan:Win32/Goweh.E is a Trojan that alters several settings in Internet Explorer. It changes the home page and redirects search queries and traffic to other Web pages. Win32/Goweh.E is normally installed on a computer by another Trojan dropper or downloader.
Alert level: severe
Updated on Jan 24, 2008
Worm:Win32/Rootcip.E is installed by a dropper, and may be accompanied by a rootkit identified as VirTool:WinNT/Rootkitdrv.CN. Win32/Rootcip.E spreads by copying itself to the root of all logical disks, including removable drives. VirTool:WinNT/Rootkitdrv.CN hides all malicious processes created by the worm, and disables a security firewall service.
Alert level: severe
Updated on May 09, 2008
Backdoor:Win32/Hupigon.ADE is the main backdoor component of Win32/Hupigon, a family of backdoor Trojans. TrojanDropper:Win32/Hupigon registers this component as a service. The service then opens a backdoor server that allows other computers to connect to and control the infected computer in various ways.
Alert level: severe
Updated on Aug 28, 2005
Backdoor:Win32/Gael.A is a backdoor Trojan that targets certain versions of Microsoft Windows. The Trojan is downloaded, installed, and executed by TrojanDownloader:Win32/Gael.A.
Alert level: severe
Updated on Apr 04, 2005
Backdoor:Win32/Berbew.AT is a Trojan that targets computers running Microsoft Windows 2000 or Windows XP. The Trojan installs silently on a computer. It can capture and send credit card and other personal information to a Web site. It can also download files from Web sites and run them on your computer.
Alert level: severe
Updated on Apr 05, 2005
Backdoor:Win32/Berbew.AW is a Trojan that installs silently on computers running Microsoft Windows 2000 or Windows XP. It may download files from Web sites and run them on the target computer, and may gather and send personal information from an infected computer to a Web site.
Alert level: severe
Updated on Jun 15, 2005
Backdoor:Win32/Samsteal.A is a backdoor Trojan that targets certain versions of Microsoft Windows. This Trojan collects data from a computer and can release the data to other computers using a backdoor, e-mail, and other file exchange methods. It is dropped by Backdoor:Win32/Samsteal.A.dr.
Alert level: severe
Updated on Nov 09, 2005
Backdoor:Win32/Berbew.AZ is a backdoor Trojan that retrieves locally cached passwords and passwords from active windows, and sends those passwords to a remote website.. Backdoor:Win32/Berbew.AZ also opens and monitors TCP ports for incoming transmissions.
Alert level: severe
Updated on Jun 15, 2005
TrojanDownloader:Win32/Small.APT is a Trojan downloader that targets certain versions of Microsoft Windows. The Trojan can download and run files from an FTP server and various Web sites. It also terminates security-related processes. 
Alert level: severe
Updated on Jul 13, 2007
TrojanDownloader:Win32/Agent.ACF is a Trojan downloader that changes registry settings and downloads data from a remote Web site. TrojanDownloader:Win32/Agent.ACF may be installed by another Trojan dropper, such as a compiled HTML file or executable.
Alert level: severe
Updated on Nov 23, 2007
Trojan:Win32/Adialer.OP is a Trojan dialer that connects to remote hosts without user consent. The Trojan consists of an installer, and an installed DLL, identified as Trojan:Win32/Adialer.OP!dll. The Trojan may connect to a remote Web site to download data, and may connect to UDP ports 3010 or 3011.
Alert level: severe
Updated on Dec 17, 2007
Trojan:Win32/Wopla.gen!Y is a generic detection for a family of Trojans that act as proxies, allowing an attacker to send spam e-mail, some with binary attachments. Trojan:Win32/Wopla.gen!Y may also download, upload and execute files on the affected machine.
Alert level: severe
Updated on Feb 11, 2008
Worm:Win32/Autorun.OA is a worm that spreads through fixed and removable drives by dropping copies of itself. It may change the computer system date, delete other programs, or connect to a remote site and await commands from a remote attacker.
Alert level: severe
Updated on Feb 18, 2008
Trojan:Win32/Horst.gen!B is a generic detection for a group of trojans that manipulates the web interfaces for free online e-mail service providers, such as Yahoo, AOL, Gmail and Hotmail, with the intention of registering e-mail accounts that can be utilized to send spam.
Alert level: severe
Updated on Feb 20, 2008
TrojanDownloader:Win32/Cbeplay.B is a trojan that may upload computer operating system details to a remote web site, download additional malware, and terminate debugging utilities. This trojan may be distributed via spam e-mail, either directly as a password-protected zip attachment, or indirectly via a link to a remote copy of the trojan.
Alert level: severe
Updated on Mar 12, 2008
TrojanDownloader:Win32/Homeiz.A is a trojan that may lower system security, and download and execute arbitrary files.
Alert level: severe
Updated on May 12, 2008
Worm:Win32/RJump is a worm that attempts to spread by copying itself to newly attached media (such as USB memory devices or network drives). It also contains backdoor functionality that allows an attacker unauthorized access to an affected machine.
Alert level: severe
Updated on Jul 07, 2008
TrojanDownloader:Win32/Kogant.A is a network monitoring trojan and may be installed by a dropper identified as Backdoor:Win32/Koceg.gen!B.
Alert level: severe
Updated on Jul 20, 2008
TrojanDownloader:Win32/Horst.H is a trojan downloader component of the Horst malware family.
Alert level: severe