Threat Encyclopedia

Browse the Fortiguard Labs extensive encyclopedia of threats. Click any title to view more details of the threat. Can't find what you are looking for? Try using the search bar above to find a specific threat description.

It drops a file with a random file name in the same folder it was executed. It uses the following mutex: klllekkdkkd ShimCacheMutex It...

Jan 31, 2007
Copies itself to the System folder as kernels88.exe. Autostart Mechanism Creates the following registry entry:...

Jan 31, 2007
Drops the following files: c:\windows\system32\adirss.exe c:\windows\system32\lnwin.exe c:\windows\system32\wincom32.ini c:\windows\system32\wincom32.sys Tries...

Jan 31, 2007
Creates a mutex named klllekkdkkd  to make sure that only one instance is running. Some variants drop a file in...

Jan 30, 2007
Creates a mutex named mutouXXXXX  to make sure that only one instance is running. Copies itself to the file undefinedProgram...

Jan 29, 2007
It drops the following files: C:\Windows\System32\wintems.exe C:\Documents and Settings\[user]\Application Data\hidires\hidr.exe C:\Documents...

Jan 28, 2007
Drops the following file: undefinedSystemundefined\External.exe Adds the following registry: key: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run value:...

Jan 28, 2007
Copies itself to undefinedSYSTEMundefined\taskdir.exe. Drops the following file: undefinedSYSTEMundefined\adir.dll Uses...

Jan 27, 2007
Copies itself to: undefinedSYSTEMundefined\adirss.exe Adds the following registry: key: HKLM\Software\Microsoft\Windows\CurrentVersion\Run value:...

Jan 27, 2007
Attempts to harvest email addresses from the infected machine, then posts them to the following HTTP server: http://81.17{REMOVED} Gathers...

Jan 27, 2007
Creates a mutex named klllekkdkkd  to make sure that only one instance is running. Drops the file [Random].exe, where...

Jan 27, 2007
Creates the mutex named killekkdkkd  to ensure that only one instance of the virus is executed on the computer....

Jan 27, 2007
Drops the following files: alsys.exe SERVICES.EXE Adds the following registry: key: HKCU\Software\Microsoft\Windows\CurrentVersion\Run value:...

Jan 26, 2007
Creates the mutex named klllekkdkkd  to ensure that only one instance of the virus is executed on the computer. Creates...

Jan 25, 2007
This memory resident Symbian malware arrives as a SIS package or Symbian installer file. It is capable of spreading via Bluetooth...

Jan 24, 2007
It is a Symbian virus, packed in .sis format. Displays the following message prompting the user to install: Install FlexiSPY? Drops...

Jan 24, 2007
Drops the following files: undefinedSystemundefined\[random].exe hidn2.exe hldrrr.exe Adds the following registry: key:...

Jan 24, 2007
It displays the following message: Unknown error Deletes itself from the current directory. Copies itself to...

Jan 24, 2007
Copies itself to undefinedSystemundefined/kernels88.exe. Adds the following value: System="undefinedSystemundefined/kernels88.exe" to...

Jan 24, 2007
Displays the following message: Acrobat 6 - Error "Warning" 20225 Drops the following files: undefinedSYSTEMundefined\iptb.exe undefinedSYSTEMundefineddrivers\onud.dat Tries...

Jan 24, 2007