Trojan.KillProc

Trojan.KillProc is a generic detection for a suspicious file that may disable security-related programs. It typically ends various predetermined processes, closes windows of security-related products, modifies registry entries, or uses other methods in order to disable such programs. The main thing that this Trojan does is disabled your computer security programs. For example, it can kill the Windows Security notifications, allowing various infections to spread in your system undetected. Thus…

PUA.Windows.DoubleExtension

PUA.Windows.DoubleExtension

PUA.Windows.DoubleExtension is a ClamAV detection where a virus file has two extension names designed to trick a user to running it. Many people have learned that text files (.TXT) and image files (.GIF, .JPG, etc.) are safe to launch because they are data and not executable software. They have learned to be leery of .EXE, .VBS and other extensions that are executed immediately. Thus, virus writers try to trick more people…

VBS/Worm

is a malicious software that once it is executed has the capability of replicating itself and infect other files and programs. These type of malware, called Viruses, can steal hard disk space and memory that slows down or completely halts your PC. It can also corrupt or delete data, erase your hard drive, steal personal information, hijack your screen and spam your contacts to spread itself to other users. Usually,…

Virus.VBS/Autorun.worm

Virus.VBS/Autorun.worm is a worm that spreads by copying itself to local hard drives, network drives, and removable drives. It has no other functionality. The first file is the worm’s Visual Basic Script file. The autorun.inf file causes the __.vbs file to be executed when an infected drive is accessed with a computer that has autorun enabled on the drive in question. The batch file can make the registry changes by…

Gen:Variant.Strictor

is a polymorphic virus that will infect executable files in order to spread itself on computers and network environment. Upon installation, this virus will establish a network connection so that remote attacker may gain control on the infected computer. can also steal sensitive data such as user name, password, and relevant information. hides its presence from anti-virus application and may open a backdoor that allows a remote attacker to achieve…

Win32:Agent-BABP

is a generic detection for files that perform various malicious actions on an affected computer. Malicious files detected as variants of Win32/Agent can have virtually any purpose. The behaviors displayed by variants of this malware are highly variable. Malicious files detected as variants of Win32/Agent can have virtually any purpose. is a generic detection for files that perform various malicious actions on an affected computer. is a specific detection used…

Win32:Vitro

is a detection for a variant of a polymorphic virus that has identical characteristics. This threat will infect executable files in order to spread itself on computers and network environment. Upon installation, this virus may establish a connection so that remote attacker may gain control on the infected computer. can also steal sensitive data such as user name, password, and relevant information. hides its presence from anti-virus application and may…

Win32:Evo-gen

is a malicious software that once it is executed has the capability of replicating itself and infect other files and programs. These type of malware, called Viruses, can steal hard disk space and memory that slows down or completely halts your PC. It can also corrupt or delete data, erase your hard drive, steal personal information, hijack your screen and spam your contacts to spread itself to other users. Usually,…

Gen:Variant.Adware.Kazy

is a virus threat detected by one or more anti-virus products. When the AV software detects the  virus, this virusis often put in quarantine. Quarantine means it is put in a quarantine folder where it cannot access Windows and the virus is locked out from any dangerous behavior it might inflict into your PC. By quarantaine it cannot do anymore damage to your computer.  Still, left-overs or virus-traces remain on your computer when a…

W32/Zbot

W32/Zbot

, also called Zeus, is a Trojan horse that attempts to steal confidential information from the compromised computer. It may also download configuration files and updates from the Internet. is created using a Trojan-building toolkit. The Trojan itself is primarily distributed through spam campaigns and drive-by downloads, though given its versatility, other vectors may also be utilized. The user may receive an email message purporting to be from organizations such as…