Details
not-virus:Hoax.Win32.Avgold.d
This ‘joke’ program functions as advertising. It is written in Visual C++, and it 36864 bytes in size. Installation When launching, the program copies itself to the system directory as hookdump.exe. It then registers this file in the system registry to ensure that the program is launched eachall
Details
not-a-virus:Tool.Win32.Reboot
This program is detected by Kaspersky Anti-Virus extended databases. When launched the program will restart Windows, and either shut down the computer or end the current user’s session. It does not have any other payload, but it may be used by other malicious programs as a utility. The file nameall
Details
not-a-virus:RiskWare.Tool.RegPatch.a
This program is approximately 5KB in size (when packed) and packed using UPX. It is designed to change system registry values. The file overlay contains an encrypted (xor 90h) .REG file. When launched, the file is saved in C:\ParaTemp.reg using the following command: regedit.exe -s C:\ParaTemp.regall.
Details
not-a-virus:RemoteAdmin.Win32.RAdmin.21
This program, named ‘Remote Administrator’ is intended to be used for remote administration. The author is Dmitry Znosko, http://www.famatech.com/. In some configurations, this program may be utilized by a remote malicious user with the owner of the computer being aware of this. Functionally,all
This Trojan has a malicious payload. It is a BAT file. It is 4644 bytes in size.
This Trojan has a malicious payload.
This Trojan is a BAT file. It is 2087 bytes in size.
This Trojan has a malicious payload.
This Trojan is a BAT file. It is 523 bytes in size.
This Trojan downloads other files via the Internet and launches them for execution on the victim machine without the user’s knowledge or consent. It is a Visual Basic Script scenario. It is 1506 bytes in size.
This malicious program is designed to conduct Denial of Service attacks on a remote server. It is a Windows PE EXE file. It is 40960 bytes in size. It is written in Visual Basic.
This malicious program is designed to conduct Denial of Service attacks on a remote server. It is a Windows PE EXE file. It is 20480 bytes in size. It is written in Visual Basic.
This Trojan has a malicious payload. It is a Windows PE EXE file. It is 137728 bytes in size. It is written in C++.
This Trojan has a malicious payload. It is a Windows PE EXE file. It is 137728 bytes in size. It is written in C++.
Details
not-a-virus:JavaClass.Port25
This JavaClass.Port25 applet contains the “paint” function. This function is named after the HTML file with the same name. While starting it creates a new socket for the host www.netscape.com:25. If the connection is successful the function will display the following message:
Success connecting to port 25 on host www.netscape.com
In case of error the function displays:
Caught security exception trying to connect to port 25 on www.netscape.com
or:
paint: caught i/o exception
Details
not-a-virus:Cracker
These programs are not viruses or trojans, but hacker’s programs to hack different kinds of software. Usually they are harmless for installed software and just remove copy and/or key protection in the protected programs.
The detection for several crackers was added to AVP database after several requests from AVP users.
Details
not-a-virus:AdWare.WildTangent.a
This program is effectively harmless. However, it can be installed on the victim machine without the user’s knowledge or consent. The program is a DLL file approximately 280KB in size, written in Visual C++. No packer is used. The file is often called wtkernel0100.dll The program is a web driverall