Top 20 Most Active Viruses

Only available on StudyMode
  • Download(s) : 93
  • Published : March 5, 2013
Open Document
Text Preview
Top 20 Most Active Viruses

Conficker.C
• Conficker.C is a worm. Designed to spread by exploiting a vulnerability in the Windows Server Service which allows remote code execution. It is the vulnerability MS08-067. • It disables the following services: • Windows update, disabling the Windows updates. • BITS (Background Intelligent Transfer Service), which is a service to transfer Windows files. • Error reporting service, which allows to send Microsoft information about errors occurring in the operating system, Windows components and programs. • It modifies the security policies of the user accounts. In order to access the user accounts, it uses the dictionary of weak passwords. • It prevents the user and the computer from connecting to the websites that are security related preventing anti-virus programs from updating.

Spy.YK
• Spy.YK is a trojan. It allows hackers to get into and carry out dangerous actions in affected computers, such as capturing screenshots, stealing personal data, etc. • It does not spread automatically using its own means. It needs the attacking user's intervention in order to reach the affected computer. The means of transmission used include, among others, floppy disks, CD-ROMs, email messages with attached files, Internet downloads, FTP, IRC channels, peer-to-peer (P2P) file sharing networks, etc.

• A virus that also has the characteristics of a worm. • It inserts its code in other files and programs. It has damaging effects on the affected computer. • It spreads and affects other computers by creating copies of itself. • It does not spread automatically using its own means. It needs the attacking user's intervention in order to reach the affected computer. The means of transmission used include, among others, floppy disks, CD-ROMs, email messages with attached files, Internet downloads, FTP, IRC channels, peer-to-peer (P2P) file sharing networks, etc.

Vobfus.gen

Downloader.MDW
• It is a trojan. Allows hackers to get into and carry out dangerous actions in affected computers, such as capturing screenshots, stealing personal data, etc. • It uses the following techniques to impede detection by antivirus companies: • It terminates its own execution if it detects that it is being executed in a virtual machine environment, such as VMWare or VirtualPC. • It causes a loss of productivity in the local network to which the compromised computer belongs: • It generates a large amount of network activity and consumes bandwidth. • It reduces the security level of the computer: • It notifies the attacker that the computer has been compromised and is ready to be used maliciously. • It changes system permissions, decreasing the security level.

• It carries out the following process: • It spreads by attacking IP addresses obtained at random or from the network to which the infected computer belongs. • It tries to access the IP addresses under attack by exploiting an existing vulnerability or through an open port. • If it does this, it downloads a copy of itself onto the vulnerable computer. • It does not spread automatically using its own means. It is dropped on computers by other malware having the name of MULTIDROPPER. • It is written in the programming language Visual C++ 6. • It is compressed with unknown type.

AccesMembre
• It is an adware. It affects productivity, preventing tasks from being carried out: • In the affected computer: it displays pop-up windows. • Uses the following propagation or distribution methods: • Exploiting vulnerabilities with the intervention of the user: exploiting vulnerabilities in file formats or applications. To exploit them successfully it needs the intervention of the user: opening files, viewing malicious web pages, reading emails, etc. • It is dropped or downloaded to the computer by other malware specimens, for example: Downloader.VNS.

Sality.AK
• Sality.AK is a virus that spreads to other computers by copying its code to other files or...
tracking img