Windows malware

Today we detected a new variant of IM-Worm.Win32.Kelvir – we detect it as Kelvir.k. As always Kelvir is accompanied with an IRCBot, which we detect as Backdoor.Win32.Rbot.gen.

Kaspersky Lab presents the Virus Top Twenty for March 2005

Virus.MSAccess.AccessiV

Today we detected mass mailing of Trojan-Downloader.Win32.Small.anh in Russia

Automated mass mailing of malicious code

New Bagle.pac was found in-the-wild. This is another dropper (not a worm) but it was mass-spammed in Russia in last hour.

The SpamTool we detected on February 15 harvests emails on infected machines selectively. It turns out that it had been preparing today’s Bagle outbreak.

The first day of spring brought us five new Bagle variants within a few hours. We detect them as Email-Worm.win32.Bagle.bb-.bf

The first macro virus for Microsoft Office appeared seven years ago today. It was first named Macro.Office.Triplicate, later re-named into Virus.MSOffiice.Triplicate when it became apparent that Triplicate was the first of a wave of new malware.

Seven years later we rarely, if ever see new…

Kaspersky Lab first detected this variant in the summer of 2004

In the past two days, we’ve detected seven new versions of Bagle! The new variants range from Bagle.ax to Bagle.ba. Variants from Bagle.ba onwards are currently detected as Bagle.ba.

Read more about the new worms

There are new variants of Bagle circulating actively at the moment: Email-Worm.Win32.Bagle.ax and Email-Worm.Win32.Bagle.ay.

Reputable sites are hosting a trojaned version of a new DC++ build

New MS antispyware tool already targeted by hackers