Keyword: JS_DLOADER
5645 Total Search   |   Showing Results : 3501 - 3520
  Previous   Next  
http://{blocked}2rt.com/360.ht ml
JS_SHELLCOD.SMGU accesses this URL to download JS_EXPLOIT.SM1.
Oracle Java Application Drive-By Web Attack
http://sjc1-te-cmsap1.sdi.trendnet.org/dumpImages/294201051312.jpeg Background of the Attack A vulnerability in the Oracle's Java application, Java Deployment Toolkit (JDT), was spotted by two
Searches for Printable Items Lead to Malicious Domains
http://sjc1-te-cmsap1.sdi.trendnet.org/dumpImages/04520105255.jpeg Background of the Attack On January 25, 1:25 p.m., Munich time, Trend Micro analysts received reports regarding a blackhat search
{blocked}0.85.172/bl.js
This malicious URL is related to the Osama bin Laden death spam in Facebook as well as the detection JS_FBOOK.VTG.
{blocked}ps.co.uk/bin.js
This site is related to JS_FBOOK.VTG. Users may encounter this when searching for news about Osama bin Laden's death via Facebook .
{blocked}upltd.com/sidename.js
JS_REDIRECT.BB connects to this possibly malicious URL.
{blocked}g08.com/js/general.js
PE_FUJACKS.CT-O connects to this possibly malicious URL.
http://dol.{BLOCKED}1.us:8081/update/index.php
JS_EXPLOIT.MEA accesses the following websites to download a file, detected as BKDR_POISON.MEA. JS_EXPLOIT.MEA was inserted onto a legitimate website of the US Department of Labor and downloads a
http://dol.{BLOCKED}1.us:8081/update/base64.js
JS_EXPLOIT.MEA loads this site where its component for decoding base64 can be found. This malicious script was inserted onto a legitimate website of the US Department of Labor and downloads a Poison
http://s1.{BLOCKED}n.net/editor/services/hanmailex/5.11.54/js/editorall.js
TROJ_DLDR.HB connects to this URL to download a file and saves it as %System%\logda.dat . This malware is involved in the cyber attacks that targeted specific users in South Korea during March of
{blocked}ama.cn/inf/main.js?t= 20110801.js
When executed, TROJ_ADLOAD.YG connects to this malicious URL.
{blocked}ama.cn/js/ac.js
When executed, TROJ_ADLOAD.YG connects to this malicious URL.
{blocked}ama.cn/js/sc.js
When executed, TROJ_ADLOAD.YG connects to this malicious URL.
TROJ_DOFOIL.JS
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It disables Task Manager, Registry Editor, and Folder
TROJ_HILOTI.THEY
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This Trojan arrives on a system as a
TROJ_HILOTI.FE
It resolves an IP address to download an updated copy of itself or another malicious file. The resolved IP address is in the following format: http://{date+data}.{resolved address}.com/get.php This
TROJ_HILOTI
This description is based is a compiled analysis of several variants of TROJ_HILOTI. Note that specific data such as file names and registry values may vary for each variant. This Trojan arrives on a
TROJ_KATUSHA.JS
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This Trojan arrives on a system as a
TROJ_KOOBFACE.AC
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It may be hosted on a website and run when a user
TROJ_PIDIEF.ESB
This Trojan arrives as an attachment to email messages spammed by other malware/grayware or malicious users. It does not have any propagation routine. It does not have any backdoor routine. It