Infopirate.org

This worm may be downloaded from remote sites by other malware. It may be dropped by other malware. It may be downloaded unknowingly by a user when visiting malicious Web sites.

Upon execution, this worm drops several files. It then creates a registry entry to enable its automatic execution at every system startup. This worm also modifies registry entries to hide files with both System and Read-only attributes. It then deletes itself after execution.

This worm may be downloaded from remote sites by other malware. It may be dropped by other malware. It may also be downloaded unknowingly by a user when visiting malicious Web sites.

Upon execution, this worm drops several files, some of which are detected as WORM_AGENT.AJAK and TROJ_AGENT.ADFQ. It then creates a registry entry to enable its automatic execution at every system startup. It stays memory resident by injecting dropped .DLL components into several processes running in memory.

This worm may be dropped by other malware. It may be downloaded unknowingly by a user when visiting malicious Web sites.

Upon execution, this worm drops several component files, which Trend Micro detects as WORM_AUTORUN.ZU, TSPY_ONLINEG.NNW, WORM_AUTORUN.ZQ, WORM_NSANTI.FY.

This worm creates registry entry to enable its automatic execution at every system startup. It also modifies registry entries to hide files with both System and Read-only attributes.

It deletes itself after execution.

This worm may be dropped by other malware. It may be downloaded unknowingly by a user when visiting malicious Web sites.

It drops files and it creates a registry entry to enable its automatic execution at every system startup. It also modifies registry entries to hide files with both System and Read-only attributes.

This worm drops copies of itself in all physical drives and in all removable drives. It also drops copies of itself in specific drives.It drops an AUTORUN.INF file to automatically execute dropped copies when the drives are accessed.

This worm may be downloaded from remote sites by other malware.It may be dropped by other malware.It may be downloaded unknowingly by a user when visiting malicious Web sites.

It drops copies of itself.It drops files/components. It then deletes itself after execution.

It creates registry entries to enable its automatic execution at every system startup.

It modifies registry entries to hide files with both System and Read-only attributes.

It drops copies of itself in all physical and removable drives.