The W32/Nuwar.A worm, which entered directly in fourth place, stands out in particular. This worm spreads in email messages with text referring to the ‘Third World War’ or the supposed deaths of "President Bush or Putin".
Another new entry in the list, Banbra.DJM, is actually a variant of a classic family of Trojans designed to capture login details for several Brazilian banking services.
The last new entry is the Trj/Spamer.T Trojan, which represents a classic example of how malicious code is now being used by hackers: surreptitiously entering a computer and then turning it into a platform for sending out spam.
Among the veteran viruses in the list we find Sdbot.ftp once again occupying first place. This is a script used by the Sdbot family of worms to download themselves onto computers via FTP. Although this malware has topped the rankings throughout 2006, in November there has been a slight decrease in the number of infected systems. Whereas in October it was detected in 2.08 percent of infected computers, this figure dropped in November to 1.9 percent.
Virus name ::: % frequency ::: Previous month’s position
W32/Sdbot.ftp.worm ::: 1.90 ::: 1 =
Trj/Torpig.A ::: 1.43 ::: 2 =
Trj/Abwiz.A ::: 1.22 ::: 3 =
W32/Nuwar.A.worm ::: 1.00 ::: New
W32/Puce.E.worm ::: 0.99 ::: 5 =
Trj/QQPass.JZ ::: 0.98 ::: 6 =
Trj/Banbra.DJM ::: 0.95 ::: New
Trj/Qhost.gen ::: 0.95 ::: 9 Up
W32/Netsky.P.worm ::: 0.92 ::: 4 Down
Trj/Spamer.T ::: 0.82 ::: New
In second place once again we find Torpig.A, which after rising rapidly to prominence in October, has remained stable, and was responsible for just under 1.5 percent of infections in November. Trj/Abwiz.A is also unchanged in third place in the list. This Trojan can be used to steal passwords stored on systems.
The veteran Netsky.P, a worm that exploits a vulnerability in Internet Explorer to run itself automatically has dropped several places. This, along with the decrease in incidents involving Sdbot.ftp, could be an indication of an improvement in installations on computers, as both malicious codes directly exploit vulnerabilities which have been corrected for some time.
Luis Corrons, director of PandaLabs, is still cautious however. “Even though the data suggests that operating systems are more up-to-date than before, the presence of Netsky.P in the Top 10 is still a worry.” The reason for this, according to Corrons, is “the general lack of awareness about the need to keep systems adequately protected, which could lead to real catastrophes during the Christmas shopping period. Shopping online without adequate protection not only jeopardizes information stored on disk, but could also have disastrous financial consequences, particularly for those using online banking services.”
Panda Software advises users to scan their systems with ActiveScan, a free solution that they provide which can detect even unknown malicious code hidden on systems.
For more information about these and other malicious code, visit Panda Software's Virus Encyclopedia
Since 1990, PandaLabs’ mission has been to analyze new threats as soon as possible to ensure that our clients are safe. Several teams specialized in each specific type of malware (viruses, worms, Trojans, spyware, phishing, spam, etc.) work 24x7 to offer global coverage. To do this they are supported by TruPrevent™ Technologies, a truly global early warning system made up of sensors that are strategically distributed and neutralize new threats and send them to PandaLabs for in-depth analysis. According to AV-Test.org, PandaLabs is the fastest in the industry to offer complete updates.
About Panda Software
Panda Software is a leading developer and provider of integrated security solutions to combat viruses, hackers, Trojans, spyware, phishing, spam and other Internet threats. With its state-of-the-art TruPrevent™ Technologies, Panda Software's innovative solutions offer a higher return on investment by keeping customers protected, even against new threats which have not yet been identified.
Link to Panda Software and start earning commission today!
Be a part of our success! When you join the Panda Software Affiliate Program, you're partnering with one of the world leaders in managed internet security solutions. If you have a website, you can earn up to 30% commission on the sale of our multi award-winning online services and products:
1. Panda Internet Security 2007. A complete solution that protects your PC against identity theft, viruses, spyware, spam, hackers and other Internet-borne threats.
2. Panda Antivirus + Firewall 2007. Maximum automatic protection against all types of viruses, spyware and hackers. It also ensures you have double protection with TruPrevent? Technologies.
3. Panda Antivirus 2007. Extremely light easy-to-use protection against all types of viruses and spyware. Just install and forget.
4. DesktopSecure for Linux. Panda DesktopSecure for Linux is the ideal solution for computers running Linux. It is designed to respond to the specific protection demands of home computers, both laptops and PCs, running this operating system.
5. ActiveScan Pro. Online disinfection of all types of viruses, spyware and other Internet threats. A perfect additional tool operating directly from your browser and always up-to-date which can detect even the very latest malicious code.