ChangeLog:
Changes are listed in chronological order with the latest changes first.
2004-11-01 05:43	Severity was decreased from 2/5 to /5.
2004-10-01 06:06	Severity was raised from N/A to 2/5.
2004-10-01 06:06	Description was changed. New: "N/A" Old: "Troj/Killav-I attempts to terminate various security related programs."
2004-05-18 16:06	Description was changed. New: "Troj/Killav-I attempts to terminate various security related programs." Old: "A detailed analysis will be published here shortly. Please check again later."

ChangeLog:
Changes are listed in chronological order with the latest changes first.
2004-10-25 14:21	Description was changed. New: "Trojan Characteristics: When executed this trojan changes the default Home Page to http://search123.biz , which no longer seems to be available. A file called MSXMLFILT.DLL is added to C:\Windows\System. This file is also detected as StartPage-FG" Old: "N/A"
2004-10-25 14:21	File size was changed. New: "4,096 bytes" Old: "N/A"

ChangeLog:
Changes are listed in chronological order with the latest changes first.
2007-09-03 05:42	Name was changed. New: "TROJAN" Old: "TROJ_NSPM.SI"
2007-09-03 05:42	Description was changed. New: "N/A" Old: "This Trojan may be downloaded unknowingly by a user when visiting malicious Web sites. It drops files/components, some of which are detected by Trend Micro as TROJ_NSPM.VV. As a result, routines of the dropped files are exhibited on the affected system."
2007-08-30 02:52	Description was changed. New: "This Trojan may be downloaded unknowingly by a user when visiting malicious Web sites. It drops files/components, some of which are detected by Trend Micro as TROJ_NSPM.VV. As a result, routines of the dropped files are exhibited on the affected system." Old: "N/A"

ChangeLog:
Changes are listed in chronological order with the latest changes first.
2008-04-04 05:32	Name was changed. New: "TROJAN" Old: "TROJ_MDROP.AH"
2008-04-04 05:32	Description was changed. New: "N/A" Old: "This Trojan arrives as attachment to email messages spammed by another malware or a malicious user. It may be dropped by other malware and may be downloaded unknowingly by a user when visiting malicious Web site(s). It takes advantage of a known vulnerability in Microsoft Excel that allows remote code execution. More information on the said vulnerability is available in the following Microsoft Web page:"
2008-03-14 04:41	Description was changed. New: "This Trojan arrives as attachment to email messages spammed by another malware or a malicious user. It may be dropped by other malware and may be downloaded unknowingly by a user when visiting malicious Web site(s). It takes advantage of a known vulnerability in Microsoft Excel that allows remote code execution. More information on the said vulnerability is available in the following Microsoft Web page:" Old: "This Trojan arrives as attachment to email messages spammed by another malware or a malicious user. It may be dropped by other malware and may be downloaded unknowingly by a user when visiting malicious Web site(s). It takes advantage of a known vulnerability in Microsoft Excel that allows remote code execution. More information on the said vulnerability is available here. Once it successfully exploits the said vulnerability, it executes a shell code that allows it to drop any of several embedded files on the affected system, including BKDR_AGENT.SNI, BKDR_PCCLIEN.AAA, TROJ_SMALL.DCJ, and BKDR_PCCLIEN.AJT. It then executes the dropped file(s). As a result, malicious routines of the dropped files are exhibited on the affected system."
2008-03-06 05:51	Description was changed. New: "This Trojan arrives as attachment to email messages spammed by another malware or a malicious user. It may be dropped by other malware and may be downloaded unknowingly by a user when visiting malicious Web site(s). It takes advantage of a known vulnerability in Microsoft Excel that allows remote code execution. More information on the said vulnerability is available here. Once it successfully exploits the said vulnerability, it executes a shell code that allows it to drop any of several embedded files on the affected system, including BKDR_AGENT.SNI, BKDR_PCCLIEN.AAA, TROJ_SMALL.DCJ, and BKDR_PCCLIEN.AJT. It then executes the dropped file(s). As a result, malicious routines of the dropped files are exhibited on the affected system." Old: "N/A"

ChangeLog:
Changes are listed in chronological order with the latest changes first.
2008-05-14 02:42	Name was changed. New: "TROJAN" Old: "TROJ_DNSCHANG.CS"
2008-05-14 01:42	Description was changed. New: "N/A" Old: "This Trojan may be dropped by other malware. It may be installed manually by a user. It may be downloaded unknowingly by a user when visiting malicious Web sites. It creates folders. It creates registry entries to enable its automatic execution at every system startup. It creates registry key(s)/entry(ies) as part of its installation routine. It accesses Web sites to download file(s). As a result, malicious routines of the downloaded files are exhibited on the affected system. It drops component files. Trend Micro detects one of the dropped files as ADW_ISMONITOR. As a result, routines of the dropped adware are also exhibited on the affected system. It connects to Web sites."
2008-05-12 03:06	Description was changed. New: "This Trojan may be dropped by other malware. It may be installed manually by a user. It may be downloaded unknowingly by a user when visiting malicious Web sites. It creates folders. It creates registry entries to enable its automatic execution at every system startup. It creates registry key(s)/entry(ies) as part of its installation routine. It accesses Web sites to download file(s). As a result, malicious routines of the downloaded files are exhibited on the affected system. It drops component files. Trend Micro detects one of the dropped files as ADW_ISMONITOR. As a result, routines of the dropped adware are also exhibited on the affected system. It connects to Web sites." Old: "N/A"