Menu



error This forum is not active, and new posts may not be made in it.
1
Promote
Doug Woodall

315
199 Posts
199
Invite Me as a Friend
This Worm may or not be a problem, but,,,
1/24/2006 7:53:14 PM
Flash Report: SANS Internet Storm Center has found that more than 500,000 personal computers have been infected by the 'Grew' worm (it goes by a number of different names, e.g. 'Nyxem'). On February 3rd, it will delete all documents (Word, Excel and a number of others). Make sure your mom and your kids (and everyone else who may call you when they lose data) to update their AV signatures and run a full scan. "Update now or all your files may get lost." A special Storm Center website on the problem: http://isc.sans.org/blackworm
Doug Woodall SpywareBiz,,,We take the Spy out of Spyware! http://www.spywarebiz.com Providing Free Information and Recommended Products to Combat Spyware.
+0
Dave Cottrell

2900
2802 Posts
2802
Invite Me as a Friend
Top 100 Poster
Person Of The Week
Re: This Worm may or not be a problem, but,,,
1/25/2006 2:09:19 AM
Hi Doug, This is a nasty one. (I've been doing a little research, too.) I've created a thread directing our friends here on Adlandpro to get to know you and signed up as your friend to keep up-to-date. This particular worm has a rather nasty payload: Payload: Deletes files and registry entries of security-related applications. Large scale e-mailing: Creates a mass-mailing of itself using addresses gathered from the compromised computer. Deletes files: Attempts to delete files associated with security-related programs. Also Known As: Win32/Blackmal.F, Email-Worm.Win32.Nyxem.e , Email-Worm.Win32.Nyxem.e , W32/MyWife.d@MM , W32/MyWife.d@MM!M24 , W32/Small.KI@mm , Tearec.A , W32/Nyxem-D , WORM_GREW.{A, B} God bless, Dave
+0
Doug Woodall

315
199 Posts
199
Invite Me as a Friend
Re: This Worm may or not be a problem, but,,,
1/25/2006 9:16:12 AM
Hiya Dave, Sadly there are 2 registry changes that this meanie can reverse and basically revert the last 2 Microsoft security Updates to a vunerable state. I have to admire the writers a lil. (just a lil) The code that reverts the machine back bypasses the restore program even. How this is done I have no idea. But I love to learn ! And Thanks for recommending me. Im honored. Take care,
Doug Woodall SpywareBiz,,,We take the Spy out of Spyware! http://www.spywarebiz.com Providing Free Information and Recommended Products to Combat Spyware.
+0
1


facebook
Like us on Facebook!