|
|
| W32.Mydoom@mm |
| The W32.Mydoom@mm virus spreads via email. The emails have an attachment with a .bat, .cmd, .com, .exe,
.pif, .scr, or .zip extension. When a computer is infected, the virus will modify the registry as so it
can continue to spread without the use of an email program. |
| |
How do I remove it?
A fix can be found by clicking here. |
| |
|
Posted: 28 July 2004 |
| W32.Evaman@mm |
| W32.Evaman@mm is a mass-mailing worm that spreads to addresses found at the website email.people.yahoo.com.
This worm arrives as an attachment with a .exe or .scr extension. Note: Symantec Consumer products that
support Worm Blocking functionality automatically detect this threat as it attempts to spread. |
| |
How do I remove it?
A fix can
be found by clicking here. |
| |
|
Posted: 7 July 2004 |
| W32.Korgo.W |
| W32.Korgo.W is a worm that attempts to propagate by exploiting the Microsoft Windows LSASS Buffer Overrun
Vulnerability (described in Microsoft Security Bulletin MS04-011) on TCP port 445. This variant also attempts
to download and execute a file from a remote Web site. |
| |
How do I remove it?
A fix can be found by
clicking here. |
| |
|
Posted: 7 July 2004 |
| W32.Sasser.Worm |
| The W32.Sasser.Worm spreads via vulunerable ports on computers. Once infected the virus will generates
significant traffic which will slow the PC down. When a computer is infected, the virus will create an
FTP server and distribute itself through opened ports, mainly TCP 5554, TCP 9995. |
| |
How do I remove it?
A fix can be found by
clicking here. |
| |
|
Posted: 14 May 2004 |
| W32.Netsky.D@mm |
| The W32.Netsky.D@mm spreads via email. The Subject, Body, and Attachment names vary but the attachment
will have a .pif file extension. When a computer is infected, the virus will modify the registry as so
it can continue to spread without the use of an email program. |
| |
How do I remove it?
A fix can be found by clicking here. |
| |
|
Posted: 16 March 2004 |
| W32.Beagle |
| The W32.Beagle spreads through emails with a subject of "Hi", "Hello", "Error",
"Status", "Server Report", "Mail Transaction Failed" or "Failed Delivery
System". Attached to the email is an exe file containing the virus. Once the attachment is opened it
will install itself into your PC where it sends out copies of the virus to other people via email. |
| |
How do I remove it?
A fix can
be found by clicking here. |
| |
|
Posted: January 2004 |
| W32.Novarg.A |
| The Novarg.A worm is another virus, which spreads itself by sending a mass email around the world with a
subject of "Hi", "Hello", "Error", "Status", "Server Report",
"Mail Transaction Failed" or "Failed Delivery System". Attached to the email is a file
with the extension .bat, .cmd, .exe, .pif, .scr, or .zip. When a computer is infected, the worm will set up
a backdoor which can allow an attacker to connect to the computer. In addition, the backdoor can download
and execute random files. |
| |
How do I remove it?
A fix can be found by clicking here. |
| |
|
Posted: January 2004 |
| W32.Mydoom.B |
| The Myddom.B worm is another virus, which spreads itself by sending a mass email around the world with a
subject of "Hi", "Hello", "Error", "Status", "Server
Report", "Mail Transaction Failed" or "Failed Delivery System". Attached to the
email is a file with the extension .bat, .cmd, .exe, .pif, .scr, or .zip. When a computer is infected,
the worm will set up a backdoor which can allow an attacker to connect to the computer. In addition, the
backdoor can download and execute random files. |
| |
How do I remove it?
A fix can be found by clicking here. |
| |
|
Posted: January 2004 |
Useful Antivirus links:
- http://us.mcafee.com/virusInfo/default.asp
- http://securityresponse.symantec.com/
- http://www.trendmicro.com
- http://www.sophos.com
- http://www.drsolomon.com
- http://www.f-secure.com
- http://www.nai.com
|
