Author |
Topic: SECURITY ALERT!!!!!!!!!!!!! (Read 214 times) |
|
The mad viking
CH.com Alumnus
New Board Hall of Famer
Always Look on The Bright Side of Life
 
 
Gender: 
Posts: 3135
|
 |
SECURITY ALERT!!!!!!!!!!!!!
« on: Oct 1st, 2002, 3:12pm » |
 Quote  Modify
|
SECURITY ALERT
***************************************************
NYHETER
W32.BUGBEAR@MM
Due to an increased rate of submissions, Symantec Security Response has upgraded W32.Bugbear@mm to a Category 3 threat.
W32.Bugbear@mm is a mass-mailing worm. It can also spread through Network shares. It has backdoor capabilities. The worm will also attempt to terminate the processes of various antivirus and firewall programs.
The subject, message and attachment name of the email appears to be taken from the infected system. The attachment file has two extensions, the second extension is .scr, .pif, or .exe.
For more information please see http://securityresponse.symantec.com/avcenter/venc/data/w32.bugbear@mm.h tml
W32.OPASERV.WORM
Due to an increased rate of submissions, Symantec Security Response has upgraded W32.Opaserv.Worm to a Category 3 threat.
W32.Opaserv.Worm is a network-aware worm which attempts to replicate across open shares. The worm specifically targets \\machinename\c shares. This worm also attempts to download updates from www.opasoft.com, although the site may have already been shut down. Indicators of infection include:
The existence of scrsin.dat and scrsout.dat in the root directory of the c: drive indicating a local infection (worm was executed on the local machine) The existence of tmp.ini in the root directory of the c: drive indicating a remote infection (infected by a remote host) HKLM\Software\Microsoft\Windows\Current Version\Run contains a string value named ScrSvr or ScrSvrOld which is set to "c:\tmp.ini"
For additional information, please see http://securityresponse.symantec.com/avcenter/venc/data/w32.opaserv.worm .html
******************************************** www.symantec.no
Got this message from Symantec by e-mail 5 minutes ago
Svenn
|
| « Last Edit: Oct 1st, 2002, 3:14pm by The mad viking » |
 IP Logged |
Always Look on The Bright Side of Life
|
|
|
Charlie
CH.com Alumnus
New Board Hall of Famer
Happy to be here
   
Gender:
Posts: 14968
|
|
Re: SECURITY ALERT!!!!!!!!!!!!!
« Reply #1 on: Oct 1st, 2002, 5:58pm » |
Quote Modify
|
Thanks Svenn:
Got one I think is a fraud that asked be to insert a "fix" in my files. Somehow that seemed not a good idea. I found it listed as fraudulent at Symantic.
Man, sure you're not posting in Norwegian? whew
Charlie
|
|
IP Logged |
There is nothing more satisfying than being shot at without result---Winston Churchill
|
|
|
The mad viking
CH.com Alumnus
New Board Hall of Famer
Always Look on The Bright Side of Life
Gender:
Posts: 3135
|
|
Re: SECURITY ALERT!!!!!!!!!!!!!
« Reply #2 on: Oct 4th, 2002, 4:10am » |
Quote Modify
|
W32.Bugbear@mm
Discovered on: September 30, 2002
Last Updated on: October 3, 2002 05:13:22 PM PDT
NOTE: Due to an increased rate of submissions, Symantec Security Response has upgraded this threat from a Category 3 to a Category 4 as of October 2, 2002.
W32.Bugbear@mm
Discovered on: September 30, 2002
Last Updated on: October 3, 2002 05:13:22 PM PDT
http://securityresponse.symantec.com/avcenter/venc/data/w32.bugbear@mm.h tml
|
|
IP Logged |
Always Look on The Bright Side of Life
|
|
|
Ree
New Board Hall of Famer
2008's my year to shine~SUN IS OUT!!!YAY
 
Gender: 
Posts: 5236
|
|
Re: SECURITY ALERT!!!!!!!!!!!!!
« Reply #3 on: Oct 4th, 2002, 7:16am » |
Quote Modify
|
thanks Svenn... and have a great PF day... ree
|
|
IP Logged |
Proud Mom to US ARMY Kiowa OH58 PILOT~CWO2 SCOTT Hawaii, & USMC Vet~Now POLICE OFFICER SEAN, Citizen of the Month~ Breezy~ Nana 4 Matt/Mike&Aya, MIL To Shino Wife to Dave HI BILL!http://www.myspace.com/dungareespocket http://www.prohawaiian.com
|
|
|
|
|
|
Home
Help
Search
Members
Member Map
Login
Register
Reply
Notify of replies
Send Topic
Print
test rss