Clusterheadaches.com Message Board (http://www.clusterheadaches.com/cgi-bin/yabb/YaBB.cgi)
New Message Board Archives >> 2003 Posts >> New bastard is out amigoes  
(Message started by: Svenn on Aug 29th, 2003, 12:39pm)

Title: New bastard is out amigoes  
Post by Svenn on Aug 29th, 2003, 12:39pm
Virus W32.Dumaru@mm

Better check and update your antivirus&firewallprograms

Take care


Svenn

Title: Re: New bastard is out amigoes  
Post by Kirk on Aug 29th, 2003, 12:51pm
Script kiddies, gotta love the little bastards. Guess they have to practice onsomeone.
Oh well be careful out there.


TTFN

Title: Re: New bastard is out amigoes  
Post by Linda_Howell on Aug 29th, 2003, 3:46pm
Thanks, as always, to our virus guru.

And to think that before I had a new computer I didn't have to worry about this stuff.    sigh........LindaH

Title: Re: New bastard is out amigoes  
Post by TomM on Aug 29th, 2003, 3:50pm
Heard the FBI found the person who wrote the MSBlaster worm. I hope they make him/her write code for 7-11's slurpee machines.

Title: Re: New bastard is out amigoes  
Post by Linda_Howell on Aug 29th, 2003, 3:51pm
OMG.........LMAO Tom.

   Even I got that one...

LindaH

Title: Re: New bastard is out amigoes  
Post by Mark C on Aug 29th, 2003, 4:44pm
http://tinyurl.com/ln2d


Jeffrey Lee Parson, 18, of Hopkins, Minnesota, a middle- class suburb west of Minneapolis, was arrested on one count of intentionally causing or attempting to cause damage to a computer, according to a St. Paul district court clerk. (http://www.washingtonpost.com/ac2/wp-dyn/A64925-2003Aug29?language=printer)

Title: Re: New bastard is out amigoes  
Post by fubar on Aug 29th, 2003, 5:05pm
More info for you [from McAfee]

What are the common subject lines, attachment names and message content associated with W32/Dumaru.a@MM emails?

Subject:
Use this patch immediately !
Attachment:
patch.exe

From:
"Microsoft" security@microsoft.com

Body:
Dear friend , use this Internet Explorer patch now! There are dangerous virus in the Internet now! More than 500.000 already infected!


How do you know if you've been infected?

The worm copies itself onto an infected machine as:
C:\WINNT\dllreg.exe
C:\WINNT\SYSTEM\load32.exe
C:\ WINNT\SYSTEM\vxdmgr32.exe
The PWS-Narod Trojan is copied to the Windows directory as windrv.exe



Clusterheadaches.com Message Board » Powered by YaBB 1 Gold - SP 1.3.1!
YaBB © 2000-2003. All Rights Reserved.