Main Menu
Home
Bookmark
Contact Us

Categories
  Adware
  Adware Bundler
  AOL Exploit
  Backdoor
  Browser Hijacker
  Browser Plug-in
  Commercial Key Logger
  Commercial Remote Control
  Cookie
  Dialer
  E-Mail Flooder
  Hostile ActiveX Control
  ICQ Exploit
  Joke Program
  Key Logger
  Loader
  Low Risk Adware
  Misc
  Nuker
  P2P
  Password Hijacker
  Potential Privacy Risk
  Potentially Dangerous Tools
  RAT
  Search Hijacker
  Security Disabler
  Spyware
  Stealth Notifier
  Surveillance
  Toolbar
  Trojan
  Trojan Downloader
  Trojan FTP
  Trojan Telnet
  Viruses
  Worm
 


 
Worm.Mytob.WindowsSystem Worm Information

Name: Worm.Mytob.WindowsSystem
Category: Worm
Advice: Remove
Risk: Severe Risk Severe threats typically are remotely exploitable vulnerabilities, which can lead to system compromise. Successful exploitation does not normally require any interaction and exploits are in the wild. There exists a high possibility of potential system damage or security flaw. Attacker has complete control over your computer or install new software on your machine.
Description: Worm.Mytob.WindowsSystem is a variant of the Mytob/Mydoom family. It is is a mass-mailing worm with IRC backdoor functionality.

This worm lowers system security by changing Internet Explorer security settings and changing settings in the Windows firewall. It can disable virus updates and block access to some security websites.

It has its own SMTP engine and can harvest email addresses from the infected computer and send infected emails.

It connects to an IRC (Internet Chat Relay) and waits for commands from it's creator. It can be made to download and install additional malware.
Signatures: process: wfdmgr.exe: MD5 Hash: 02984f669d4640d8227... process: msnmsgr.exe: MD5 Hash: 09bc90992e53eebb97b... process: 1hellbot.exe: MD5 Hash: 36365b604bd96fef6d5... process: internet.exe: MD5 Hash: 59d262988df9b50a4ba... process: taskgmr32.exe: MD5 Hash: 4a6b284fc35f467ae73... process: rnathchk.exe: MD5 Hash: cbd420a20a5abbb0c24... process: msmgrxp.exe: MD5 Hash: 75f583c9d3f23f7fd66... process: rnathchk.exe: MD5 Hash: 6606d7020cc5cfea31d... process: wincfg32.exe: MD5 Hash: 11d9a89655294a6dcec... process: nibie.exe: MD5 Hash: a5512f3db808a1a6477... process: wfdmgr.exe: MD5 Hash: 7ab71805c9fa8447c78... process: syscfg32.exe: MD5 Hash: b8682a965d30e472922... process: external.exe: MD5 Hash: 2862eede063988fe9a7... process: taskgmr.exe: MD5 Hash: 2ffb041cfd00b3a8a3f... process: test.exe: MD5 Hash: 7ee6745ec6bba9888d0... process: xxx.exe: MD5 Hash: 420376f209e84f0cc77... process: elite.exe: MD5 Hash: b7fb9f09d59d381689e... process: skybotx.exe: MD5 Hash: 12d6783e6abebdf0387... process: msmgrxp.exe: MD5 Hash: 4a663d219fc22b0caf7... process: ninfoie.exe: MD5 Hash: 0a86d1b15796322659d... process: beta.exe: MD5 Hash: faae5242c84d5aef25a... process: skynew.exe: MD5 Hash: 2c8ed0e5b669dac5da0... process: tasksmanagers.exe: MD5 Hash: d76be10c078afb9323d... process: msgmr.exe: MD5 Hash: 70fd09674316f7b1986... process: winsvc32.exe: MD5 Hash: d8531500d9107b5c1ba... process: wmisg.exe: MD5 Hash: a3c62b047c90179f8a5... process: shell.exe: MD5 Hash: 86866a8415ee83e6fea... process: test3.exe: MD5 Hash: d738c61f162a0160670... process: winupd32.exe: MD5 Hash: bee28a6297624e813e6... process: svchost32.exe: MD5 Hash: b84bebb9fcfd1a08b5b... process: nortonguard.exe: MD5 Hash: ce537f05a1730b28792... process: crc32stats.exe: MD5 Hash: a12211be37875a321cf... process: sky.exe: MD5 Hash: 94546a2190bc75e55a5... process: nec.exe: MD5 Hash: 6f353832f2b8e4012c3... process: nec.exe: MD5 Hash: c9fcf5dbcba53d289cc... process: nec.exe: MD5 Hash: 524060878ab721188dc... process: 1hellbot.exe: MD5 Hash: a11b5ec238c1de2c674... process: timemanager.exe: MD5 Hash: 9bf952d93d5d061a4cd... process: kaspersky.exe: MD5 Hash: 933396e6ce9bd86acbf... process: mssck.exe: MD5 Hash: 9792d384e6e7e79a517... process: winsvc32.exe: MD5 Hash: 352f4e1fcb1bd245af7... process: svchosts.exe: MD5 Hash: 45882b3c915350b2973... process: raloded.exe: MD5 Hash: 9c78c7aea664b67dc0e... process: wpwmgrs.exe: MD5 Hash: bac3aec35e5ac0549f1... process: nvhost.exe: MD5 Hash: 3c14df333b80798ee79... process: gothica.exe: MD5 Hash: 221960a56e284a49fe5... process: matrixcam.exe: MD5 Hash: 08d0f9b19e1c25fc489... process: wfdmgr.exe: MD5 Hash: 0b91f7450059e313718... process: external.exe: MD5 Hash: 98a365c79c5a13122d5... process: mailinfo.exe: MD5 Hash: 95de9f4fd29ac114dd9..
Type: Worm - A worm is program that propagates by attacking other computers and copying itself to them. Worms may replace files, but do not insert themselves into files (as viruses do).



Top Worm Visited Pages:
Wukill.mstray - Alias: Win32/HLLW.Wukill - 285 visits
Rbot - Alias: Backdoor.Rbot.Gen - 273 visits
SDBot - Alias: Wootbot.gen, Wootbot, Donk, spybot, Agobot - 225 visits
Trojan.Downloader.winstall - 179 visits
Worm.Brit.e - Alias: VBS/Chick.e@M virus - 86 visits
Worm.P2P.SpyBot.gen - 54 visits
Gaobot - 43 visits
Worm.Trilissa.e - 41 visits
Win32/Darby.O - 40 visits
JS.Lame - Alias: HTML.Lame - 39 visits

Random Worm Pages:
Worm.Ley
Worm.Paukor.c
ChkRootKit Worm
Worm.Youdgos.a
Virus.EnerKaz.worm.e - Alias: I-Worm.P2P.Sambud.b
Worm.Lee
IRC.Worm.Girls - Alias: W32/Girls.worm
VCards 1.0
Virus.Spybot Worm
Greetings


 

© 2006-2008 spyware32.com - Privacy Policy