NetNet :: Virus Alerts
Got a Bug Problem?
We’ve got the solution.
Virus removal for $20
It seems like everyday there’s news about a new virus. And the bugs are invading our computers via email – causing our PC’s to slow down, crash… or worse.
If you suspect that your PC might be infected by a computer virus or bug, NetNet has a deal for you. For just $20, NetNet customers can bring in their computers into our office and we’ll completely remove any viruses running rampant on your machine. If you’re not a NetNet customer, we’ll provide the same de-bugging for just $60 an hour (a rate that’s just a fraction of what PC specialists typically charge.)
In fact, we’re so crazy about zapping internet bugs, that if you sign up for any of our internet connection services, we’ll exterminate your PC for free! Plus you get NetNet’s connection to the world and ongoing customer support.
You can’t afford not to take advantage of this offer!
Call NetNet today. 617-7040
===========================================
W32.Amirecivel.E@mm
W32.Amirecivel.E@mm is a mass-mailing worm that also spreads through file-sharing networks. The worm requires Microsoft .Net Framework 2.0 in order to run.
Systems Affected: Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows XP
More information can be found, as well as removal procedures on Symantec's Site by clicking HERE
===========================================
MSIL.Letum.A@mm
MSIL.Letum.A@mm is a worm written in Microsoft .NET's Microsoft Intermediate Language (MSIL) that can affect both Windows PC and Windows Mobile powered devices that have the .NET framework installed. The worm arrives as an attachment to a spoofed email that pretends to come from Symantec and also spreads through Usenet servers.
More information can be read on Symantec's Site by clicking HERE
===========================================
Kama Sutra Worm
The Kama Sutra virus is a worm that will destroy any sensitive documents in such programs as Microsoft Word, Excel and other Microsoft Office applications.
Announced on CNN today, details could can be read by clicking here
As always we suggest that you keep your anti-virus protection up to date, don't open any unknown attachments from email address that you don't recognize. This email should be recognized by a link promising delivery of pictures or movies of "Adult" content.
===========================================
W32.Mytob.ME@mm
W32.Mytob.ME@mm is a mass-mailing worm that opens a back door and lowers security settings on the compromised computer.
Systems Affected: Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows XP
For more information about this virus, click here
===========================================
BackDoor.Ryknos
Backdoor.Ryknos is a Trojan horse that attempts to utilize the SecurityRisk.First4DRM security risk to hide itself on the compromised computer.
Systems Affected: Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows XP
For more information about this virus, click here
===========================================
W32.Zotob.E
W32.Zotob.E is a worm that exploits the Windows Plug and Play Buffer Overflow vulnerability by opening a back door on TCP Port 445. The W32.Zotob.E virus primarily affects Windows 2000 based systems but can be a carrier through the remaining windows versions. (NT/95/98/ME/XP) These versions of windows will not be affected by the virus, but will instead infect any Windows 2000 computers it may connect to.
For more information about this virus, click here.
To download the W32.Sober.O removal tool, click here.
=====================================================
W32.Sober.O
W32.Sober.O is a mass-mailing worm that uses its own SMTP engine to spread to multiple addresses gathered from an infected computer. The virus begins by displaying a error box which says "Error: CRC not complete". Then it will replicate itself into various locations so that if it was ever removed it could easily reinstall itself. The virus will then accumulate a list of stored email addresses on the infected computer and begin sending itself to the addresses on the created list. The virus sends itself to the email addresses via an attachment in either German or English with a subject line of one of the following:
-
Re: Your Password
-
Re: Registration Confirmation
-
Re: Your Email was blocked
-
Re: Mailing Error
-
Re: [blank]
The Virus also with have attachments with the following names to them:
-
our_secret.zip
-
mail_info.zip
-
error-mail_info.zip
-
account_info.zip
-
account_info-text.zip
The virus will also target your Norton Liveupdate Program if it is installed and remove it from your computer.
For more information about this virus, click here.
To download the W32.Sober.O removal tool, click here.
===============
W32.Beagle.AZ
W32.Beagle.AZ is a mass-mailing worm that uses its own SMTP engine to spread to multiple addresses gathered from an infected computer. The virus begins by removing out registry entries and files that may be associated with other types of Malware in order to prevent them from accessing the internet. Then it will replicate itself into various locations so that if it was ever removed it could easily reinstall itself. The virus will then accumulate a list of stored email addresses on the computer and begin sending itself to the email addresses on the created list. This email will appear with a subject line of Delivery by mail, Delivery service mail, Is delivered mail, Registration is accepted or You are made active. This email will include an attachment that will contain the virus.
For more information about this virus, click here.
To download the W32.Beagle.AZ removal tool, click here.
===============
W32.Sober.I
W32.Sober.I is a mass-mailing worm that uses its own SMTP engine to spread to multiple addresses gathered from an infected computer. The virus will create new files in the registry, which will cause the virus to run every time windows starts. The virus will send itself via email to all addresses found on the infected machine. The infected virus can have multiple subject lines and may appear to be coming from the owner of the infected machine. The virus will be contained in an attachment form with a .txt, .doc, .word, .xls or .eml extension.
For more information about this virus, click here.
To download the W32.Sober.I removal tool, click here.
==================
W32.Beagle.AV
W32.Beagle.AV@mm is a mass-mailing worm that also spreads through file-sharing networks.
The worm will open a backdoor on your computer and use its own mailing engine to spread
itself to other random contacts that may be saved on the infected computer. Charecteristics
of the spoofed email include a subject line that typically reads Re: , Re: Hello, Re: Hi,
Re: Thank you!, Re: Thanks :). These messages also include an attachment that is usually
named Price, price or joke.
For more information about this virus, click here.
For the Beagle.AV removal tool, click here.
=================
W32.Beagle.AO
The W32.Beagle.AO virus is a mass mailing virus that will use it's own mailing engine to spread itself to other random contacts. It will also attempt to open a backdoor on port 80 to allow the computer to act as an email relay. This virus will have an attachment where the actual virus is contained. The subject will usually be empty and the message body will almost always display (New Price) The attached file will also have something in it with the word price. (Price_08, Price_new etc..)
For more information about this virus, click here.
For the Beagle.AO removal tool, click here.
=================
W32.Mydoom.M
The W32.Mydoom.M virus is a mass mailing virus that will use it's own mailing engine to spread itself to other contacts it may find on an infected users computer. It will also attempt to open a backdoor on port 1034 to allow a user on the other end to search for more hosts. This virus will have an attachment where the actual virus is contained. The subject will usually contain a mail delivery failure message or a message about your account. The message body will almost always appear as though it came from the customers internet service provider in an attempt to get them to open the infected attachment.
For more information about this virus, click here.
For the Mydoom.M removal tool, click here.
===================
W32.Beagle.AB
The W32.Beagle.AB virus is a mass mailing virus that will use it's own mailing engine to spread itself to other random contacts. This virus will have an attachment where the actual virus is contained. The subject will contain a number of different sayings. (Re: Hello, Re: Yahoo, Re: Hi, Re: Thanks! :), Re: Document, Site Update) The message body will almost always mention something about needing a password in order to open the attachment.
For more information about this virus, click here.
For the Beagle.AB removal tool, click here.
=================
W32.Korgo.F
The W32.Korgo.F Worm is a virus that will exploit the LSASS vulnerability described by Microsoft Security Bulletin MS04-011 and will spread by scanning randomly-chosen IP addresses for vulnerable systems. The most common symptom of the virus is a computer that refuses to shut down. This virus attacks vulverabilites in Windows Server 2003, Windows XP, and Windows 2000 only. Windows 95/98 and Windows ME users should be safe from this virus. In order to remove and prevent this virus from coming back, download and run the Microsoft Security Patch, and Korgo.F removal tool found below.
For more information about this virus, click here.
For the Korgo.F removal tool, click here.
For the Microsoft Security Update to prevent this attack, click here.
====================
W32.MiMail.J@mm
The w32.Mimail.J virus is a mass emailing worm that will attempt to steal personal information about a customer. The virus will usually display a series of forms which ask a customer to enter in their credit card information and will also have a subject line claiming to be from PayPal. The message will tell you not to respond to the email in an attempt to make a customer believe it is a genuine email from PayPal. The message body will usually have a statement saying that your PayPal account will expire in 5 days. It will then tell you to enter a credit card number to reactivate the account.
For more information about this virus, click here.
For the Mimail.J removal tool, click here.
======================
W32.Sasser.B.Worm
The W32.Sasser.B.Worm is a virus that will exploit the LSASS vulnerability described by Microsoft Security Bulletin MS04-011 and will spread by scanning randomly-chosen IP addresses for vulnerable systems. The most common symptom of the virus is a computer that repeatedly shuts itself down. This virus attacks vulverabilites in Windows Server 2003, Windows XP, and Windows 2000 only. Windows 95/98 and Windows ME users should be safe from this virus. In order to remove and prevent this virus from coming back, download and run the Microsoft Security Patch, and Sasser.B removal tools found below.
For more information about this virus, click here.
For the Sasser.B removal tool, click here.
For the Microsoft Security Update to prevent this attack, click here. |
