W32.Sircam.Worm@mm contains its own SMTP engine, and propagates in a manner similar to the W32.Magistr.Worm. Due to what appears to be a bug, W32.Sircam.Worm@mm does not replicate under Windows NT, 2000, or XP. Symantec Security Response has created a tool to remove this worm. CAUTION: In ...

Symantec has not seen any significant increase in activity due to the re-activation of the emailing routine after its initial 10 day sleep period. W32.Nimda.A@mm is a mass-mailing worm that utilizes multiple methods to spread itself. The name of the virus came from the reversed spelling of admin.

W32.Klez.H@mm is a modified variant of the worm W32.Klez.E@mm. This variant is capable of spreading by email and network shares. It is also capable of infecting files. Removal tool Symantec has provided a tool to remove infections of all known variants of W32.Klez and W32.ElKern. Click here ...

Due to the increased rate of submissions, Symantec Security Response has upgraded the threat level of this worm from level 3 to level 4 as of November 26, 2001. W32.Badtrans.B@mm is a MAPI worm that emails itself out using different file names. It also creates the file \Windows\System\Kdll.dll.

Symantec Security Response has identified 82 variants of this worm. The latest is VBS.LoveLetter.CN. Virus definitions dated May 31, 2001, or later detect and remove all of these known variants. Occasionally new variants of this worm are discovered. Norton AntiVirus may, at times, detect these ...

Options Advisories Vulnerability Notes Database Incident Notes Current Activity Related Summaries Tech Tips AirCERT Employment Opportunities more links CERT Statistics Vulnerability Disclosure Policy CERT Knowledgebase System Administrator courses CSIRT courses Other Sources of Security Information Channels ...

Due to a decreased number of submissions, Symantec Security Response is downgrading W32.Goner.A@mm from a threat rating of Category 3 to Category 2. W32.Goner.A@mm is a mass-mailing worm that is written in Visual Basic. The worm has been compressed using a Portable Executable (PE) file compressor.

Due to a decreased rate of submissions, Symantec Security Response has downgraded this threat from a Category 4 to a Category 3 as of December 10, 2001. W95.MTX has a virus component and a worm component. It propagates by email. It also infects some Win32 executables in specific folders. The ...

W32.Myparty@mm is a mass-mailing email worm. This worm is capable of spreading itself only between January 25, 2002, and January 29, 2002. However, it remains active on infected computers after this period of time. It has the following characteristics: Subject: new photos from my party! Message: Hello! My ...

Options Advisories Vulnerability Notes Database Incident Notes Current Activity Related Summaries Tech Tips AirCERT Employment Opportunities more links CERT Statistics Vulnerability Disclosure Policy CERT Knowledgebase System Administrator courses CSIRT courses Other Sources of Security Information Channels ...

F-Secure provides Security Software, Anti-Virus and Cryptography Centralized Policy Management, Wireless Security, Network Security, Virtual Private Networks ...

This worm program behaves similarly to Happy99 Worm. It was originally spread by email. When the attached program file, PrettyPark.exe, is executed, it may display the 3D pipe screen saver. Once the worm program is executed, it tries to email itself automatically every 30 minutes (or 30 minutes ...

Due to a decrease in submissions, SARC has downgraded the threat level of this virus from a 4 to a 3. VBS.SST@mm is a VBS email worm that has been encoded using a virus creation kit. This worm arrives as an attachment named AnnaKournikova.jpg.vbs. When executed, the worm emails itself to everyone ...

Options Advisories Vulnerability Notes Database Incident Notes Current Activity Related Summaries Tech Tips AirCERT Employment Opportunities more links CERT Statistics Vulnerability Disclosure Policy CERT Knowledgebase System Administrator courses CSIRT courses Other Sources of Security Information Channels @ win\Recycled\SirC32.exe to AUTOEXEC.BAT If the share contains a Windows folder, it also ...

Due to a decrease in submissions, this worm has been downgraded to a threat level 2 as of December 7, 2000. This worm appears as an attachment named Life_stages.txt.shs. When you run the attachment it opens a text file in Notepad. The text file describes the male and female stages of life.

Due to a reduced number of submissions, SARC has downgraded VBS.VBSWG2.X@mm from a level 3 to a level 2 as of Apr 4, 2002. VBS.VBSWG2.X@mm is an encrypted VBScript worm that sends itself to all recipients in an infected users Microsoft Outlook address book. It also has a payload that opens ...

1995-2002 Symantec Corporation. All rights reserved. Legal Notices Privacy Policy Introduction The KILL_CIH tool is designed to safely detect and remove all known strains of the W95.CIH (Chernobyl) virus (known strains as of August 3rd, 1998) from memory under Windows 95 and Windows 98 (the W95.CIH virus cannot infect Windows NT systems). If the tool is run before the virus has infected the ...

1995-2002 Symantec Corporation. All rights reserved. Legal Notices Privacy Policy W97.Melissa.A W97M.Melissa.A is a Word 97 macro virus that has a payload to email itself using MS Outlook. The subject of the e-mail is Important Message From USERNAME . Also known as: W97M.Mailissa Category: MACRO, WORM Infection length: One macro module Virus definitions: April 1, 1999 Threat assessment: ...

The Trojan horse applications discussed within this website are remote administration hacker utilities that will allow a user to control another user's computer across the Internet. Trojan horse applications can provide equal, if not more control of a remote PC system than the person sitting at its keyboard.

F-Secure provides Security Software, Anti-Virus and Cryptography Centralized Policy Management, Wireless Security, Network Security, Virtual Private Networks ...

Options Advisories Vulnerability Notes Database Incident Notes Current Activity Related Summaries Tech Tips AirCERT Employment Opportunities more links CERT Statistics Vulnerability Disclosure Policy CERT Knowledgebase System Administrator courses CSIRT courses Other Sources of Security Information Channels ...

VBS.BubbleBoy is a worm that works under Windows 98 and Windows 2000. The worm also works under Windows 95, but only if the Windows Scripting Host is installed. The worm only works with the English and Spanish versions of these operating systems, and does not work under Windows NT. The computer ...

W32.Prolin.Worm uses Microsoft Outlook to email a copy of itself to everyone in the Outlook address book. The worm moves all .mp3, .jpg, and .zip files to the root folder. It renames each of these files and appends the following text to the extension of each file: change atleast now to LINUX ...

VBS.Freelink is an encrypted worm that works under Windows 98, Windows 2000, and all the other Windows versions that support the VBScripting language. Once the worm is launched, it uses Microsoft Outlook to automatically send an email with an attachment of itself. ...

Buy Products Try Products Download Updates Products Downloads Support Services AVERT Partners About McAfee Virus Alerts Anti-Virus Updates Virus Information Library - Newly Discovered Threats - Recently Updated Threats - Hoaxes - Avert Risk Assessment - Virus Calendar - White Papers - Virus Glossary AVERT Research Center AVERT WebImmune Virus Name Risk Assessment W32/Badtrans@MM Corporate User : ...

This worm uses the MSN Messenger Service (MSNMS) program to replicate; it is the second worm that is known to do so. The worm itself does nothing more than replicate, and if it is executed on a computer that does not have MSNMS installed, it simply remains resident in memory without replicating.

1995-2002 Symantec Corporation. All rights reserved. Legal Notices Privacy Policy BAT911.Worm BAT911.Worm is an Internet worm that uses .bat files to search through a range of IP addresses of known ISPs to find an accessible computer. If an accessible computer shares its C drive, it copies its files onto the other computer. Also known as: BAT.Chode.Worm, Chode, Foreskin, BAT911, 911 Worm, W95.

Buy Products Try Products Download Updates Products Downloads Support Services AVERT Partners About McAfee Virus Alerts Anti-Virus Updates Virus Information Library - Newly Discovered Threats - Recently Updated Threats - Hoaxes - Avert Risk Assessment - Virus Calendar - White Papers - Virus Glossary AVERT Research Center AVERT WebImmune Virus Name Risk Assessment W95/MTX.gen@M Corporate User : ...

Options Advisories Vulnerability Notes Database Incident Notes Current Activity Related Summaries Tech Tips AirCERT Employment Opportunities more links CERT Statistics Vulnerability Disclosure Policy CERT Knowledgebase System Administrator courses CSIRT courses Other Sources of Security Information Channels ...

Buy Products Try Products Download Updates Products Downloads Support Services AVERT Partners About McAfee Virus Alerts Anti-Virus Updates Virus Information Library - Newly Discovered Threats - Recently Updated Threats - Hoaxes - Avert Risk Assessment - Virus Calendar - White Papers - Virus Glossary AVERT Research Center AVERT WebImmune Virus Name Risk Assessment W32/SirCam@MM Corporate User : ...

Brought to you by Coastline.com Web Hosting traduccion Espa ol The world had never seen a computer virus spread so rapidly. Melissa, a MS Word-based macro that replicates itself through e-mail, emerged from nowhere to overwhelm commercial, government and military computer systems. The FBI launched the largest Internet man-hunt ever. The suspect David L. Smith was caught. MelissaVirus.com ...

F-Secure provides Security Software, Anti-Virus and Cryptography Centralized Policy Management, Wireless Security, Network Security, Virtual Private Networks ...

F-Secure provides Security Software, Anti-Virus and Cryptography Centralized Policy Management, Wireless Security, Network Security, Virtual Private Networks ...

F-Secure provides Security Software, Anti-Virus and Cryptography Centralized Policy Management, Wireless Security, Network Security, Virtual Private Networks ...

W32.Plage.Worm is a memory resident worm discovered on Jan 13, 2000. The worm replies on MAPI32 and propagates by replying to unread email with the following message body: Ill try to reply as soon as possible. Take a look to the attachment and send me your opinion! ...

F-Secure provides Security Software, Anti-Virus and Cryptography Centralized Policy Management, Wireless Security, Network Security, Virtual Private Networks ...

F-Secure provides Security Software, Anti-Virus and Cryptography Centralized Policy Management, Wireless Security, Network Security, Virtual Private Networks ...

F-Secure provides Security Software, Anti-Virus and Cryptography Centralized Policy Management, Wireless Security, Network Security, Virtual Private Networks ...

VBS.VBSWG.AF is a Visual Basic Script (VBS) threat that can overwrite .vbe or .vbs files with a copy of itself. It attempts to send itself using MAPI email, but the attempt fails due to bugs in the script. In an attempt to distribute itself using Internet Relay Chat (IRC), it may also modify ...

W32.Vote.gen@mm is a mass-mailing worm that is written in Visual Basic. When it is executed, it emails itself to all email addresses in the Microsoft Outlook address book. The worm inserts three .vbs files on the system. It also modifies the Internet Explorer home page. W32.Vote.gen@mm is a variant ...

This worm attempts to spread itself to computers that have been compromised by Linux.Lion.Worm, and to remove the security hole that allowed the replication to occur. It is not considered harmful, but it is a misguided attempt to address a security issue.

Happy99 , Detecting and removing this trojan from your computer ...

NOTE: Due to a decrease in the number of submissions for this worm, Symantec Security Response has downgraded the threat level of this worm from 3 to a2. VBS.VBSWG2.Z@mm is an encrypted VBScript worm that sends itself to all recipients in your Microsoft Outlook address book. It arrives as the ...

Linux.Lion is a dangerous Linux worm that infects computers running Linux. This worm is similar to Linux.Ramen and does not execute on systems running Microsoft Windows.

Buy Products Try Products Download Updates Products Downloads Support Services AVERT Partners About McAfee Virus Alerts Anti-Virus Updates Virus Information Library - Newly Discovered Threats - Recently Updated Threats - Hoaxes - Avert Risk Assessment - Virus Calendar - White Papers - Virus Glossary AVERT Research Center AVERT WebImmune Virus Name Risk Assessment W32/Vote.a@MM Corporate User : ...

W32.Pokey.Worm is a worm that propagates as an attachment by email. When the attachment is executed, it will display an animation of a Pokemon character. The worm also has a payload that deleted the contents of the \Windows and \Windows\System folders. ...

Buy Products Try Products Download Updates Products Downloads Support Services AVERT Partners About McAfee Virus Alerts Anti-Virus Updates Virus Information Library - Newly Discovered Threats - Recently Updated Threats - Hoaxes - Avert Risk Assessment - Virus Calendar - White Papers - Virus Glossary AVERT Research Center AVERT WebImmune Virus Name Risk Assessment W32/Choke.a.worm Corporate User ...

The W32/Goner worm began circulating on December 4th.

Caught Happy99.exe Here's the cure! Rid your computer of the happy99 virus with simple instructions ...

F-Secure provides Security Software, Anti-Virus and Cryptography Centralized Policy Management, Wireless Security, Network Security, Virtual Private Networks ...