Computer Viruses

MyDoom - Beagle - Netsky
What Next???

The Latest MS Word Security Exploit Thwarted by AVG Anti-Virus

By keeping your AVG virus database regularly updated, you can be sure you have nothing to fear from the latest security hole in the Microsoft Word application! This security exploit enables a specially modified file that is disguised as an e-mail attachment with a Word document to start some arbitrary code that can cause serious damage to your computer. Get more information and protection against the MS Word exploit.
May 23, 2006

Here are some Anti-Virus Resources

• Visit http://housecall.trendmicro.com/housecall/start_corp.asp to do a complete virus scan of your computer for the most recent viruses.
• 'MyDoom' removal tool at Norton click here.
• Virus Stinger Tool at Mcafee click here.
• Check out Grisoft for their Free Anti-virus Program.
• Other Anti-virus programs:

Norton

McAfee

PC Security Shield

Grisoft

Latest security threats

I-Worm/Nuwar
<p>Propagation method of new Nuwar variant is still similar to its precedessors. Spammed mails with link in IP format directs users to the worm web pages where the users are prompted to download one of the worm files with the name <span style="font-weight: bold;">funny.exe</span>. Names of other downloadable files are <span style="font-weight: bold;">kickme.exe</span> and <span style="font-weight: bold;">foolsday.exe</span>. AVG detects this threat as <span style="font-weight: bold;">I-Worm/Nuwar.R</span>.</p>

Win32/Mabezat.A
<p>In last few days we`ve registered a larger amount of PE files infected by this virus. Win32/Mabezat is polymorphic file infector which infects PE files. More information could be found in our <a href="http://www.avg.com/ca-en/virbase?nam=win32%2Fmabezat">Virus Encyclopedia</a>.</p>

Trojan Downloader.Agent.UZM
<p>A new Trojan Downloader was spammed today. Trojan is attached in zip archive to emails in HTML format with subject "Hot game" and body text that claims some Angelina Jolie or Lara Croft undressing game. xgame.zip attachment contains xgame.exe (20992B) which drops executes and deletes kernel driver C:\WINDOWS\System32\drivers\runtime.sys and downloads another downloader smartdrv.exe. runtime.sys runs injects and hides Iexplore.exe process and downloads another components. xgame.exe is detected as <b>Trojan Downloader.Agent.UZM</b>, smartdrv.exe is detected as <b>Trojan Downloader.Agent.UZN</b>, runtime.sys is detected as <b>Trojan Downloader.Agent.THW</b> and other downloaded components are detected as several variants of <b>Trojan Backdoor.Ntrootkit</b>.</p>

I-Worm/Stration downloader
<p>Next Stration downloader variant spreads by email in messages with randomly generated subject and body with two attachments. PDF attachment is harmless but EXE attachment which is 18708B long is downloader itself and AVG detects it as <b>I-Worm/Stration</b>. More information about Stration worm familly can be found in the <a href="http://www.avg.com/ca-en/virbase?nam=I-Worm%2FStration">Virus Encyclopedia</a>.</p>