Sunday, May 23, 2010

Heres a new virus warning-if you are interested[sophos security email]]?

Name: W32/Vanebot-AW


Aliases: Generic.dx, Backdoor.Win32.VanBot.ax


Type: Win32 worm


Date: 17 June 2007








Sophos has issued protection for W32/Vanebot-AW.





At the time of writing, Sophos has received a small number of


reports of this Win32 worm from the wild.








Customers using EM Library, Enterprise Console, PureMessage, a


Sophos email security appliance, or any of our Sophos small


business solutions will be automatically protected at their next


scheduled update.





Information about W32/Vanebot-AW can be found at:


http://www.sophos.com/sl/va/security/ana...





The W32/Vanebot-AW virus identity file (IDE) includes detection for:





Troj/Dial-DH


http://www.sophos.com/sl/va/security/ana...


Troj/BHO-CJ


http://www.sophos.com/sl/va/security/ana...


Troj/BHO-CK


http://www.sophos.com/sl/va/security/ana...


Troj/BHO-CL


http://www.sophos.com/sl/va/security/ana...


W32/Poebot-MB


http://www.sophos.com/sl/va/security/ana...








Customers with 4.1x or lower versions of Sophos Anti-Virus,


who are not running EM Library, can manually download the IDE


for W32/Vanebot-AW from:








http://www.sophos.com/sl/va/downloads/id...








Read about how to use IDE files at


http://www.sophos.com/support/knowledgeb...
Heres a new virus warning-if you are interested[sophos security email]]?
This may be a new worm but the method in which it spreads is very old.If you want to protect yourself against this then make sure you run windows update and patch up windows XP/2000.Also do not open any email attachments unless your 100% certain you know what the attachment is.If you need anymore help then please contact me.
Reply:Thx.
Reply:thanku
Reply:Thank you
Reply:Thanks.





Looks like Windows systems that are fully updated and patched are immume from this malware.





"W32/Vanebot-AW spreads


- to computers vulnerable to common exploits, including: LSASS (MS04-011), SRVSVC (MS06-040), RPC-DCOM (MS04-012) and PNP (MS05-039)


- to network shares"


http://www.sophos.com/security/analyses/...





Another good reason to always keep ones Windows always updated!
name popular
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)
 

email security © 2008. Design by: Pocket Web Hosting