New virus out there that's spreading rapidly?

Toggle sidebar Toggle sidebar
DrPizza

DrPizza

Administrator Elite Member Goat Whisperer
Mar 5, 2001
49,601
167
111
www.slatebrookfarm.com
Got this in a forwarded email:
I wanted to give everyone a heads up that there is a Virus running rampant in the world. Looks like it came out late on November 22, and as of late yesterday (November 27), it has spread very quickly around the world. There isn’t a specific name for it, and all of the AntiVirus companies are scrambling to come up with a fix. We have been in contact with our AV vendor, who indicated that they have identified the effects of the virus and are working on a fix…

At the moment, the way to know if you have it, is that all of your files and folders are “hidden”, NOT deleted. And, files are dropped into directories with the name of sexy.exe, porn.exe, secret.exe, and password.exe. These .exe files are the virus, if you click these, it will search through all of your drives and hide everything. If you have a USB drive, the virus will be written here, for transport…

Keep this in mind when using your own personal computers at home, and most importantly, your USB drives are vulnerable. Be sure to update your AV definitions on a nightly basis.
Click to expand...


Just a heads up. I heard that an area university "lost" much of their network.
 
mechBgon

mechBgon

Super Moderator<br>Elite Member
Oct 31, 1999
30,699
1
0
Anyone interested in disabling the AutoRun attack vector can scroll down this Microsoft knowledge-base page and look for the Fix-It icons:

http://support.microsoft.com/kb/967715

This arbitrarily prevents all forms of AutoRun, malicious or otherwise, so it's a trade-off of some ease of use versus security. AutoRun worms are very common, so I opt for security.

A further countermeasure: Software Restriction Policy. If you want heavy-duty protection from exploit payloads and userland malware, it may be worth the effort. http://www.mechbgon.com/srp
 
Demo24

Demo24

Diamond Member
Aug 5, 2004
8,356
9
81
This has happened on a couple of the older xp machines I manage, but months ago. Its definitely not the first to do this. Its certainly neat, but annoying. The last one I've dealt with hid everything, even program files, start menu, messed with my computer, messed with device manager and made it impossible to mount any devices. Pretty thorough and I don't even know what the point was, but it created some troubles to get the files off.
 
MrColin

MrColin

Platinum Member
May 21, 2003
2,403
3
81
mechBgon said:
Anyone interested in disabling the AutoRun attack vector can scroll down this Microsoft knowledge-base page and look for the Fix-It icons:

http://support.microsoft.com/kb/967715

This arbitrarily prevents all forms of AutoRun, malicious or otherwise, so it's a trade-off of some ease of use versus security. AutoRun worms are very common, so I opt for security.

A further countermeasure: Software Restriction Policy. If you want heavy-duty protection from exploit payloads and userland malware, it may be worth the effort. http://www.mechbgon.com/srp
Click to expand...

Even still, do I have the willpower not to run sexy.exe as admin? It could be...really, really sexy, damn those malware authors!
 
You must log in or register to reply here.

TRENDING THREADS

COMPANY
RESOURCES
FOLLOW
Top Bottom