• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Where could i have gotten the W32.HLLW.Bymer Dnet worm?

S

soulm4tter

Senior member
I recently got this worm and have no idea how. Its nasty and made my systems hang all the time and rendered my network inoperable. Did i get fron a distributed.net client? Or somewhere else?
 
As far as I know, the only way to get it is if you have open shares exposed to the world. Bymer is some turd who's been spreading that crap around for a while. There should be a de-wormer at Dnet's site.

Russ, NCNE
 
The virus is passed through open network shares. Part of the payload it has is the dnet client. You would not have gotten the virus through the client, but the client through the virus.

You can check it out at dnet Section # 3 is the one you have.


S.
 
I have to agree with Russ. I caught it becuase I had open shares without any password protection. Hopefully everything is working properly now. I used the "de-wormer" on d.net's site, and it took care of everything.
 
After you get de-wormed, you might want to head over to Gibson Research and run Shield's Up. It will tell you of your system vulnerabilities, and the site is chock full of security tips.

Russ, NCNE
 
soulm4tter,
if you read the Symantec info, the payload may be the distributed.net client, which means this can be the "virus" the trojan places on the PC. It isn't the carrier. It also explains that just as Russ stated, that it infects PCs that have shared folders open to the Internet. check your network settings, and uncheck File and Print sharing for your Internet connection.


DNET has a de-wormer here: Dewormer

Symantec's definition of DNET: Symantec DNET Definition

Also, if you are using a DSL, ISDN, or Cable modem connection that's up 24x7, you should install a personal firewall.

ZoneAlarm has an easy to use one that is free: ZoneAlarm

I also recommend going to the Shields Up site and testing your access.

Sorry you got infected with that scum's crud. :|

Good luck cleaning it out. 🙂
 
Note: Bymer ay contain a CIH varient due to it's auto-execution nature.:Q
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top