PRODUCTS > Computer Virus Alerts - Maintenance
Virus alerts for Jan 2005
Current virus alerts here.
Computer virus alert
By the time you receive the e-mail 'virus alert' it can be too late!
We stock the most efficient anti virus program which checks for updates hourly

Contact Us for a one month free antivirus trial.
Add "Virus Trial" to the Comments area.
Free trial antivirus

Virus Alerts July 2005

July 29 2005 - Mobile Threat - SYMBOS_SKUDOO.A

SYMBOS_SKUDOO.A is Symbian malware that may be downloaded from the Internet or copied from other mobile devices. It is currently spreading in-the-wild and infecting mobile devices running the Symbian operating system with the Series 60 Platform user interface. The 60 Series Platform Interface is licensed by various mobile phone manufacturers including LG Electronics, Lenovo, Nokia, Panasonic, Samsung, Sendo, and Siemens.

Upon installation, it drops malicious files, detected as the following:

* SYMBOS_CABIR.A
* SYMBOS_CABIR.C
* SYMBOS_COMWAR.B
* SYMBOS_SKULLS.I
* SYMBOS_SKULLS.F

Some of the mobile phone models it affects are as follows:

* Nokia 3600
* Nokia 3620
* Nokia 3650
* Nokia 3660
* Nokia 6600
* Nokia 6620
* Nokia 7610
* Nokia 7650
* Nokia N-Gage
* Panasonic X700
* Sendo X
* Siemens SX1

Contact Us for a free antivirus trial to the end of this month.
Add "Virus Trial" to the Comments area.
Free trial antivirus

Top 10 Most Prevalent Global Malware
(from July 22 to July 28, 2005)

1. JAVA_BYTEVER.A
2. HTML_NETSKY.P
3. SPYW_GATOR
4. TSPY_SMALL.SN
5. SPYW_DASHBAR.300
6. WORM_NETSKY.P
7. WORM_SOBER.K
8. TROJ_DYFUCA.I
9. SPYW_WEBSEARCH.A
10. ADW_HOTBAR.A

July 22 2005 - AIM Worm - WORM_OPANKI.W

WORM_OPANKI.W is a memory-resident worm that spreads via AOL Instant Messenger (AIM). It sends a link to all available AOL contacts it finds in an affected system, and when clicked, it downloads the worm onto the system. This worm is currently spreading in-the-wild and infecting computer systems running Windows 95, 98, ME, NT, 2000, and XP.

Upon execution, this worm drops a copy of itself in the Windows system folder as either GGFIG.EXE or XMCONFIG.EXE. It also drops the file MSDIRECTX.SYS which is detected by NOD32 as TROJ_ROOTKIT.H. It creates registry entries that allow it to automatically execute during every Windows startup, and modifies registry entries to lower the affected system’s security settings.

The worm has backdoor capabilities enabling it to connect an Internet Relay Chat (IRC) server. Once a connection is established, it joins an IRC channel, where it listens for commands from a remote malicious such as:

* Basic IRC commands
* Download files
* Enable/disable anonymous login
* Enable/disable DCOM
* Execute files
* Send AIM message
* Other Details

WORM_OPANKI.W drops several HTML files which link to known adware and grayware programs, and then automatically connects to the linked sites.

Contact Us for a free antivirus trial to the end of this month.
Add "Virus Trial" to the Comments area.
Free trial antivirus

Top 10 Most Prevalent Global Malware
(from July 15 to July 21, 2005)

1. JAVA_BYTEVER.A
2. HTML_NETSKY.P
3. SPYW_GATOR
4. TSPY_SMALL.SN
5. SPYW_DASHBAR.300
6. WORM_NETSKY.P
7. WORM_SOBER.K
8. TROJ_DYFUCA.I
9. SPYW_WEBSEARCH.A
10. ADW_HOTBAR.A

July 15 2005 - Critical MS Patch - JS_JAPROX.A

JS_JAPROX.A is a malicious, memory-resident Script Trojan that exploits the JView Profiler vulnerability, allowing a remote user to execute commands locally on the affected machine. This script runs on Windows 95, 98, ME, NT, 2000, XP, and Server 2003.

Microsoft has identified this as a critical vulnerability, and is recommending that Windows users download the update. For more information, please read Microsoft Security Bulletin MS05-037 and download the update.

This vulnerability allows a remote user to issue any of the following commands locally, on the affected machine:

* Install programs
* View/Change/Delete files and system information
* Create new accounts with full user privileges

In addition, this malicious JavaScript uses the vulnerability to change the homepage of the affected system's Internet Explorer. It also connects to an adult Web site.

Contact Us for a free antivirus trial to the end of this month.
Add "Virus Trial" to the Comments area.
Free trial antivirus

JS_JAPROX.A is detected and cleaned by Eset NOD32 antivirus.

Top 10 Most Prevalent Global Malware
(from July 8 to July 14, 2005)

1. JAVA_BYTEVER.A
2. HTML_NETSKY.P
3. SPYW_GATOR
4. TSPY_SMALL.SN
5. SPYW_DASHBAR.300
6. WORM_NETSKY.P
7. WORM_SOBER.K
8. TROJ_DYFUCA.I
9. SPYW_WEBSEARCH.A
10. ADW_HOTBAR.A

July 13 2005 - Trojan - TROJ_SMALL.ALT

TROJ_SMALL.ALT is a non-destructive trojan that is not currently spreading in the wild. This trojan propogates via email and is currently infecting systems that run Windows 98, ME, NT, 2000,and XP. This is similar to the many Pay Pal trojans circulating at present.

This non memory-resident Trojan may arrive as an email attachment. Upon execution, it downloads a copy of itself as SVCHST.EXE in the Windows Temporary folder. It also downloads another malware from the following site: http://www.zaminb{BLOCKED}.net/ftp/file.exe

This Trojan also saves the malware file in the Windows Temporary folder with an 8-letter random name, which Trend Micro detects as TSPY_AGENT.TX.

TROJ_SMALL.ALT uses the following aliases: Download.Trojan, and Downloader-YZ.

Contact Us for a free antivirus trial to the end of this month.
Add "Virus Trial" to the Comments area.
Free trial antivirus

Top 10 Most Prevalent Global Malware
(from July 1 to July 8, 2005)

1. JAVA_BYTEVER.A
2. HTML_NETSKY.P
3. SPYW_GATOR
4. TSPY_SMALL.SN
5. SPYW_DASHBAR.300
6. WORM_NETSKY.P
7. WORM_SOBER.S
8. TROJ_DYFUCA.I
9. SPYW_WEBSEARCH.A
10. ADW_HOTBAR.A

July 02 2005 - Email Worm - WORM_WURMARK.A

WORM_WURMARK.A is a non-destructive, memory resident worm that propagates by sending a copy of itself as an attachment to email messages, which it sends to target addresses using its own Simple Mail Transfer Protocol (SMTP) engine. This worm is currently spreading in-the-wild and infecting systems that run Windows 95, 98, ME, NT, 2000, XP, 2003.

This worm arrives as attachment of an email message. Upon execution, it drops a copy of itself in the Windows system folder using a random file name. It logs keystrokes and drops a dynamic link library (DLL) file that NOD32 detects as TSPY_AGENT.C. It also modifies the registry to ensure its automatic execution at every Windows startup.

WORM_WURMARK.A gathers email addresses from the Temporary Internet Files folder, as well as from several files.

WORM_WURMARK.A has the following aliases: W32.Lanieca.B@mm, W32/Eyeveg.worm, Win32/Atak.Variant!Worm

Contact Us for a free antivirus trial to the end of this month.
Add "Virus Trial" to the Comments area.
Free trial antivirus

Worm_wurmark.a is detected and cleaned by Eset NOD32 antivirus.

Top 10 Most Prevalent Global Malware
(from June 25 to July 01 2005)

1. WORM_NETSKY.P
2. HTML_NETSKY.P
3. JAVA_BYTEVER.A
4. WORM_SOBER.S
5. SPYW_GATOR
6. TSPY_SMALL.SN
7. SPYW_DASHBAR.300
8. ADW_2020SEARCH.A
9. ADW_2020SEARCH.C
10. ADW_SHOPNAV.B

Contact Us for a free antivirus trial to the end of this month.
Add "Virus Trial" to the Comments area.
Free trial antivirus

12website has a maintenance program for our clients to ensure their will not be 'let down' by an inefficient computer.

Computer maintenance is necessary to keep your machine running smoothly without down time.