W32/Nyxem-D..detected ?

Discussion in 'NOD32 version 2 Forum' started by pykko, Jan 25, 2006.

Thread Status:
Not open for further replies.
  1. pykko

    pykko Registered Member

    Joined:
    Apr 27, 2005
    Posts:
    2,236
    Location:
    Romania...and walking to heaven
    I've found these days about a dangerous worm spreading very fast on the internet. W32/Nyxem-D

    Its main actions are:
    Turns off anti-virus applications
    Sends itself to email addresses found on the infected computer
    Deletes files off the computer
    Forges the sender's email address
    Uses its own emailing engine
    Downloads code from the internet
    Reduces system security
    Installs itself in the Registry

    Aliases: Email-Worm.Win32.VB.bi, CME-24, WORM_GREW.A, Win32.Blackmal.E@mm, W32/Tearec.A.worm, Email-Worm.Win32.Nyxem.e
    W32/MyWife.d@MM

    I tried to find it on NOD32 signatures update, but no luck. Does anyone know if it's actually detected?
     
  2. Happy Bytes

    Happy Bytes Guest

    Win32/VB.NEI
     
  3. pykko

    pykko Registered Member

    Joined:
    Apr 27, 2005
    Posts:
    2,236
    Location:
    Romania...and walking to heaven
    Thank you Happy Bytes! 2 Fast, 2 furious as usual! :D
     
  4. i_kenefick

    i_kenefick Registered Member

    Joined:
    Nov 29, 2005
    Posts:
    135
    Location:
    Cork, Ireland.
  5. Firecat

    Firecat Registered Member

    Joined:
    Jan 2, 2005
    Posts:
    7,927
    Location:
    The land of no identity :D
    Double the gun, Double the fun! ;)

    *where Happy Bytes = Special gun meant for nailing malware down
     
  6. flyrfan111

    flyrfan111 Registered Member

    Joined:
    Jun 1, 2004
    Posts:
    1,224
    Yes I would be interested in an answer to this as well. Something needs to be done, malware naming is getting way out of hand. Just that particular worm, is called the Black worm, blackmal, Nyxem, VB.NEI to name a few, how are we supposed to keep track.
     
  7. Firecat

    Firecat Registered Member

    Joined:
    Jan 2, 2005
    Posts:
    7,927
    Location:
    The land of no identity :D
    Vgrep helps when we are confused about malware names, at least to some extent :D
     
  8. i_kenefick

    i_kenefick Registered Member

    Joined:
    Nov 29, 2005
    Posts:
    135
    Location:
    Cork, Ireland.
    It's not a practical solution for Joe Soap. This is the problem with project vgrep.
     
  9. flyrfan111

    flyrfan111 Registered Member

    Joined:
    Jun 1, 2004
    Posts:
    1,224
    By the time VGrep has information the threat is usually long past, CME or some similar idea would be a much better solution.
     
Thread Status:
Not open for further replies.