FRISK Software International

News from FRISK Software International > Security Alert > W32/BugBear.A@mm

W32/Bugbear.A@mm

A new e-mail worm, called W32/Bugbear.A@mm by our virus analysts, started spreading in the wild on 30th of September. W32/Bugbear@mm is a UPX compressed mass-mailing worm with keylogging and backdoor capabilities.

It copies itself to the Windows System directory under a random name. It spreads it self in e-mail messages with randomly named attachments, sending copies of it self to e-mail addresses fount in the infected computer's inbox and in files with these extensions: .ODS .MMF .DBX .NCH .EML .TBB .MBX . The worm can also spread by picking up an e-mail message of the infected computer and send them with itself attached.

In the process of infecting the worm also attempts to disable antivirus programs and other computer security related programs.

Virus signature files for F-Prot AntivirusTM since 30th of September or later detect and disinfect W32/Bugbear.A@mm. Users of F-Prot AntivirusTM are urged to update their virus signature files to secure their computer's data.

More Information:

Technical description of W32/Bugbear.A@mm from our virus analysts

 
News
2 February 2010
F-PROT Antivirus Achieves a VB100 Award
F-PROT Antivirus for Unix achieves a VB100 award in the February 2010 issue of Virus Bulletin

Security Alerts
11 July 2007
Security Bulletins for July 2007
Microsoft releases six patches this month, three of which are deemed critical

RSS News Feeds
Virus news and information directly to your desktop.
more...


agoat@klaki.net argentina@f-prot.com argentina@frisk.is argentina@complex.is argentina@f-prot.is argentina@frisk-software.com argentina@f-prot.net argentina@f-prot.co.uk brazil@f-prot.com brazil@frisk.is brazil@complex.is brazil@f-prot.is brazil@frisk-software.com brazil@f-prot.net brazil@f-prot.co.uk malta@f-prot.com malta@frisk.is malta@complex.is malta@f-prot.is malta@frisk-software.com malta@f-prot.net malta@f-prot.co.uk a.bjani@f-prot.com a.bjani@frisk.is a.bjani@complex.is a.bjani@f-prot.is a.bjani@f-prot.co.uk a.bjani@frisk-software.com a.bjani@f-prot.net z.fifl@f-prot.com z.fifl@frisk.is z.fifl@complex.is z.fifl@f-prot.is z.fifl@f-prot.co.uk z.fifl@frisk-software.com z.fifl@f-prot.net strumpuri@complex.is strumpure@complex.is strumpuru@complex.is 00a@eircom.net 0maaahonyy@eircom.net 950@eircom.net af@eircom.net am@eircom.net ar@eircom.net as@eircom.net b1@eircom.net boss3@eircom.net ceih@eircom.net cera@eircom.net chxe@eircom.net cs@eircom.net cydw@eircom.net d71@eircom.net dpfy@eircom.net dzuv@eircom.net ehpa@eircom.net epin@eircom.net f1@eircom.net fa@eircom.net fdld@eircom.net fdnv@eircom.net gacg@eircom.net gafj@eircom.net gc@eircom.net gz@eircom.net ha@eircom.net he@eircom.net ia@eircom.net ja@eircom.net k2@eircom.net lleahy6@eircom.net m1@eircom.net no@eircom.net pb@eircom.net qq@eircom.net r6oo@eircom.net ra@eircom.net s2@eircom.net t2@eircom.net ua@eircom.net va@eircom.net vb@eircom.net w2@eircom.net ww2@eircom.net xxxkiss@eircom.net y1@eircom.net ya@eircom.net zz@eircom.net