more on: Riparare File Dnsrslve Da W32 Spybot Worm
Dnsrslve.exe [DNS Resolver] is a virus added by the W32/Rbot-WS worm also know as Backdoor.Win32.Rbot.gen, W32/Sdbot.worm.gen.g, WORM_SDBOT.APN.
ref: http://sophos.com
information on Riparare file dnsrslve da w32 spybot worm
W32@pawur is a worm. More information on pawur
Nombre: W32/Pawur.A
Nombre NOD32: Win32/Pawur.A
Tipo: Gusano de Internet
Alias: Pawur.A, Tasin.A, Anzae, I-Worm.Pawur.A, I-Worm.Pawur.a, I-Worm.VB.w, I-Worm/Pawur.A, NewHeur_PE, W32.Inzae.A, W32/Anzae.Worm, W32/Tasin.A.worm, Win32/Inzae.A.Dropper, Win32/Pawur.A, WORM_ANZAE.A, W32/Anzae-A, W32/Insae.A@mm, Email-Worm.Win32.Pawur.a, Win32.HLLM.Pawur
Fecha: 22/nov/04
Plataforma: Windows 32-bit
Tamaño: 49,331 bytes
Those looking for “Netdrvr Ext W32 Spybot Worm”
You typed “Netdrvr Ext” Did you mean “netdrvr.exe”?
If you meant “netdrvr.exe” then you definitely have malware. More than likely you have a virus running in a critical system folder of Windows: C:\Windows\System32\netdrvr.exe. This virus looks like it might be a device driver (Network DRV) but it is like a cancer to your system resources and privacy.
This virus can be removed with free tools such as Adaware, HijackThis or Microsoft’s Autoruns (recommended).
The Storm worm first appeared at the beginning of the year, hiding in e-mail attachments with the subject line: “230 dead as storm batters Europe.” Those who opened the attachment became infected, their computers joining an ever-growing botnet.
Although it’s most commonly called a worm, Storm is really more: a worm, a Trojan horse and a bot all rolled into one. It’s also the most successful example we have of a new breed of worm, and I’ve seen estimates that between 1 million and 50 million computers have been infected worldwide.
Â
More here.
A new worm that targets users of America Online's AOL Instant Messenger
is believed to be the first that actually chats with the intended
victim to dupe the target into activating a malicious payload, IM
security vendor IMlogic warned Tuesday.
Dear Sir/Madam, We have logged your IP-address on more than 30 illegal Websites.
Sober worm pretends to be an email from the FBI or CIA.
Here is more info on the Zotob.
The Zotob Worm has spread across three continents and has brought down systems at CNN, ABC and other networks. It is a decendant of Mytob. Zotob exploits the “plug and play” features of unpatched Win 2000 systems and earlier versions of Windows XP.
The Zotob Worm, like most worms, slows down network connectivity, can shut down/reboot a system, attempts to spread to other systems on the network and ultimately will connect with a remote server to allow downloads of more destructive malware such as virus’ and Trojans.
Zotob Worm Variants:
http://securityresponse.symantec.com/avcenter/vinfodb.html
Summary:
http://singe.rucus.net/blog/archives/510-MS05-039-and-the-Zotob-summary.html
http://singe.rucus.net/blog/archives/510-MS05-039-and-the-Zotob-summary.html