Virus Information
Prevalence:
Medium
Name: Win32.Netsky.T@mm
Type:
How it spreads: This is the first version of netsky to include a backdoor component.A compressed and encrypted hardcoded text string exists in the worm body:"Now we have programmed our backdoor, it cannot be used for
Affected operating:
Aliases:
Date of surface: Apr 5 2004 12:00AM
MediumName: Win32.Netsky.T@mm
Type:
How it spreads: This is the first version of netsky to include a backdoor component.A compressed and encrypted hardcoded text string exists in the worm body:"Now we have programmed our backdoor, it cannot be used for
Affected operating:
Aliases:
Date of surface: Apr 5 2004 12:00AM
This is the first version of netsky to include a backdoor component. A compressed and encrypted hardcoded text string exists in the worm body: "Now we have programmed our backdoor, it cannot be used for spam relaying,only for Skynet distribution, our advice: educate the users or update the smtp protocol, and heuristics cannot detect Skynet, because numerous scambler, compressors, and protectors exists including programming new features. Thanks to russia, and thanks to CCC for support. 09:34 A.M, Russia" The backdoor component listens on port 6789. If the attacker sends an executable file, the worm will download and execute it immediately. If the system date is between 14.04.2004 and 23.04.2004, the worm will start a "Denial-Of-Service” attack against several websites: (www.keygen.us, www.freemule.net, www.kazaa.com, www.emule.de, www.cracks.am).
For disinfection, download and run our free eScan Anti-Virus Toolkit. The utility checks your computer, system registry, and running processes for malicious programs, illegal dialers, and sniffer tools. Note: This tool does not protect your PC in real time.
You can download the eScan Anti-Virus Toolkit utility from the MicroWorld Web site.
Alternatively, you can install MicroWorld’s Internet Security Suite which has real time detection capabilities.
You can download and install the product from our eScan download page.
You can download the eScan Anti-Virus Toolkit utility from the MicroWorld Web site.
Alternatively, you can install MicroWorld’s Internet Security Suite which has real time detection capabilities.
You can download and install the product from our eScan download page.
