XP Maximized
Making Windows XP Work Better!
HOME    |    NEWS FEED

 Search This Site


Articles By Category

Contact

Links

 

 

XP Maximized RSS Feed

  • [?]
Category - Antivirus & Security   |   Printer-friendly version

 

  WORM_NETSKY.D

This worm drops a copy of itself as the file WINLOGON.EXE in the Windows folder. It creates a thread for searching email addresses, which it gathers from files with specific extensions, in drives C to Z (except for the CD-ROM drive).

(Note: On Windows NT, 2000 and XP, there is a normal application named WINLOGON.EXE in the Windows system folder.)

Overall risk rating: Low

Reported infections: Low

Damage potential: High

Distribution potential: High

It connects to a local or several external DNS servers, which it uses as its SMTP server, to search for a mail exchanger that matches the domain yahoo.com.

This malware arrives as a Petite-compressed executable file and is written using Microsoft Visual C++, a high-level programming language.

It runs on Windows 95, 98, ME, NT, 2000, and XP.

Related Articles

How To Test Your Firewall

FREE Malicious Software Removal Tool from Microsoft

Is the Free Internet Calling Software Skype Spyware?

SPYW_GATOR.D

SPYW_GATOR.B

Antivirus and Security Tips

Protecting Your PC Against Identity Theft

HTML_NETSKY.P

WORM_NETSKY.P

Free Windows XP Tools

Copyright 2005, XPMaximized.com  |  Powered by Movable Type 3.14  |  Contact

 

 

 

 

 

 

 

 

 

 

hghmagazine.com
exploreeugeneoregon.com
hot-auction-items.com