Google Community Chat
 
New Bagle worm drops in and downloads

You're visiting Google Community as a guest.
In order to post, you'll need to register and log in.


(If you were registered and logged in, these advertisements wouldn't be here)
Post new topic   Reply to topic    Google Community Forum Index // General Discussion
   
Author Message
Stuff2Do
Elite Googler
Elite Googler


Joined: 10 Nov 2004
Location: England, UK
790.60 GC$

Items
PostPosted: Fri Jan 21, 2005 4:10 pm    Post subject: New Bagle worm drops in and downloads Reply with quote
Quote:

A new Bagle dropper and downloader, Bagle-AQ, was bulk mailed to numerous internet users yesterday. The malware arrives in email with subject and email body "foto" and attachment called foto.zip that poses as a file containing photographs.

This zip file contains a HTML file and an executable called foto1.exe. The executable is a dropper. If activated it will kill DLL files related to the updating components of various anti-virus programs. It also attempts download an updated payload every six hours from one of more than 130 separate websites. This payload contains a mass-mailing worm that uses its own SMTP engine to spread. It also opens backdoors on TCP port 80 and UDP port 80, allowing infected computers to be used as email relays. Only Windows machines are affected.

The mode of infection of Bagle-AQ (Trojan downloader) shares more in common with the Download.Ject worm than with previous variants of the Bagle worm. AV firms have confusingly taken to calling it a variety of names from Glieder-H to the BagleDl-A Trojan. Each refers to the same piece of malware. ®



so watch out, i dont open attatchments, im not stupid, if i think it may be an important attatchment, i will go the local library and open it there, lol
Back to top
View user's profile Send private message Send e-mail Visit poster's website AIM Address Yahoo Messenger MSN Messenger
darrenstraight
Site Admin & Platinum Member
Site Admin & Platinum Member


Joined: 25 Jul 2004
Location: England
173385.09 GC$

Items
PostPosted: Fri Jan 21, 2005 4:12 pm    Post subject: Reply with quote
They wont catch me out with emails like that!
_________________
My Blog | Microsoft Discussion
Back to top
View user's profile Send private message Visit poster's website
dude66
Past Moderator
Elite Googler


Joined: 24 Dec 2004
Location: Thursday
7465.75 GC$

Items
PostPosted: Sat Jan 22, 2005 8:41 am    Post subject: Reply with quote
darrenstraight wrote:
They wont catch me out with emails like that!

same here
_________________
[this quote was censored by the United States Government]
Back to top
View user's profile Send private message Send e-mail MSN Messenger
Sponsored Links
Posted: 5 Dec 2008 9:51 am    Post subject: Advertisements
Back to top
Display posts from previous:   
Post new topic   Reply to topic    Google Community Forum Index // General Discussion All times are GMT - 8 Hours
Page 1 of 1


 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
Host your free forums with Invision Plus.net forum web hosting with your own subdomain.
alexisBlue v1.2 // Theme Created By: Andrew Charron // Icons in Part By: Travis Carden

© 2005-2006 Google Community

Powered by phpBB

Privacy Policy | Contact Us

Powered by Google Search blog

This website is not affiliated in any way with Google, Inc.
Google™ is a registered trademark of Google, Inc.