Virus Alert! BugBear worm installs 'key logger'!
This question was answered on October 7, 2002. Much of the information contained herein may have changed since posting.
A recently discovered mass-mailing worm labeled "W32.Bugbear@mm" is spreading rapidly In addition to sending itself via e-mail, it can also spread through network shares
It incorporates keystroke-logging and backdoor capabilities and attempts to disarm, disable or destroy most commercial anti-virus programs.
One of the visible symptoms of this worm is strange printer activity, including the printing of garbage or disrupted functionality.
The subject line can be a forward or reply of a real message or a variable of one of the following:
Get 8 FREE issues - no risk!
Your News Alert
$150 FREE Bonus!
New bonus in your cash account
Tools For Your Online Business
Daily Email Reminder
CALL FOR INFORMATION!
25 merchants and rising
My eBay ads
Market Update Report
click on this!
Lost & Found
Get a FREE gift!
I need help about script!!!
Correction of errors
Just a reminder
This worm is capable of altering its attack based on the operating system of the victim, which is helping it to spread quickly.
As always, don't open ANY file attachments in e-mail, especially from people you know as they are the most likely sender of the worm.
If you have not had a prior discussion about an attachment or there is not very specific information as to the contents of an attachment in the accompanying message, do not open the file.
If you are going to be sending file attachments in e-mail, be sure to be very specific about the file in the message as a courtesy to the recipient.
Most major anti-virus companies have posted updates on their web site to protect against this latest strain, so if you have not updated your anti-virus software in the last week or so, it would be a good idea to do so...
To make sure have all of the curren critical updates from Microsoft, go to:
If you become infected with BugBear, Symantec has posted a removal tool at:
<a href="http://sarc.com/avcenter/venc/data/[email protected] " target="_blank">>http://email@example.com
About the author
Posted by Ken Colburn of Data Doctors on October 7, 2002