WORM_NUWAR.YH |
|
| BugsAlert Home > WORM_NUWAR.YH | |
|
To get a one-glance comprehensive view of the behavior of this malware, refer to the Behavior Diagram shown below. This worm may be downloaded from remote site(s) by other malware. It may be dropped by other malware. It may be downloaded unknowingly by a user when visiting malicious Web site(s). It drops copy(ies) of itself and file(s)/component(s). It creates and modifies registry entry(ies) to enable its automatic execution at every system startup. It also creates registry key(s)/entry(ies) as part of its installation routine. It disables console tracing in a command prompt window on Routing and Remote Access Service by creating registry key(s)/entry(ies). It creates a registry entry to disable Windows Firewall Settings. Original Source: http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM_NUWAR.YH Learn more about WORM_NUWAR.YH |
|
| Tags: worm nuwar.yh | |
Related Items |
|
|
Debian: New roundup packages fix regression
|
|
|
FrSIRT - F-Prot Antivirus for Windows Multiple Denial of Service Vulnerabilities
|
|
|
Screensaver Equals Worm
|
|
|
PorkBind v1.3 - Nameserver (DNS) Security Scanner
|
|
|
Vuln: Lynx '.mailcap' and '.mime.type' Files Local Code Execution Vulnerability
|
|
|
FrSIRT - Ubuntu Security Update Fixes Thunderbird Multiple Vulnerabilities
|
|
|
CVE-2008-5407 (backup_exec_for_windows_server)
|
|
