WORM_YAHLOVER.AZ |
|
| BugsAlert Home > WORM_YAHLOVER.AZ | |
|
This worm may be downloaded unknowingly by a user when visiting malicious Web sites. This worm drops copies of itself. It also drops component files which Trend Micro detects as MAL_OTORUN2. This worm creates registry entries to enable its automatic execution at every system startup. It also uses Windows Task Scheduler to create a scheduled task that it uses to executes a dropped copy. This worm sends messages to target recipients using instant messaging applications. This worm drops copies of itself in all removable drives. It drops an AUTORUN.INF file to automatically execute dropped copies when the drives are accessed. This worm accesses Web sites to download files which Trend Micro detects as the following malware:
This worm terminates a certain process, if found running in memory. Original Source: http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM_YAHLOVER.AZ Learn more about WORM_YAHLOVER.AZ |
|
| Tags: worm yahlover.az | |
Related Items |
|
|
CVE-2008-1392 (VMWare Workstation, ACE, Player)
|
|
|
Vanilla Multiple Vulnerabilities
|
|
|
Debian Security Update Fixes Horde Multiple Remote Vulnerabilities
|
|
|
FrSIRT - Mandriva Security Update Fixes Thunderbird Multiple Vulnerabilities
|
|
|
CVE-2008-5041 (ro002_router)
|
|
|
FrSIRT - PowerPHPBoard Multiple Parameter Local File Inclusion Vulnerabilities
|
|
|
FrSIRT - ZeeReviews "ItemID" Parameter SQL Injection Vulnerability
|
|
