MSN Home  |  My MSN  |  Hotmail
Sign in to Windows Live ID Web Search:   
go to MSNGroups 
Free Forum Hosting
 
Important Announcement Important Announcement
The MSN Groups service will close in February 2009. You can move your group to Multiply, MSN’s partner for online groups. Learn More
Life with My Horses[email protected] 
  
What's New
  
  HOOFPRINTS INTO LMH  
  Please Hear What I Am Not Saying  
  My Mentor  
  Equine Anatomy  
  Parts of The Horse  
  Skeleton and Teeth  
  Skeletal Structure  
  Internal Organs  
  The Hoof  
  Muscles of the Horse  
  Pictures  
  CPH Royal Rezanations  
  Ashke's Cool Jewel  
  Ashke's Easter Lily  
  Hannah  
  Dragontamers Babies  
  Meg  
  Dot & Star  
  Miss BB Jewel  
  Donna,More of Holland  
  Just Jag  
  The Barn Cats  
  The EYES have it  
  Equinelovers gang  
  Dreamer 2  
  weather pic  
  Repairs around the farm  
  ALEX'S ACCOMPLISHMENTS  
  Stargazer Lilly  
  Stargazer  
  Just Me (Carol) critters  
  Virginia's Babies  
  Dot's Stuff  
  Memorial Album  
  Donna's pics from Out West  
  pws margarita  
  C_2_E 's Pics  
  Tanya's Babies  
  kathy's family  
  Birth album  
  My Holiday  
  Lil Larry 2 Too  
  Wild Life  
  Pasture clean up  
  Mr Coffee  
  Skif  
  The wild bunch pics  
  Online Friends  
  Dixie Damsal  
  CATS AND DOGS  
  B Mans Stuff  
  Brodie  
  Fancy  
  Jagwires Brag book  
  Sh'Nina  
  Mr Bean  
  Fancy's Dun It (gracie)  
  ViperHorse  
  Rescues- Before and After  
  Manager pics  
  Foal pics Past & present  
  Scarey's Stuff  
  Back grounds and such  
  Foals of 2002  
  Message Board  
  General  
  Introducing  
  Natural Horses  
  Horse Help  
  Horse Care info  
  Horse Feed  
  PAST Memories  
  Off Topic Drivel  
  Share A Laugh  
  Thoughts&Wisdom  
  Decorating Ideas  
  Our Health  
  Canine Memorials  
  Needing Homes  
  For Sale  
  Rescues  
  In Loving Memory  
  ADD/ADHD info  
  Natural Health  
  Recipes  
  Horse Games  
  DONKEYS  
  Training Files  
  Our Friends.  
  POOR MANS IDEAS  
  ALL ABOUT US  
  MEMORIALS  
  Eulogy  
  Scarey an Ashke  
  TSP home page  
  TSP Whats New  
  HOW TO JOIN TSP.  
  Dots Past Equines  
  Memories of Star  
  Ghost Warrior  
  Just An Old Buckskin Mare  
  Dot & TSP Awards  
  MADI'S Whats New  
  MC Philosophy for Membership  
  Okie story of a Rescue  
  Okie page 2  
  Okies Set Free  
  You CAN Make a Difference!  
  
  
  Tools  
 
Off Topic Drivel : VIRUS INFO PLEASE READ
Choose another message board		  
     
Reply
 Message 1 of 1 in Discussion 
From: MSN NicknameUniqueHorse_lassy  (Original Message)Sent: 2/28/2003 10:26 PM
Trend Micro Weekly Virus Report
(by TrendLabs Global Antivirus and Research Center)
 
 

Date: February 28, 2003

Issue Preview:

1. Trend Micro Updates - Pattern File & Scan Engine Updates
2. Email, Kazaa, and mIRC Worm - WORM_GIBE.B (Low Risk)
3. 10 Most Prevalent In-the-Wild Malware Surveyed by Trend Micro US
4. It's Tax Time! - Get TaxCut from H&R Block FREE with PC-cillin 2003*

1. Trend Micro Updates - Pattern File and Scan Engine Updates

PATTERN FILE: 472 
SCAN ENGINE: 6.510 


2. Email, Kazaa, and mIRC Worm - WORM_GIBE.B (Low Risk)

WORM_GIBE.B propagates via email, shared folders using Kazaa, and via Internet Relay Chat applications such as mIRC. When propagating via email, it obtains its recipients from email addresses listed in the Windows Address Book and addresses remotely retrieved from certain news servers. This worm arrives in an email as a security patch from Microsoft. It sends email with a random subject, message body, and attachment name. This malware affects Windows 95, 98, ME, NT, 2000, and XP platforms.

This worm arrives as either a zipped email attachment, or as a file retrieved from a Kazaa file-sharing application, or Internet Relay Chat. Upon first execution, it displays a fake license message and drops the following files in the Windows directory:

-Gibe.dll - this is the exact copy of this worm
-DX3DRndr.exe - this is the mailer component of this worm
-MSBugAdv.exe - this component connects to a random server listed in the dropped WMSysDx.bin file
-WMSysDx.bin - this is the list containing the URL that this worm connects to.

It also drops compressed copies of itself in zip format as UPDATE.ZIP or a random file name in the Windows and Windows Temporary folders. In addition, it creates a subfolder in the Windows Temporary directory using a random name.

In the folder, it drops an .EXE format and a .ZIP format copy of itself. The file name of the files could be any of 13 possible names. Then, this worm adds a registry entry so that its copy executes on the infected system on subsequent Windows startups.

This worm uses its own Simple Mail Transfer Protocol (SMTP) engine to propagate via email. It obtains the email addresses of its recipients from the Windows Address Book.

The email that it sends out contains a random subject, message body, and attachment name. In some instances, the worm may send an email with a blank message body. The malware also connects to any of 137 specific Network News Transfer Protocol (NNTP) servers where it attempts to search for addresses where it can send email.

If you would like to scan your computer for WORM_GIBE.B or thousands of other worms, viruses, Trojans and malicious code, visit HouseCall, Trend Micro's free, online virus scanner at: http://housecall.trendmicro.com/

WORM_GIBE.B is detected and cleaned by Trend Micro pattern file #471 and above.


3. 10 Most Prevalent In-the-Wild Malware Surveyed by Trend Micro US
(week of: February 17, 2003 to February 23, 2003)
  1. WORM_KLEZ.H
  2. JS_NOCLOSE.E
  3. PE_BAGIF.A
  4. WORM_KWBOT.C
  5. WORM_YAHA.G
  6. PE_HANTANER.A
  7. JOKE_RUSS.A
  8. WORM_YAHA.K
  9. WORM_OPASERV.G
  10. WORM_OPASERV.E


First  Previous  No Replies  Next  Last