Heads up. New worm making the rounds. "Deloder", variant "deloader".
Scans for open shares on TCP port 445 (SMB-over-IP without NetBIOS, which was introduced with Windows 2000). Tries to brute force the shares by using a short dictionary of easy passwords. Installs a VNC (remote control) and IRC (chat) server. Will mainly be a problem for home users who have plugged their Win2000/XP desktop right into the high-speed wire without any kind of firewall. http://securityresponse.symantec.com/avcenter/venc/data/w32.hllw.deloder.html http://www.infoworld.com/article/03/03/10/HNdeloader_1.html http://zdnet.com.com/2100-1105-991712.html http://www.pcworld.com/news/article/0,aid,109750,00.asp -- Ben Scott <[EMAIL PROTECTED]> | The opinions expressed in this message are those of the author and do | | not represent the views or policy of any other person or organization. | | All information is provided without warranty of any kind. | ------ You are subscribed as [EMAIL PROTECTED] Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe send a blank email to [EMAIL PROTECTED]
