And, while such small modifications to the original worm are easy to compensate for, Slapper.B contains other modifications that make its removal from infected servers more difficult.
According to researchers at F-Secure, the Slapper.B worm variant is able to retrieve its source code from a Web page after the worm has been removed from infected servers. The worm uses a common free software utility, wget, to retrieve its source code from an infected Web page in the home.ro domain. Administrators of the domain, which is located in Romania, have been notified and the infected page has been deleted from the site, according to F-Secure. The variation in Slapper.B as well as another that enables the worm to restart itself may explain the variant's rapid spread in countries such as Australia, experts say. More than 120 businesses have been infected with the new worm variation in that country. http://www.idg.com.hk/cw/readstory.asp?aid=20020925003 --- Pentru dezabonare, trimiteti mail la [EMAIL PROTECTED] cu subiectul 'unsubscribe rlug'. REGULI, arhive si alte informatii: http://www.lug.ro/mlist/
