Results 1 to 5 of 5

Thread: W32.Novarg.A@mm

  1. #1
    Deregistered
    Join Date
    Dec 2002
    Location
    Planet Nikon
    Posts
    21,905

    Default W32.Novarg.A@mm

    "W32.Novarg.A@mm is a mass-mailing worm. The worm will arrive as an attachment with a file extension of .bat, .cmd, .exe, .pif, .scr, or .zip.

    When the machine gets infected, the worm will set up a backdoor into the system by opening TCP ports 3127 thru 3198. This will potentially allow a hacker to connect to the machine and utilize it as a proxy to gain access to it's network resources. In addition, the backdoor has the ability to download and execute arbitrary files.

    The worm will perform a DoS starting on February 1, 2004. On February 12, 2004 the worm has a trigger date to stop spreading.
    "

    Excerpted from - http://www.symantec.com/avcenter/ven...varg.a@mm.html


    Anybody kena this? Think I just did, too lazy to install antivirus on my office PC... dang. Now trying to undo the damage I just 'did'.

  2. #2

    Default how do u undo it ?

    Hi ESPN,

    I got that as well.. but my norton says it cannot delete them and must quanrantined them.. how do i get rid of them?

    pl enlighten. thanks!

    Quote Originally Posted by espn
    "W32.Novarg.A@mm is a mass-mailing worm. The worm will arrive as an attachment with a file extension of .bat, .cmd, .exe, .pif, .scr, or .zip.

    When the machine gets infected, the worm will set up a backdoor into the system by opening TCP ports 3127 thru 3198. This will potentially allow a hacker to connect to the machine and utilize it as a proxy to gain access to it's network resources. In addition, the backdoor has the ability to download and execute arbitrary files.

    The worm will perform a DoS starting on February 1, 2004. On February 12, 2004 the worm has a trigger date to stop spreading.
    "

    Excerpted from - http://www.symantec.com/avcenter/ven...varg.a@mm.html


    Anybody kena this? Think I just did, too lazy to install antivirus on my office PC... dang. Now trying to undo the damage I just 'did'.

  3. #3
    Member
    Join Date
    Mar 2002
    Location
    Singapore
    Posts
    424

    Default

    quarantined is as good as removed.

    for 100% confirm chop plus lifetime warranty cleanup of this virus, please visit http://securityresponse.symantec.com...oval.tool.html download http://securityresponse.symantec.com...r/FxMydoom.exe and follow the instructions.

  4. #4

    Default

    is opening the attached file the only way to get infected?

  5. #5
    Member/Tangshooter zaxh81's Avatar
    Join Date
    Jan 2003
    Location
    Earth
    Posts
    4,339

    Default

    guess the only way is to prevent opening suspecting file attachments.


Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •