The Computer Guys

Miami to Fort Lauderdale Since 1994 - Thank You!

 

 

We Build the Best & Repair the Rest! ©

 

Alerts Top 10 May 2004

FAQ Search Virus Alerts Hardware Faqs

 

 

Computer Repair
PC Maintenance
Disaster Recovery
SpyWare Removal
Company Profile
Disclaimer
Contact Information
Home Users

 

 

March 2004 August 2004 November 2004 October 2004 April 2004 July 2004 Virus Alert Calendars May 2004 September 2004 June 2004 January 2004 February 2004 Alerts 2003 Alerts Jan 2004 Alerts Feb 2004 Alerts March 2004 Alerts April 2004 Alerts Top 10 May 2004 Alerts Top10 June 2004 Alerts Top 10 July 2004 Alerts August 2004 Alerts September 2004 Alerts Oct 2004 Alerts November 2004 Alerts December 2004

 

 

 

 

Top 10 malware reported to Sophos in May 2004

Position Last
month		 Malware Percentage of reports
1 New W32/Sasser
   51.1%
2 1 W32/Netsky-P
   11.7%
3 2 W32/Netsky-B
   4.1%
4 3 W32/Netsky-D
   3.8%
5 New W32/Netsky-Z
   3.4%
6 5 W32/Netsky-Q
   2.4%
7 4 W32/Netsky-C
   2.1%
8 New W32/Sober-G
   1.5%
9 New W32/Bagle-AA
   0.8%
10 New W32/Lovgate-V
   0.7%
Others 18.4%

 

Please note: Sophos detects both the B and C variants of the Sasser worm as W32/Sasser-B.

 

W32/Sasser-B is a network worm which spreads by exploiting the Microsoft LSASS vulnerability on port 445.

 

For further information on this vulnerability see Microsoft Security Bulletin MS04-011.

 

When first run W32/Sasser-B copies itself to the Windows folder as avserve2.exe and creates the following registry entry, so that avserve2.exe is run automatically each time Windows is started:

 

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\
avserve2.exe = %WINDOWS%\avserve2.exe

 

A harmless text file is created in the C:\ root folder named win2.log.

 

Further reading:
Sasser internet worm attacks unpatched PCs, Sophos advises of virus threat

 
This web is optimized for 800 x 600 monitor resolution or above and the latest web browser.  Get the latest IE or Netscape web browser. (you need to connect to the internet first)

 

 

Copyright © 1998 The Computer Guys

 Back Home Up Next