W32.Funsoul@mm
Aliases: N/A
Variants: N/A
Classification: Malware
Category: Computer Worm
Status: Dormant
Spreading: Slow
Geographical info: Europe, North and South America, and some parts of Asia and Australia
Removal: Easy
Platform: W32
Discovered: 10 Nov 2001
Damage: Low
Characteristics: WormW32.Funsoul@mm is a worm that infects computers through the use of an email message. It is considered as a mass-mailing worm that automatically sends itself to all of the compromised computer’s Microsoft Outlook contacts. The email that this worm automatically mails contains this on its subject, “Though you might find this funny!” It also contains an attachment “Funny.scr.” This will not execute properly if a printer is not connected to the computer.
W32.Funsoul@mm Removal Tool
If you have Malware on your computer it will cause annoyances and will damage your system. You should either:
A. Manually remove the infected files from your computer, or
B. Automatically scan your system using trusted software
A. Manually remove the infected files from your computer, or
B. Automatically scan your system using trusted software
RECOMMENDED:
We recommend that you scan your system for malware. Our partner has a computer worm removal tool to automatically clean W32.Funsoul@mm from your computer.
More details about W32.Funsoul@mm
It affects all Windows system namely Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT and Windows XP. Internally, it is also known that it creates a vbs script file in the windows start menu programs. It is said that it infects the computer by creating files such as “C:\Protect.sys,”C:\Help.bat,”C:\Hide.bat,”C:\Login.scr” and “C:\Funny.scr.” It overwrites the C:\Autoexec.bat file with code that causes the dialer to dial 911 when you start the computer. It is also described as a multi-component email worm. This means that this worm spreads through packed executable file or what we normally know as word document. Upon opening or executing this file, the worm automatically installs itself on the compromised computer. Registry files or keys are also altered.Aside from registry keys, Internet Explorer settings are also altered by changing the homepage to a Web page that is devoted to Timothy McVeigh. Then, it shows a message and Timothy McVeigh's picture. The W32.Funsoul@mm program may enter the system via e-mail messages. These may be generated by the worm application itself to spread infected files. The files are attachments that may be labeled as harmless e-cards. The worm application can also spread from computer to computer by using network shares. It may use system vulnerabilities to enter them. Common passwords and user names may also be guessed with a brute-force attack.
Browse for more malware information
- W32.Funsoul@mm
- W32.Gabloliz.A
- W32.Gammima
- W32.Gammiy
- W32.Ganbate.A
- W32.Gangbot
- W32.Gase.intd
- W32.Gaut.A
- W32.Gavgent.A
- W32.Gaze@mm
- W32.Gillich.Mirc
- W32.Girls.Irc
- W32.Gluber.B@mm
- W32.Glupzy.A
- W32.Gnuman.Worm
- W32.Gobot.A
- W32.Gokar.A@mm
- W32.Goner.A@mm
- W32.Gramos
- W32.Grifout.Worm
- W32.Gruel@mm
- W32.Guapim
- W32.Gubed.int
- W32.Gudeb
- W32.Gudek
- W32.Gunsan
- W32.Hairy.A
- W32.Harakit
- W32.Hardoc@mm
- W32.Hauxi
Contact Us
|
Privacy Policy
|
Site Map
Copyright © Uniblue Systems Limited 2007. All rights reserved.