tag:blogger.com,1999:blog-606282676955748155.post5315688603598464316..comments2024-02-28T04:06:30.612+01:00Comments on Blaze's Security Blog: Worm spreading through Skype and MessengerBarthttp://www.blogger.com/profile/18326761248866196755noreply@blogger.comBlogger16125tag:blogger.com,1999:blog-606282676955748155.post-7051773645585889572015-02-12T22:55:12.825+01:002015-02-12T22:55:12.825+01:00This would indeed be nice features. visit more inf...This would indeed be nice features. visit more info <a href="http://www.acetecsupport.com/skype-support.html" rel="nofollow">Skype Help</a>. Anonymoushttps://www.blogger.com/profile/14955090487963536663noreply@blogger.comtag:blogger.com,1999:blog-606282676955748155.post-1994549422938578502012-12-29T13:56:06.117+01:002012-12-29T13:56:06.117+01:00My, such virus is spreading. Thank you very much f...My, such virus is spreading. Thank you very much for the heads up as well as the information you have provided. This calls for an anti-spam application to avoid further viruses from invading.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-606282676955748155.post-40116993602756645462012-10-13T14:24:09.605+02:002012-10-13T14:24:09.605+02:00I doubt it, but remember Dorkbot is also able to i...I doubt it, but remember Dorkbot is also able to infect USB drives, so disable autorun in your whole network.<br /><br />Also, you can always run a scan on the server in case of doubt.<br /><br />Let me know should you have any more questions.Barthttps://www.blogger.com/profile/18326761248866196755noreply@blogger.comtag:blogger.com,1999:blog-606282676955748155.post-49531255444082449192012-10-13T14:22:23.298+02:002012-10-13T14:22:23.298+02:00It was hardcoded, but that doesn't mean they c...It was hardcoded, but that doesn't mean they can't generate new droppers ;).Barthttps://www.blogger.com/profile/18326761248866196755noreply@blogger.comtag:blogger.com,1999:blog-606282676955748155.post-81613175845801518502012-10-12T16:02:14.279+02:002012-10-12T16:02:14.279+02:00Good, informative. Is the link to the web resource...Good, informative. Is the link to the web resource hardcoded or the "controllers" behind this one are able to update it ?Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-606282676955748155.post-78767345053845086472012-10-12T15:58:40.391+02:002012-10-12T15:58:40.391+02:00Thanks Bart! Phew!Thanks Bart! Phew!Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-606282676955748155.post-21721539578254980722012-10-12T10:53:51.843+02:002012-10-12T10:53:51.843+02:00Hi a work colleague managed to get infected with t...Hi a work colleague managed to get infected with the worm and we seem to have successfully removed it. My question is - is there any possibility that it can have spread to the company network server?Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-606282676955748155.post-50001243811208451952012-10-11T15:59:02.575+02:002012-10-11T15:59:02.575+02:00Hi, if you received the message "File removed...Hi, if you received the message "File removed by Hotfile" or similar, you are not infected.<br /><br />Stay safe,<br />Cheers!<br /><br />Barthttps://www.blogger.com/profile/18326761248866196755noreply@blogger.comtag:blogger.com,1999:blog-606282676955748155.post-55788826447759046852012-10-11T15:31:15.417+02:002012-10-11T15:31:15.417+02:00Thanks for your feedback, good post!Thanks for your feedback, good post!Barthttps://www.blogger.com/profile/18326761248866196755noreply@blogger.comtag:blogger.com,1999:blog-606282676955748155.post-5045734093728091292012-10-11T03:02:31.192+02:002012-10-11T03:02:31.192+02:00Hi, I Followed the link In error and found that th...Hi, I Followed the link In error and found that the file has been removed from Hotfile. Does this mean that I've had a lucky escape and my computer isn't affected?<br /><br />ThanksAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-606282676955748155.post-34304151630849394452012-10-10T21:33:58.770+02:002012-10-10T21:33:58.770+02:00I've made a post about the botnet here:
http:/...I've made a post about the botnet here:<br />http://www.exposedbotnets.com/2012/10/venustimeinfopl-ngrbot-irc-botnet.html<br />It includes the IRC info if anyone wants to take a look.I_Post_Ur_Infohttps://www.blogger.com/profile/04491852306466328445noreply@blogger.comtag:blogger.com,1999:blog-606282676955748155.post-32762890108755909582012-10-10T01:50:27.084+02:002012-10-10T01:50:27.084+02:00Thank you very much for all the useful tip.
I'...Thank you very much for all the useful tip. <br />I'm looking forward into the result.<br /><br />Thanks a lot,<br />LawrenceAnonymoushttps://www.blogger.com/profile/09020616180205361571noreply@blogger.comtag:blogger.com,1999:blog-606282676955748155.post-87228675364805302442012-10-10T00:45:16.184+02:002012-10-10T00:45:16.184+02:00Just a correction, api.wipmania.com is the geoip s...Just a correction, api.wipmania.com is the geoip service the bot uses to find the country code for it's irc nick (US,UK,CA, etc) The real C&C servers would be the ip addresses it tries to visit after that.I_Post_Ur_Infohttps://www.blogger.com/profile/04491852306466328445noreply@blogger.comtag:blogger.com,1999:blog-606282676955748155.post-29086970350206284802012-10-09T22:28:00.583+02:002012-10-09T22:28:00.583+02:00Greetings Lawrennce,
M_A_K's above comments h...Greetings Lawrennce,<br /><br />M_A_K's above comments hits the nail on the head.<br /><br />Best thing to do now is:<br />- uninstall Skype<br />- perform a scan with Malwarebytes (and an online scan with an antivirus product)<br />- change your Skype password (better be safe than sorry!)<br />- notify your Skype friends not to click on any links you might have sent out<br />- reinstall Skype<br /><br />Regards,<br />BartBarthttps://www.blogger.com/profile/18326761248866196755noreply@blogger.comtag:blogger.com,1999:blog-606282676955748155.post-45524936397782815702012-10-09T17:15:55.129+02:002012-10-09T17:15:55.129+02:00Hello lawrence! to remove the spam you must delete...Hello lawrence! to remove the spam you must delete your skype completely(if that doesn't work then delete everything related to skype), then use your anti virus to terminate the virus, after that re in stall skype and you should be fine.M_A_Knoreply@blogger.comtag:blogger.com,1999:blog-606282676955748155.post-57146026026432380512012-10-09T13:59:31.767+02:002012-10-09T13:59:31.767+02:00How to remove this virus spam? :( lately there'...How to remove this virus spam? :( lately there's a skype message pop-up in my pc it says skype useful tip, when I clicked allow access. message spammed in my skype contacts. Pls help<br /><br />Regards,<br />LawrenceAnonymoushttps://www.blogger.com/profile/09020616180205361571noreply@blogger.com