It would seem that there is a third according to Symantec http://securityresponse.symantec.com/avcenter/venc/data/w32.blaster.c.wo rm.html Which drops in a little backdoor component has anyone seen this one out there yet? Bruce Martins Systems Administrator EXTEND>>MEDIA 190 Liberty Street Toronto, Ontario Canada M6K 3L5 _______________________ e:bmartinsat_private t: (416) 535-4222 ext. 2307 f: (416) 535-1201 http://www.extend.com -----Original Message----- From: Brad Pryce [mailto:bpryceat_private] Sent: Wednesday, August 13, 2003 9:29 PM To: Trent Dilkie Cc: incidentsat_private So, is that three different versions of the worm? The original, the one found by Kaspersky named teekids.exe, and this one? Trent Dilkie wrote: >Symantec has discovered a variant of Blaster, details at: > >http://securityresponse.symantec.com/avcenter/venc/data/w32.blaster.b.w >orm.h >tml > >Similar to Blaster, but the executable is named penis32.exe > >Have fun, >Trent > > >----------------------------------------------------------------------- >---- >----------------------------------------------------------------------- >----- > > > > ------------------------------------------------------------------------ --- ------------------------------------------------------------------------ ---- --------------------------------------------------------------------------- ----------------------------------------------------------------------------
This archive was generated by hypermail 2b30 : Thu Aug 14 2003 - 11:37:16 PDT