Search:  

 
theme to white backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » Up and Running » Security » Security » Wow! Mozilla distributing infected code!
Search Topic:
 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Posting:
Post a:
Post a:
Links: ·Hijack This logs? ·Panda Free Tools ·Vundo Removal
Quickbook 2008 and XP SP3 »
« Do you disable 'System Restore' and then do a virus-scan?  
AuthorAll Replies

SUMware
Premium
join:2002-05-21

reply to alamarco
Re: Wow! Mozilla distributing infected code!

From »www.pandasecurity.com/homeusers/···iculares

Brief Description

Xorer.O is a worm that only affects computers that belong to the same local network.

Its main aim is to capture and modify the HTTP-type network packets that are sent from the computers.

As a consequence, the websites requested by the user will be displayed with alterations. However, this anomaly will not be displayed in the infected computer.

Xorer.O spreads through the local, removable and mapped drives, making copies of itself in them.

Visible Symptoms

Xorer.O is difficult to recognize, as it does not display any messages or warnings that indicate it has reached the computer.

However, as Xorer.O only affects computers that belong to a local network, there will be symptoms in other computers.

In the computers that are part of the same network as the affected computer, the visited websites will have anomalies, a pop-up window will appear at the bottom right of the website, as in the image below:



Common name: Xorer.O
Technical name: W32/Xorer.O.worm
Threat level: Medium
Type: Worm
Effects: It only affects computers that belong to the same local network. It captures and modifies the HTTP-type network packets that are sent from these computers, in such a way that the websites visited by the user will be displayed with alterations. It spreads through the local, removable and mapped drives.
Affected platforms: Windows 2003/XP/2000/NT/ME/98/95/3.X
First detected on: Feb. 28, 2008
Detection updated on: March 1, 2008
to forum · permalink · · 2008-05-08 15:50:25 · Reply to this


alamarco
o.O

join:2003-06-18
Windsor, ON
clubs:		 Thank-you! I appreciate that information.
to forum · permalink · · 2008-05-08 16:06:10 · Reply to this
Forums » Up and Running » Security » SecurityQuickbook 2008 and XP SP3 »
« Do you disable 'System Restore' and then do a virus-scan?  

Saturday, 28-Nov 01:03:22 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.
page compression OFF
Most commented news this week
· [121] Time Warner Cable Fires Broadside At Broadcasters
· [112] New AT&T Ad Campaign Hits Back At Verizon
· [96] Apple Joins AT&T Verizon Snark Fest
· [87] New Bill Takes Aim At Higher Verizon ETFs
· [70] TiVo Sees Record Customer Losses
· [69] In-Flight Internet Headed For Bumpy Landing?
· [65] Verizon CEO: Hulu Will Be Dead Soon
· [62] Thanksgiving Open Thread
· [47] Weekend Open Thread
· [40] EFF Wages War On Fine Print
Most people now reading
· Leveling to 85 [World of Warcraft]
· [Newsgroups] Newzleech down? [Filesharing Software]
· 3.x Feral Druid - Bear Tanking Guide [World of Warcraft]
· TPIA review by Electronic Box [Canadian Broadband]
· HOW-TO: QoS and Tomato (fixes "choppy voice") [MagicJack]
· Windows 7 boot manager editing questions [Microsoft Help]
· [Scam] Cruise line mail? [Spam, Scam and Phishbusters]
· netTalk tk6000 [VOIP Tech Chat]