virus..ohhhhhh virus... -- KOMUNITI MYMASJID

[ Show ]

Support VoyForums

[ Shrink ]

VoyForums Announcement: Programming and providing support for this service has been a labor of love since 1997. We are one of the few services online who values our users' privacy, and have never sold your information. We have even fought hard to defend your privacy in legal cases; however, we've done it with almost no financial support -- paying out of pocket to continue providing the service. Due to the issues imposed on us by advertisers, we also stopped hosting most ads on the forums many years ago. We hope you appreciate our efforts.

Show your support by donating any amount. (Note: We are still technically a for-profit company, so your contribution is not tax-deductible.) PayPal Acct: Feedback:

Donate to VoyForums (PayPal):

[ Login ] [ Contact Forum Admin ] [ Main index ] [ Post a new message ] [ Search | Check update time | Archives: 1, 2, [3], 4, 5, 6, 7, 8, 9, 10 ]

Subject: virus..ohhhhhh virus...

Author:
osama laden

[ Next Thread | Previous Thread | Next Message | Previous Message ]

Date Posted: 14:26:58 03/03/04 Wed
Author Host/IP: 210.19.76.36

Info Virus Baru :

W32/MyDoom.F@mm
24 Februari 2004
Varian MyDoom yang paling berbahaya

Kelihatannya bulan Ferbuari 2004 bukan merupakan bulan yang tenang,
malahan pemunculan virus di bulan ini menandingi bulan Januari.
Setelah di dera Bagle dan Netsky, pada tanggal 20 Februari 2004
muncul pula varian MyDoom yang sangat jahat, MyDoom.F.
Dikatakan jahat kerana MyDoom.F akan menghapus file dari komputer
telah dijangkiti.

Jika anda pernah menerima pesanan error di windows sebagai berikut :
Unable to open specified file
File cannot be opened
File is corrupted (

Dan banyak file-file dengan ekstension AVI, BMP, DOC, JPG, MDB,
SAV dan XLS mendadak hilang, kemungkinan besar komputer anda
telah menjadi korban MyDoom.F dan file-file di atas telah di hapus oleh
MyDoom.F. Vaksincom menyarankan anda untuk segera melakukan
tindakan Data Recovery jika anda menginginkan data anda kembali,
jangan sekali-kali menghidupkan komputer anda (kecuali harddisk yang
dijangkiti dijalankan sebagai slave) kerana akan menurunkan probability
Data Recovery.

Bagi anda yang belum dijangkiti MyDoom.f, harap segera update definisi
antivirus anda.

MyDoom.F akan datang dalam email dengan email sepert berikut :
From: (alamat email pengirim dipalsukan)
Subject: (bervariasi, antara lain)
. (Blank)
. Announcement
. ApprovedNews
. Attention
. automatic responder
. Bug
. Current Status
. EXPIRED ACCOUNT
. For your information
. hello
. hi, it's me
. hi
. IMPORTANT
. Information Warning
. Love is Love is...
. Please read
. Please reply
. Re: Approved
. Re: Thank You
. Re:
. Read it immediately
. read now!
. Read this
. Readme
. Recent news
. Recent news
. Something for you
. Undeliverable message
. Unknown
. You have 1 day left
. You use illegal File Sharing...
. Your IP was logged
. Your account is about to be expired
. Your credit card
. Your order is being processed
. Your order was registered
. Your request is being processed
. Your request was registered

Body: (bervariasi, antara lain)
. Check the attached document.
. Details are in the attached document. You need Microsoft Office to open it.
. Greetings
. Here is the document.
. Here it is
. I have your password :)
. I wait for your reply.
. I wait for your reply.
. I'm waiting Okay
. I'm waiting
. Information about you
. Is that from you?
. Is that yours?
. Kill the writer of this document!
. OK Everything ok?
. Please see the attached file for details
. Please, reply
. Read the details.
. Reply
. See the attached file for details
. See you Here it is
. See you
. Something about you
. Take it
. The document was sent in compressed format.
. We have received this document from your e-mail.
. You are a bad writer
. You are bad

Lampiran :
(bervariasi, terdiri dari ekstensi .cmd, .bat, .pif, .com, .scr, .exe dan
yang berbahaya adalah lampiran yang datang dalam ekstension .zip
kerana akan diloloskan oleh mailserver yang hanya mem"block"
executable dan tidak dilengkapi program antivirus yang terupdate)
dengan nama :
. msg
. doc
. document
. readme
. text
. file
. data
. test
. message
. body
. details
. creditcard
. attachment
. stuff
. me
. post
. posting
. textfile
. info
. information
. note
. notes
. product
. bill
. check
. ps
. money
. about
. story
. mail
. list
. joke
. jokes
. friend
. site
. website
. object
. mail2
. part1
. part4
. part2
. part3
. misc
. disc
. paypal
. approved
. details
. your_document
. image
. resume
. photo

Icon yang datang akan dipalsukan sehingga lampiran "seakan-akan"
tidak berbahaya dan merupakan file .txt, padahal jika diklik akan
menjalankan MyDoom.F.

MyDoom.F akan berusaha mematikan program dengan nama :
. avp.
. avp32
. intrena
. mcafe
. navapw
. navw3
. norton
. reged
. taskmg
. taskmo

MyDoom.F akan berusaha menyerang website www.microsoft.com
dan website www.riaa.com (Association Rakaman Amerika / Recording
Industry Association of America) pada setiap tanggal 17 dan 22 setiap
bulan, namun kerana penyebarannya yang kurang tinggi diperkirakan
impact dari Ddos yang dilancarkan diperkirakan tidak akan
menampakkan kesan besar bagi kedua website tersebut.

MyDoom.F akan berusaha menyebarkan dirinya sebagai file .zip atau
.exe pada beberapa directory local dan mapped. Nama atau Subjek
yang dipilih adalah secara rawak ( random ) dan ukuran filenya adalah
sekitaran 30Kb hingga 37Kb. Selain itu, MyDoom.F akan membuka
beberapa port untuk mengaktifkan Remote Access.

[ Next Thread | Previous Thread | Next Message | Previous Message ]

Replies:

[> Subject: Re: virus..ohhhhhh virus...
Author: abu nawas [ Edit \| View ]	Date Posted: 14:28:29 03/03/04 Wed Author Host/IP: 210.19.76.36 isk..isk..patutlah pun..banyak giler email sesat yg masuk dlm mailbox opis ana nih..malas lah nak buka...saper yg penah terima email sedemikian? haaaa,angkat tangan cepat..nak buat statistik nih...ehehe

[> Subject: Re: virus..ohhhhhh virus...
Author: One_na...NaWaRaSaRusi... [ Edit \| View ]	Date Posted: 18:26:48 03/03/04 Wed Author Host/IP: 219.94.59.244 oo..ni virus baru yer... patut ler... sblm ni...ader jugak recvd email subject hello hi test dan sbg nyer...tp nasib la slalu scan my pc maa....