Login or Register to Ask a Question and Join Our Community


Malware Advisories (RSS)

Worm_autorun.bcq

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Malware Advisories (RSS) Worm_autorun.bcq
# 1  
Old 05-06-2008
Worm_autorun.bcq
This worm may be downloaded from remote sites by other malware. It may be dropped by other malware. It may be downloaded from certain remote sites. It may be installed manually by a user.
It creates folders.It drops files/components.
It creates registry entries to enable its automatic execution at every system startup. It modifies registry entries to hide files with both System and Read-only attributes. It creates registry key(s)/entry(ies) as part of its installation routine.
It drops copies of itself in all physical drives and in all removable drives. It drops an AUTORUN.INF file to automatically execute dropped copies when the drives are accessed.
It accesses Web sites to download file(s). As a result, malicious routines of the downloaded files are exhibited on the affected system.


More...
Login or Register to Ask a Question

Previous Thread | Next Thread
Login or Register to Ask a Question

LEARN ABOUT BSD

uupoll

UUPOLL(8)						      System Manager's Manual							 UUPOLL(8)

NAME

       uupoll - poll a remote UUCP site

SYNOPSIS

       uupoll [ -ggrade ] [ -n ] system

DESCRIPTION

       Uupoll is used to force a poll of a remote system. It queues a null job for the remote system and then invokes uucico(8).

       The following options are available:

       -ggrade Only send jobs of grade grade or higher on this call.

       -n      Queue the null job, but do not invoke uucico.

       Uupoll is usually run by cron(5) or by a user who wants to hurry a job along. A typical entry in crontab could be:

	    0	 0,8,16    *	*    *	  /usr/bin/uupoll ihnp4
	    0	 4,12,20   *	*    *	  /usr/bin/uupoll ucbvax
       This will poll ihnp4 at midnight, 0800, and 1600, and ucbvax at 0400, noon, and 2000.

       If the local machine is already running uucico every hour and has a limited number of outgoing modems, a more elegant approach might be:

	    0	 0,8,16    *	*    *	  /usr/bin/uupoll -n ihnp4
	    0	 4,12,20   *	*    *	  /usr/bin/uupoll -n ucbvax
	    5	 *	   *	*    *	  /usr/sbin/uucico -r1
       This will queue null jobs for the remote sites at the top of hour; they will be processed by uucico when it runs five minutes later.

FILES

       /etc/uucp/	  UUCP internal files
       /usr/spool/uucp/   Spool directory

SEE ALSO

       uucp(1), uux(1), uucico(8)

4.3 Berkeley Distribution					 October 23, 1996							 UUPOLL(8)