Another Alert

[martymas]

To read an HTML version of this newsletter, go to:

havent read the board so im not sure if has been posted yet.we can never be to careful

marty

http://www.trendmicro.com/en/security/report/overview.htm

Issue Preview:

1. Trend Micro Updates - Pattern File & Scan Engine Updates

2. Tsunami Worm – WORM_ZAR.A (Low Risk)

3. Top 10 Most Prevalent Global Malware

4. Submit your Spam & Suspicious Files for Analysis

NOTE: Long URLs may break into two lines in some mail readers.

Should this occur, please copy and paste the URL into your browser window.

************************************************************************

1. Trend Micro Updates - Pattern File & Scan Engine Updates

------------------------------------------------------------------------

PATTERN FILE: 2.363.00

http://trendnewsletter.rsc03.net/servlet/c...pgLlQgLlQgFV2VR

SCAN ENGINE: 7.500

http://trendnewsletter.rsc03.net/servlet/c...pgLlQgLlQgFV2VS

2. Tsunami Worm – WORM_ZAR.A (Low Risk)

------------------------------------------------------------------------

WORM_ZAR.A is a mass-mailing worm that uses its own Messaging

Application

Programming Interface (MAPI) engine to propagate. It gathers email

addresses

from Microsoft Outlook, and sends itself as an attachment. It runs on

all

Windows platforms (95, 98, ME, NT, 2000, and XP), and is currently

spreading

in-the-wild.

This mass-mailing worm drops the following files in the Windows folder:

crssr.exe

raz32.exe

tsunami.exe

It then creates a registry entry to ensure that it automatically executes

at

every Windows startup.

The worm propagates via email using MAPI. It gathers recipient addresses

from

Microsoft Outlook, and sends a copy of itself as an attachment. The

email it

sends contains the following details:

Subject:

Tsunami Donation! Please help!

Body:

Please help us with your donation and view the attachment below! We need

you!

Attachment:

tsunami.exe

This worm also also attempts to perform a distributed denial of service

attack

(DDoS).

If you would like to scan your computer for WORM_ZAR.A or thousands of

other worms, viruses, Trojans and malicious code, visit HouseCall, Trend

Micro's free, online virus scanner at:

http://trendnewsletter.rsc03.net/servlet/c...pgLlQgLlQgFV2VT

WORM_ZAR.A is detected and cleaned by Trend Micro pattern file

#2.359.00

and above.

For additional information about WORM_ZAR.A please visit:

http://trendnewsletter.rsc03.net/servlet/c...pgLlQgLlQgFV2VU

3. Top 10 Most Prevalent Global Malware

(from January 14 to January 20, 2005)

------------------------------------------------------------------------

1. WORM_NETSKY.P

2. HTML_NETSKY.P

3. JAVA_BYTEVER.A

4. EXPL_DHTML.GEN

5. WORM_NETSKY.D

6. SPYW_GATOR.D

7. SPYW_GATOR.C

8. WORM_NETSKY.B

9. SPYW_GATOR.B

10. WORM_NETSKY.C

4. Submit your Spam & Suspicious Files for Analysis

------------------------------------------------------------------------

Found a file on your computer, with a strange name, and it's not detected

as

malware? Tired of getting spam email? Send it to us, for our engineers to

analyze.

Submit your spam for analysis:

http://trendnewsletter.rsc03.net/servlet/c...pgLlQgLlQgFV2VW

Submit a suspicious file or undetected virus for analysis:

http://trendnewsletter.rsc03.net/servlet/c...pgLlQgLlQgFV2VY

********************************************************************************

***

______________________________________________________________________

This message was sent by Trend Micro's Newsletters Editor using Responsys

Interact .

To unsubscribe from Trend Micro's Newsletters Editor:

http://trendnewsletter.rsc03.net/servlet/o...RFpgLmDgLmDgSE0

To update your subscription preference, or to change your email address:

http://trendnewsletter.rsc03.net/servlet/w...pkNlyLihkm_U_VU

[tg1911]

Thanks, martymas.

[Oni]

Ohh never heard of a DDoS worm before

Thanks