|
 |
|
ONLINEG.DSO
|
|
|
First Report:
|
2008-02-05 04:25
|
|
Last Update:
|
2008-03-04 05:31
|
|
|
Aliases:
|
2000
ME
No
NT
Server
WORM_ONLINEG.DSO
XP
|
|
|
|
Information From AntiVirus Vendors
|
|
|
|
|
Below you will find virus information from different antivirus vendors included in this Secunia Virus Profile. Information about the virus along with links to removal tools will be listed below when available.
The information provided is sorted by the date on which the information first became publicy available on the antivirus vendors' websites. The earliest available reports are displayed first. Please note timestamps are in GMT+1.
|
|
|
#1 - TREND MICRO
|
| |
|
|
WORM_ONLINEG.DSO
|
Severity:
-
|
File Size:
-
|
| |
|
|
Reported:
2008-02-05 04:25
|
Last Update:
2008-03-04 05:31
|
| |
Description:
This worm may be dropped by other malware. It may be downloaded unknowingly by a user when visiting malicious Web sites.
This worm creates registry entry to enable its automatic execution at every system startup. It also modifies registry entries to hide files with both System and Read-only attributes.
This worm drops copies of itself in all physical and removable drives. It also drops an AUTORUN.INF file to automatically execute its dropped copies when the said drives are accessed.
|
| |
|
Full Report From Vendor
View/Hide ChangeLog
|
|
ChangeLog:
|
|
|
Changes are listed in chronological order with the latest changes first.
|
|
| |
|
|
2008-02-09 05:45
|
Description was changed.
New:
"This worm may be dropped by other malware. It
may be downloaded unknowingly by a user when
visiting malicious Web sites.
This worm
creates registry entry to enable its
automatic execution at every system startup.
It also modifies registry entries to hide
files with both System and Read-only
attributes.
This worm drops copies of
itself in all physical and removable drives.
It also drops an AUTORUN.INF file to
automatically execute its dropped copies when
the said drives are accessed."
Old:
"This worm may be dropped by other malware. It
may be downloaded unknowingly by a user when
visiting malicious Web sites.
This worm
creates registry entry to enable its
automatic execution at every system startup.
It also modifies registry entries to hide
files with both System and Read-only
attributes.
It deletes itself after
execution."
|
| |
|
|
2008-02-07 11:41
|
Description was changed.
New:
"This worm may be dropped by other malware. It
may be downloaded unknowingly by a user when
visiting malicious Web sites.
This worm
creates registry entry to enable its
automatic execution at every system startup.
It also modifies registry entries to hide
files with both System and Read-only
attributes.
It deletes itself after
execution."
Old:
"This worm may be dropped by other malware. It
may be downloaded unknowingly by a user when
visiting malicious Web sites.
Upon
execution, this worm drops several component
files, which Trend Micro detects as
WORM_AUTORUN.ZU, TSPY_ONLINEG.NNW,
WORM_AUTORUN.ZQ, WORM_NSANTI.FY."
|
| |
|
|
2008-02-05 06:41
|
Description was changed.
New:
"This worm may be dropped by other malware. It
may be downloaded unknowingly by a user when
visiting malicious Web sites.
Upon
execution, this worm drops several component
files, which Trend Micro detects as
WORM_AUTORUN.ZU, TSPY_ONLINEG.NNW,
WORM_AUTORUN.ZQ, WORM_NSANTI.FY."
Old:
"N/A"
|
|
|
|
|
|
Please note: The information that this Secunia Virus Profile is based on comes from a third party unless stated otherwise.
The grouping process is done completely automatically, therefore minor inconsistencies may occur. For more information about Secunia Virus Information, please read: About Virus Information.
|
|
|
|
|
Secunia PSI
Scan | Patch | Track
Free Download
|
|
|
Secunia Poll
|
|
|
|
|
 |
|
|
Most Popular Advisories
|
|
|
|
|
|
