Slashdot Mirror

← Back to Stories (view on slashdot.org)

New IM Worm On The Loose

Posted by CmdrTaco on from the head-for-the-hills dept.

elfarto writes "Techweb is reporting that a new worm that spreads via Microsoft's instant messaging client began badgering users Monday, several security firms said. Dubbed Funner, the worm propagates by sending itself to all the contacts listed in the user's copy of MSN Messenger, Microsoft's IM client. There is an analysis on Symantec Security Response Site; apparently the worm tries to download stuff from www.78p.com and adds entries to the hosts file pointing to more that 400 Chinese porn sites. The worm also sends itself to the whole contact list as funny.exe so it requires the user interaction to actually execute it. "

6 of 407 comments (clear)

  1. And here's your answer to the Chinese porn bounty. by pair-a-noyd · · Score: 0, Redundant

    http://yro.slashdot.org/article.pl?sid=04/10/11/02 39205&tid=153

    The cure? Suse Linux 9.1 Pro and Gaim..

  2. Requires User Interaction to spread? by nurb432 · · Score: 0, Redundant

    That sort of disqualifies it as a worm.

    Still a pain in the butt.. but not a true worm..

    --
    ---- Booth was a patriot ----
  3. Mods: I made this joke earlier. by Staos · · Score: 0, Redundant

    /karma to burn.

    --
    In Soviet russia, only old Koreans profit from pictures of Natalie Portman stored on Beowulf Clusters.
  4. Is there a problem? by mcrbids · · Score: 1, Redundant

    apparently the worm tries to download stuff from www.78p.com

    Slashdotted already. (sigh)

    --
    I have no problem with your religion until you decide it's reason to deprive others of the truth.
  5. This will never work. by rf600r · · Score: 0, Redundant

    This virus worm requires that the MSN Messenger service actually be running. Thus, it won't work.

  6. Only 1 porn site by jones948 · · Score: 1, Redundant

    Symantec's page lists the information that it puts in the host file. Apparently all 400 entries point to the same IP.