PaulDotCom mailing list archives

Previous By Date Next
Previous By Thread Next

Re: The dreaded outbreak scenarion

From: allison nixon <elsakoo () gmail com>
Date: Mon, 22 Oct 2012 07:48:24 -0400
According to this datasheet:
https://kc.mcafee.com/resources/sites/MCAFEE/content/live/PRODUCT_DOCUMENTATION/23000/PD23756/en_US/McAfee_Labs_Threat_Advisory_W32_Xpaj.pdf

the malware abuses the autorun function on removable drives, but I'm sure
it has other tricks up its sleeve too.  Disabling autorun might fix it,
assuming it uses no other exploits.  Do you have an executable sample by
any chance?  I suggest putting together a patched machine and change
settings until you are no longer able to infect it.

this link also looks like a decent roadmap if you wanted one:
http://www.f-secure.com/en/web/labs_global/eliminating-a-local-network-outbreak

Good luck.

On Mon, Oct 22, 2012 at 6:32 AM, gold flake <ptinstructor () gmail com> wrote:


Try reaching out to the OEM of OS. They may have a quick-fix available.
_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com





-- 
_________________________________
Note to self: Pillage BEFORE burning.

_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com
Previous By Date Next
Previous By Thread Next

Current thread: