PaulDotCom mailing list archives
Re: The dreaded outbreak scenarion
From: allison nixon <elsakoo () gmail com>
Date: Mon, 22 Oct 2012 07:48:24 -0400
According to this datasheet: https://kc.mcafee.com/resources/sites/MCAFEE/content/live/PRODUCT_DOCUMENTATION/23000/PD23756/en_US/McAfee_Labs_Threat_Advisory_W32_Xpaj.pdf the malware abuses the autorun function on removable drives, but I'm sure it has other tricks up its sleeve too. Disabling autorun might fix it, assuming it uses no other exploits. Do you have an executable sample by any chance? I suggest putting together a patched machine and change settings until you are no longer able to infect it. this link also looks like a decent roadmap if you wanted one: http://www.f-secure.com/en/web/labs_global/eliminating-a-local-network-outbreak Good luck. On Mon, Oct 22, 2012 at 6:32 AM, gold flake <ptinstructor () gmail com> wrote:
Try reaching out to the OEM of OS. They may have a quick-fix available. _______________________________________________ Pauldotcom mailing list Pauldotcom () mail pauldotcom com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
-- _________________________________ Note to self: Pillage BEFORE burning.
_______________________________________________ Pauldotcom mailing list Pauldotcom () mail pauldotcom com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
Current thread:
- The dreaded outbreak scenarion Pat (Oct 21)
- Re: The dreaded outbreak scenarion allison nixon (Oct 21)
- Re: The dreaded outbreak scenarion Pat (Oct 22)
- Re: The dreaded outbreak scenarion gold flake (Oct 22)
- Re: The dreaded outbreak scenarion allison nixon (Oct 22)
- Re: The dreaded outbreak scenarion Ben Jackson (Oct 22)
- Re: The dreaded outbreak scenarion Ryan (Oct 22)
- Re: The dreaded outbreak scenarion Pat (Oct 22)
- Re: The dreaded outbreak scenarion Mike () pauldotcom com (Oct 23)
- Re: The dreaded outbreak scenarion allison nixon (Oct 21)