New Threat: Netsky.C Worm

There’s a new worm out there that I’m sure you’ve run into, and it’s a sneaky one. W32.Netsky.C is a mass-mailing worm that uses its own SMTP engine (mail server) to send infected emails to the email addresses it finds when scanning the hard drives and mapped drives.

Using a variety of subject lines and body text these emails trick the recipient into opening them.

Once unleashed, this worm also searches drives C through Z for folder names containing “Shar” and then copies itself to those folders allowing it to infect any PCs on your network.

Prevention

You should have updated antivirus software—especially if you are using a http://securityresponse.symantec.com/ ^[1]

Removal

If you don’t have any Anti-Virus software on your PC (shame on you) both http://vil.nai.com/vil/stinger/ ^[2]

Symantec removal tool
http://securityresponse.symantec.com/avcenter/venc/data/w32.netsky@mm.removal.tool.html

Hopefully none of you fell for this one.

Stay safe out there.

~ Chad Stelnicki