Internet bug attacks administrator/password logins
New Internet bug attacks administrator/password logins
- By Carlos A. Soto
- May 14, 2003
A new virus called Nick has begun infecting the registries of computers with login settings established as Administrator and passwords set as Password. Once inside, the virus establishes a File Transfer Protocol site for spam relay and storage.
The name of the bug appears to be Nick because that word appears frequently in the script files.
The virus initiates when a user clicks X or OK to close a spam box that randomly opens on screen. To see whether your Microsoft Windows system is infected, go to Windows Registry Edit, or regedit, from the Start-Run menu options.
Under regedit, click on software, Microsoft, Windows, current version, Run. Delete all Hidden 32 files.
These steps were tested in a Windows 2000 Advanced Server
environment and might need adjustment depending on your Windows operating system.