14 DAY TRIAL // Security company Trend Micro rolled out today an advisory concerning WORM_FUJACKS.HM, one of the latest and most powerful threats reported this month. The worm affects most Windows versions including 98, ME, NT, 2000, XP and Server 2003, Trend Micro wrote in the notification. And more important, WORM_FUJACKS.HM has a high damage potential and a high distribution potential, which underlines the worm's ability to harm the data on your computer. Now, let's see the juicy details:
"This worm arrives as a file downloaded unknowingly by a user when visiting malicious Web sites", Trend Micro noted. In addition, it is able to download and install other infections, so don't be too shocked to find out that your system is infected with all kinds of threats. The interesting fact is that it attempts to infect some file types, but also to "avoid folders with certain strings", probably in order to avoid a potential detection.
In addition to all those attempts, the worm tries to spread itself by copying the files on every detected network share. In case the shares are protected with passwords, it attempts to connect by using a list of usernames and passwords.
Just like any other recent worm, WORM_FUJACKS.HM wants to infect every clean removable drive connected to an affected system by dropping an Autorun.inf file to be executed every time such a device is detected.
"It terminates certain services and processes if found on the system or in memory. It then closes application windows that contain certain strings. Moreover, it deletes autostart registry entries associated with the processes it terminates. It does the said routine to completely disable applications", Trend Micro added.
Just like usual, you're advised to avoid visiting unknown websites, to refuse opening untrusted emails with suspect attachments that might drop the worm and infect the computer. In addition, keep your system up-to-date with the latest virus definitions.