The Blackworm, Nyxem, KamaSutra Worm…

Lot’s of news following up on the Nyxem worm in the last few days. It’s currently going under a number of names, the Kama Sutra Worm, Blackworm are some of the more common names. Sans has a page for information on the worm here. Microsoft has detailed manual removal instructions. The counter that logs the worms infections, is close to 2 million. That last note might be taken with a grain of salt, as the counter is tracking all visits to the page, even curious security researchers. Why all the big fuss?

The big fuss is that on February 3rd this worm will wreak havoc on the document files of any machine that’s infected. The files would essentially be overwritten with a line of garbage. This would make recovery of the files extremely difficult if not impossible. Deleting a file is one thing, you just tell the operating system that it’s ok to re-use the space that the file uses, writing OVER the file puts you at a bigger disadvantage for data recovery. So, it’s important to get the word out to anyone that might not have current working antivirus to make sure they get at least an online check.

For those with the misfortune of trying to keep track of virus names, here is a list of the different labels that are being tossed around for this one.

AntiVir Worm/KillAV.GR
Avast! Win32:VB-CD [Wrm]
AVG Worm/Generic.FX
BitDefender Win32.Worm.P2P.ABM
ClamAV Worm.VB-8
Command W32/Kapser.A@mm (exact)
Dr Web Win32.HLLM.Generic.391
eTrust-INO Win32/Blackmal.F!Worm
eTrust-VET Win32/Blackmal.F
F-Prot W32/Kapser.A@mm (exact)
F-Secure Email-Worm.Win32.Nyxem.e
Fortinet W32/Grew.A!wm
Ikarus Email-Worm.Win32.VB.BI
Kaspersky Email-Worm.Win32.Nyxem.e
McAfee W32/MyWife.d@MM
Nod32 Win32/VB.NEI worm
Norman W32/Small.KI
Panda W32/Tearec.A.worm
QuickHeal I-Worm.Nyxem.e
Sophos W32/Nyxem-D
Symantec W32.Blackmal.E@mm
Trend Micro WORM_GREW.A
VirusBuster Worm.P2P.VB.CIL

It has been given a Common Malware “name”…. CME-24, more details on that available at

Related Posts

Blog Traffic Exchange Related Posts
  • IM worm acts as a come on to a Santa Claus site According to Information Week, there's a new IM worm out hitting the MSN, ICQ, Yahoo and AIM networks. It poses as a come on for a Santa Claus site. On visiting the site, users receive an unexpected "present" a rootkit which is hidden. IMlogic said that the worm, dubbed "M.GiftCom.All,"......
  • Nyxem.E virus delete files payload F-secure has some details on a dangerous payload for the Nyxem.E virus. (The Nyxem.E virus is very similar to the that was talked about earlier in the week.) In fact, this virus seems to be spreading fairly well (not the blockbuster spread of older email viruses, but it is......
  • Would you like spyware with that? Apple too.... These stories come up from time to time. A free giveaway of some sort and it turns out that there's spyware or a virus embedded, company gives a big "whoops" and fixes things by replacing them.... McDonalds had a promotion going where up to 10,000 people could win a flash......
Blog Traffic Exchange Related Websites
  • Fun Facts about Winter December 22 is the first day of winter for all the folks in the Northern Hemisphere! The sun is the furthest away from the equator, shining directly over the Tropic of Capricorn (Alice Springs, Australia and Sao Paulo, Brazil are just a couple of cities along the Tropic of......
  • Virus Writers Are Cowardly, Unimaginative Hacks Okay, listen up you pimply little cellar dwarfs. You think you're so smart living rent-free in your Mommy's basement writing your little computer viruses and worms? Well, creating a trojan is as close as you'll ever come to actually using something called a Trojan. And you're not so smart. You're......
  • Catching More Fish with Worms Fishing with worms can be really lucrative, and can drive excellent results but only if you follow some basic techniques and utilize some of the best fishing tips. Worms can be either live worms or synthetic worms, but you should shy away from the plastic worms that bass fishermen seem......    Send article as PDF   

Similar Posts

See what happened this day in history from either BBC Wikipedia
Amazon Logo

Comments are closed.

Switch to our mobile site