1. Symantec/
  2. Security Response/
  3. W32.Spybot.ANJJ

W32.Spybot.ANJJ

Risk Level 2: Low

Discovered:
January 5, 2007
Updated:
February 13, 2007 1:03:10 PM
Type:
Worm
Systems Affected:
Windows


W32.Spybot.ANJJ is a worm that spreads through mIRC and to network shares protected by weak passwords. It also spreads by exploiting system vulnerabilities.

Notes:
  • Recent variants of the Spybot worm family exploit several known vulnerabilities, including a SAV 10/SCS 3 vulnerability (SYM06-010), reported in May 2006. A patch for this vulnerability was made available at that time. Symantec highly recommends that users of the affected products patch their systems as soon as they are able to help avoid the spread of this particular Sybot worm family. If systems are infected with any Spybot variant and this security patch has not been applied please read the document, Attempting to migrate from 10.x to a newer version fails after becoming infected with a worm which exploits SYM06-010.
  • Excessive network traffic caused by an infection may result in a significant degradation of network performance.
  • IPS signatures against all known and unknown exploits of SYM06-010 were released on May 26, 2006.


Antivirus Protection Dates

  • Initial Rapid Release version January 6, 2007
  • Latest Rapid Release version August 20, 2008 revision 017
  • Initial Daily Certified version January 6, 2007
  • Latest Daily Certified version August 20, 2008 revision 016
  • Initial Weekly Certified release date January 10, 2007
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.
Writeup By: Robert X Wang

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
2016 Internet Security Threat Report, Volume 21
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube