high
Summary
Summary
Action- More Information
| How it spreads |
|
|---|---|
| Affected operating systems | Windows |
| Characteristics |
|
| Protection available since | 31 May 2008 03:12:08 (GMT) |
| Last updated | 21 November 2009 04:26:22 (GMT) |
| Detected by | All Sophos products |
Free virus scan
- Free virus, spyware, and adware scan
- Test your existing anti-virus protection
- Find threats your anti-virus missed
Action
- Summary
- Action
- More Information
Please follow the instructions for removing worms.
W32/MarioF-Gen locks some W32/MarioF-B files thereby preventing them from being scanned.
User should reboot and rescan after cleanup of W32/MarioF-Gen to ensure there is no W32/MarioF-B infection left over.
Some versions of W32/MarioF-Gen replace the existing copy of <System>\termsrv.dll and <System>\dllcache\termsrv.dll with an older version which allows concurrent connections. User may need to restore these files from Windows installation disk.
W32/MarioF-Gen enables Windows Terminal Server. User should disable this service if it is not required.
More Information
W32/MarioF-Gen copies itself to network shares that are protected by weak passwords.
After copying to a network share, W32/MarioF-Gen creates the SCNa service with the display name "SCNa Service" on the remote computer.
|
