The Cuebot-K worm spreads via AOL Instant Messenger
Worm poses as Windows Genuine Advantage
/v3-uk/news/1972626/worm-poses-windows-genuine-advantage
04 Jul 2006, Robert Jaques , V3
IT security experts have warned of a worm that purports to be Microsoft's Windows Genuine Advantage (WGA) anti-piracy tool.
WGA has recently been branded as 'spyware' in that it collects unnecessary hardware and software data from users' PCs.
The Cuebot-K worm spreads via AOL Instant Messenger, registering itself as a new system driver service called 'wgavn'. It carries the display name 'Windows Genuine Advantage Validation Notification', and runs automatically during system startup.
Users who view the list of services are told that removing or stopping the service will result in 'system instability'.
Once in place the worm disables the Windows firewall, and opens a backdoor to infected computers which allows hackers to gain remote access, spy on users, and potentially launch distributed denial-of-service attacks.
"People may think they have been sent the file from one of their AOL IM buddies, but in fact the program has no friendly intentions," said Graham Cluley, senior technology consultant at Sophos.
"Technical Windows users would not be surprised to see WGA in their list of services, and may not realise that the worm is using that name as a cloak to hide the fact that it has infected the PC.
"If users heed the false warning about removing the program, and leave it running, they will present a backdoor to hackers that could allow them to gain control over the computer."
© Incisive Media Investments Limited 2010, Published by Incisive Financial Publishing Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, are companies registered in England and Wales with company registration numbers 04252091 & 04252093
Do you agree?
Unix...hahahahahaha
Come on idiot! What kind of games are we gonna play on Unix? Asteroids? Get a grip and realize the only reason PCs are so great is because of Microsoft. Why don't you stick your Unix box where the code don't execute you moron tech.
Posted by Your Momma, 05 Jul 2006
Off the soapbox please
How about commenting on the subject of the article (the worm) rather than taking a hopeless shot at Microsoft. Linux users are almost as annoying as Mac users in this regard. Next we'll have a Mac user telling us he's never had a worm or virus either. We've heard it all before my friend.
On to the topic though:
Uhm...let's see. Bad worm. Very naughty.
Posted by Bob, 04 Jul 2006
Have to agree
This isn't good news for Microsoft considering this will probably be the first of many attacks on it's anti-piracy efforts. Ubuntu is nice but you need venders out there to support it. Without user intervention on how any OS is preconfigured, there will always be security issues. *nix systems do have the advantage there. I gave up on Windows and to be honest with you I'm feeling pretty good about the decision. Did some beta testing on Vista and it pretty much solidified it for me. Same old package with the difference of forcing unreasonable hardware upgrades on people.
Posted by Dave, 04 Jul 2006
Got Mac? its about time you Did
The long list of intrusions and weakenesses in a worldwide product like Windows made by a company that makes 4 Billion dollars in profit per quarter is heresy. If you have a free XP install, turn off the autoupdates, and continue to use it til it fails. Then buy yourself a macintosh and get some work done without reading and worrying about the next guffaw from this company that has more money than brains. What a joke
Posted by KillerB, 04 Jul 2006
Reason #4823 to switch to Ubuntu
I have to laugh. Poor Windows users... when will they ever learn.
Posted by Warren, 05 Jul 2006
The King of the Hill
If Linux were the better choice...hackers would target IT. Linux is not nearly there yet to "take over" for the chosen operating system. I'm a computer "nerd" myself, but realize through simple logic that Linux will not take over as a desktop operating system until it operates as easily as a Microsoft PC or a Mac. The whole hacking thing is exactly how the United STates are targeted by all other countries as the "Bad Guy"...whoever is king of the hill has to watch out for people trying to knock them off...
Posted by Alex, 05 Jul 2006
So what to do...
My com now is service pack 2 so what i must to do to removw this worm?Sory about my english
Posted by Michael, 04 Jul 2006
Microsoft turns on unwary Microsoft users
For me, this goes back to my purchase of a new HP box w/ XP installed. After I caught it dialing up without my knowledge, I hosed it and began looking for an o/s that did what I told it too, not what Redmond told it to do.
That system has been Linux ever since.
No viruses, no spyware, and no backtalk from a machine that is supposed to do my bidding.
Posted by david hanover, 04 Jul 2006
time to ditch MS spying products completely
it high time customers ditched Microsoft altogether.
The persistant spying and snooping on its rented software is appalling.
I have been using Linux for about one year with no problems at all.
Try Ubuntu instead IT'S FREE
Why pay 200 to 1000 dollars for Microsh*te rubbish
Posted by ab, 04 Jul 2006
Ubuntu.com is a great alternative
Time to declare independence from Microsoft. The *real* Windows Genuine Advantage is spyware.
The previous poster mentioned Ubuntu GNU/Linux, and I have to agree. It does everything my business needs. They even ship you the CDs for free.
Posted by Ben, 04 Jul 2006
WGA realities
I like the idea of being able to use Ubuntu Linux instead of Windows. The reality is such that Windows is still easier to use and to find software software/applications for. The WGA is simple to defeat and I can still get all the updates I want. Just do a google search. Keep your copy of Windows "OWNED", not rented. Oh yeah, Windows XP Pro Corporate is just as freely obtained now as any other copy of Windows ever was. I was forced to buy Windows with every notebook I ever bought so I feel no guilt about using which version of Windows I want to and not paying the extra premium for it. XP is fantastic, the practises of Microsoft suck A**.
Posted by Doug in NY, 04 Jul 2006
Reasons to Rid yourself of MS software
Instead of a rambling that will be blasted for being anti-microsoft, here is IMHO some questions one can ask to see if they can truly rid themselves of MS products, thusly moving to Linux, BSD, or one of another free alternatives out there.
What do you use your computer for?
1.Work? If this is a corporate owned comptuer, then I am sorry you are probably stuck with MS software for good. One thing that coule be possible would to get yoru IS department to do testing to see if the corporation would switch to an alternative.
2.Personal Work? There are many good freely available alternatives to MS office, without the fears associated from Trojans, Virus', Malware for Linux, and FreeBSD. Open Office will not only 'read' Office docs, but can re-save them back to a doc, xls, etc extension to send back to the unfortunants that cannot change over to non-MS items.
Internet Surfing? Truly these are the people that need to switch over to a non-MS platform. With the threats on the Internet, and the inability of MS to secure it's products, it would be a sound idea to move off of the MS platforms and move to ANYTHING else.
Internet chatting? There are several different clients available to the end user that will allow you to chat on all the known chat networks, some will actually allow you to hook up to all of them at the same time.
Gaming? Unfortuantly, gaming is still a weak spot in the Linux/BSD. If you are a gamer, you are basically stuck with windows, although there are several out of the MacOS versions. You can however run many freeware or opensource games on Linux as both server or client systems.
Linux and BSD systems at not those old green screen versions of old (unless you want them to be ofcourse). The interfaces for Linux are just as intuiative as Windows, and you have a choice on what you want them to look like, cluttered or not, it doesn;t matter however you want, YOU decide what you get.
If this helps anyone I am glad!
Posted by jeff, 05 Jul 2006
I've been fool with "WGA".
My old laptop was Window 98 and it's been update to Window XP. I bought a new CD etc. with it then in my help menu there is a word keeps saying; "Genuine window check" for me why not try there's nothing to loose to tell them I've got a real staff. Ever since my laptop is gone weird. my e-mail is failing when I send an e-mail is been stop. then one day I cross check all my files and I've seen their copy files. I open and read it. "there's a word saying, I've found a nice place to play about the user did not detect I'm here.It's a nice place to be. I'll stay and make my self comfortable" I check all the notepad I seen somesort of little shopping reciept. Theres a wine and chocolate and a meal with it which I never order anything trough internet ever. I've seen a pictures like a person walking and staring on me. very creapy. I told my husband about it but he did not believe me. suddenly my notebook is getting slower than a normal speed. And I do not know which is the real e-mail I'm having. Also I'm having a lot of dodgy update too. My Notebook is completely in the mess. I try to get rid off all the mild virus Like "Clara and others". I've went away for 1 month abroad in Dec.and I still never had a time to check my laptop when I come back in Jan. when I look @ it sometime in Feb. Ive found 3 major virus in my computer. It was some sort of trojans,and file share worm some thing like that and spybot. I have Norton Anti- Virus. Which it will run out supposed to be in July/'06. But Norton is already failing the job 3 months before then. I really a bad experience in all of them viruses.I got rid off my old Dell Laptop. I have a new laptop now and I'm hoping never had the same nightmare aswell as the old one. If you decided to publish this writing. I hope you can sorted out my english grammar please. I'm still trying to improve my English Grammar @ the moment it seems I'm going no where. Thank you.
Posted by Victoria Plumpton, 11 Jul 2006
Amusment
I find it amusing how people assume they are safe if they dont use windows. To be honest, thats stupid thinking. Many virus are around for *nix systems, and to people who are not used to being a proper admin with these system are not likely to detect them not mentioning *nix systems being easier to attack and hack, mac users have been the safest, but mac's claims that they wont get infected are also stupid. If somebody sat down and wanted to target a mac system, they would and could find vunrabilites in it, and probably lots to boot, since it hasn't been targeted apple have had no need to try and find them. Where as microsoft, do, they find them and they fix them. Virus are always being written, but then people have to be smart in order to avoid viruses. Virus checkers wont find viruses unless they are known about. The real WGA actually may be considered spyware, but what data does it collect? Is it important that the data it collects is known. I mean who cares if microsoft knows I have a valid Windows XP Pro machine running on an AMD? I don't. Seems silly people fuss too much.
Posted by Nik Radford, 13 Jul 2006