The worm is initially introduced into a network through the standard means of virus propagation (e.g., email attachments, infected diskettes). There are two forms of the worm: one which copies itself and the Distributed Net client, dnetc, and the other which copies itself only. If the worm is introduced into a NetBios-using network, it will infect all machines on the network in which it has share access through Network Neighborhood. Those machines, in turn, will try to infect others on which they have share access. At infection the virus installs itself, modifies the win.ini (adding a load= command so that it is starting at boot), and adds a registry key; if it is the variant carrying dnetc, it installs dnetc also. The worm looks to infect others in Network Neighborhood on all subsequent re-boots. Bymer does not carry a damaging causing payload (dnetc is not a virus, but an encryption breaking algorithm used as one of the Distributed Net projects).
 

Home / Access / Development / Support / Hosting / Local Links / Computers
 Contact Us / Green Apple News / Jobs / Site Map / Link To Us / Policy

Lancaster-Fairfield County Chamber of Commerce, 2000 Small Business of the Year
www.greenapple.com · tel. (740) 653-9890 · toll free. (866) 653-9890
Copyright © 1995 - 2007, Green Apple, Inc.