New worms exploit MyDoom chaos

Virus writers are climbing on to the back of the chaos caused by the recent MyDoom worm to wreak more havoc across the internet. Security company Panda Software said it has detected five new worms related to the MyDoom worms within the last few days. The Nachi.B worm attempts to remove infections of MyDoom.A and MyDoom.B, and download Microsoft security patches to unprotected computers. Nachi.B is a new variant of the infamous Nachi.A virus that attempted to uninstall the Blaster worm last summer. A second worm DoomHunt.A also spreads to computers infected with the MyDoom.A and MyDoom.B worms and terminates processes and removes files associated with these worms. Deadhat.A and Deadhat.B enter computers directly through the internet, using the backdoor created by Mydoom.A and Mydoom.B. However, they can also spread using the file sharing application SoulSeek. Mitglieder.A also enters systems through the backdoor created by the MyDoom worms, copying itself in the system under the name system.exe. It is designed to stop processes of certain applications and it makes an entry in the Windows registry to ensure it stays on the computer. Web users are advised to be on the look out and update their anti-virus software as soon as possible. Home users of Microsoft Windows can visit windowsupdate.microsoft.com to have their systems scanned for Microsoft security vulnerabilities.