فيروس آخر يرسل كميات مهولة من الرسائل Sober.F malicious code

السلام عليكم , الفيروس دا برضو يرسل رسائل بصورة متواصلة
قد ياتيك من صاحبك او من اى جهة اخرى.
ارجو الانتباه فى عدم فتح اى رسالة من هذا النوع , وتفاصيل اوفى هنا

added April 4
US-CERT is aware of a new mass-mailing malicious code known as "Sober.F". Sober.F arrives as an email message written in German or English and containing a 42,496-byte email attachment. When a user opens the attachment, Sober.F copies itself to %SYSTEM%\.exe, where is one of: sys, host, dir, expolrer, win, run, log, 32, disc, crypt, data, diag, spool, service, or smss32. It then creates a registry key

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\
and and adds
"" = "%System%\.exe %1"
to
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
to start the malicious code automatically when Windows starts. Sober.F additionally creates a number of other files in %SYSTEM%, including zmndpgwf.kxx and bcegfds.lll. The malicious code then scans all fixed drives on the system for email addresses to send copies of itself to. Sober.F uses its own SMTP engine to generate the outgoing messages. It may attempt to connect to the Internet using Dial-Up Networking if no network connection is found.

US-CERT strongly encourages users to install and maintain anti-virus software as well as patch their systems to prevent exploitation of vulnerabilities.

You may also wish to visit the US-CERT's computer virus resources page.

دى صورة للوورم او الفايروس من شخص اعرفه , مضاد الفيروس اكتشفو
بس بدون زعل لانو دى الحال اليومين ديل