This variant of the Nyxem worm was found in September 2004. The worm spreads itself via emails. It deletes files of various security applications.
Once detected, the F-Secure security product will automatically disinfect the suspect file by either deleting it or renaming it.
Detailed instructions for F-Secure security products are available in the documentation found in the Downloads section of our Home - Global site.
You may also refer to the Knowledge Base on the F-Secure Community site for further assistance.
The worm drops this file:
When executed, the worm will run an empty copy of Windows Media Player. Additionally the worm can perform a Denial of Service (DoS) attack against this website: webstats.web.rcn.net