NEWS FROM THE LAB - Thursday, May 4, 2006

To our Malaysian readers Posted by Patrik @ 02:22 GMT

brontok We've been in touch with the Malaysian CERT over the last few days and there seem to be a fairly big local outbreak of the Brontok worm going on there. Therefore we'd like to give a heads-up to our readers in that region. MyCERT has put together a good advisory on how to clean your PC if you are infected.

Brontok has been around since October last year and is a pretty standard mass-mailing worm but can be a bit tricky to remove as some variants modify the Explorer and Shell registry values. Unless it's done correctly, you might run into login problems. The texts in the message itself are in Indonesian. For more information, please see our description of Brontok.