The Web    Google
9/16: Evaman-D Worm Kills Active Processes

9/16: Evaman-D Worm Kills Active Processes
September 16, 2004

Evaman.D is a worm that checks every 5 seconds if processes containing certain text strings are active in memory, and ends them. Some processes that include those text strings belong to antivirus programs and system tools, among others, and ending them would leave the affected computer vulnerable to the attack of other malware.

Evaman.D spreads via e-mail, in a message with variable characteristics.

Technical details are at Panda Software page.

  • 'Critical' Office 2003 Patch Released
  • 3/9: Forbot-AB Worm Uses Network Shares
  • China Backs Down on WAPI Deadline
  • Nachi Worm Exploits Security Hole in Microsoft Windows
  • Netsky-C Hammers U.S. and U.K.
  • 3/25: Sdbot-WG a Worm and IRC Trojan
  • 5/20: Mytob-EU Worm Drops Copy
  • 4/18: Mytob-BR Worm Mails Itself Out
  • 6/14: Spybot-CO Spreads via KaZaA Network
  • Outtasking Solution to Company's Email Woes
  • Trolling For Anti-Phishing Laws
  • Computer security background information