This application requires Javascript for optimal performance.

W32/Stration.DT!dam - Released Oct 26, 2006

Alias/es

Email-Worm.Win32.Warezov.et, Trj/SpamtaLoad.Y, TROJ_STRAT.EQ, W32/Stratio-BF, W32/Warezov.gen3!W32DL, Win32.Warezov.DO@mm, Win32/Stration worm

Detection Availability

	Active Database	Extended Database
FortiGate		low high
FortiClient
FortiMail		N/A

Visible Symptoms

Possible firewall alert that an executable is attempting to connect to the internet.

Detailed Analysis

Detected file is no longer infectious and is a damaged version of the 32bit virus - damaged files have major truncation of code and cannot run.
Contains codes that indicate that it would download a file from the following URL:
http://www6.fand[REMOVED]nha.com/chr/829/nt.exe
This file is detected as W32/Stration.DS@mm.

Recommended Action

FortiGate Systems

Check the main screen using the web interface for your FortiGate unit to ensure that the latest AV/NIDS database has been downloaded and installed on your system - if required, enable the "Allow Push Update" option.

Reference: ID - 300684

Current Threat Level

Vulnerabilities

Virus/Spyware

Spam

PGP Keys

Contact Form

Copyright © 2011 Fortinet Inc. All Rights Reserved