Thanx Phil this is news !  Updated on 11/14.

McAfee calls the original infector:  W32/Hadra@M

And it started 6/01.

Oh and the site is back up !

Dave


"Phil Earnhardt" <pae@dim.com> wrote in message
news:bludrvo7hhnabvajk39epmd1qktj7j9rf8@4ax.com...
| >> W32.Hyd@mm
| >> Category2
| >> Discovered on: June 07, 2001
| >> Last Updated on: April 15, 2002 05:07:24 PM
| >>
| >> W32.Hyd@mm is a retro mass-mailing worm that spreads
| >> using Microsoft Outlook. When run, it downloads and
| >> installs the SETI @ Home program and sets it up to
| >> perform calculations on the account of the virus writer.
| >>
| >> Also Known As: SETI@Home worm
| >> Type: Worm
| >> Infection Length: 12249
|
| >It seems to be recent.
|
| If you go to www.deja.com and do a search on
|
| seti@home worm
|
| and sort the results by date, you'll see some recent entries at the
| top of the list. They mention
|
| http://setiathome.ssl.berkeley.edu/virus.html
|
| Which, apparently, is a writeup about the current worm. But the
| website is down right now.
|
| --phil
|