|
|
| Immediate Delivery |
 |
| 62 KB |
 |
|
Publisher's description of WinBagleALmm free removal tool
Free Spyware & Trojan scan!
|
|
|
|
Free removal tool for Win32.Bagle.AL@mm Symptoms:
- Presence of file %SYSTEM%WINdirect.exe.
- Presence of file %SYSTEM%windll.exe.
- Presence of registry key HKLMSOFTWAREMicrosoftWindowsCurrentVersionRunwin_upd.exe = %SYSTEM%WINdirect.exe or
HKCUSOFTWAREMicrosoftWindowsCurrentVersionRunwin_upd.exe = %SYSTEM%WINdirect.exe.
- Presence of registry key HKCUSOFTWAREMicrosoftWindowsCurrentVersionRu1n.
Technical description:
The worm comes in the form of a small file, that drops another file ( namely WINDirect.exe) in the %SYSTEM% directory.
This file then tries to raise it's privilege level and then starts a thread in which it keeps looking at all the processes and when it finds one within a list ( in order to prevent updating an AV product or the use of a firewall ) it tries to terminate it. Then it starts another thread that tries to download the main part of the massmailer from a list of addresses, each 10 hours.
|
|
62 KB |
 |
 |
|
| Downloads: |
4 |
Last update: |
Mar 25, 2008 |
| Size: |
62 KB |
Operating System: |
Windows All |
| Price: |
- |
License: |
Freeware |
| You may also be interested in: |
|
|
|
| More to Try |
PC Washer is a powerful system cleaner that allows you to remove space wasting junk files from...
Parallels Desktop 3.0 for Mac provides the best solution to enable Apple users to run Windows,...
STOPzilla Anti-Spyware safely detects and removes Spyware, Adware, Popup Ads, Phishing Attacks,...
KriptoDrive 2007 Makes your documents truly safe, so nobody can read them or manipulate them...
EasyClone 2008 Technician is the complete solution to backup your hard disk. It copies the entire...
PictureImp is the world's first "Zero-Click" web image downloader. You will definitely love...
|
|
