wipe-deletion-erasure-purge


I-Worm.Bagle.as

I-Worm.Bagle.as

CyberScrub AntiVirus
Research Bank

I-Worm.Bagle.as spreads via the Internet as an attachment to infected messages. It sends itself to all email addresses harvested from the victim computer. It contains a backdoor function.

The worm itself is a PE EXE file, 18758 bytes or greater in size.

Installation

Once launched, the worm copies itself to the Windows system directory under a variety of names:

Example:

C:\WINDOWS\SYSTEM32\bawindo.exe
C:\WINDOWS\SYSTEM32\bawindo.exeopen 
C:\WINDOWS\SYSTEM32\bawindo.exeopenopen

It then registers the appropriate file in the system registry:

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
bawindo = %system%\bawindo.exe

This ensures that the worm will launch each time the system is rebooted.

Propagation via email

The worm searches for files with the following extensions:

adb
asp
cfg
cgi
dbx
dhtm
eml
htm
jsp
mbx
 
mdx
mht
mmf
msg
nch
ods
oft
php
pl
sht
 
shtm
stm
tbb
txt
uin
wab
wsh
xls
xml

and sends itself to all email addresses harvested from these files. It establishes a direct connection to the recipient's SMTP server in order to send messages.

Infected messages: Sender's address: 
Random
Message header: 
Re: 
Re: Hello
Re: Hi 
Re: Thank you! 
Re: Thanks :)
Attachment name: 
Joke
Price
price

with one of the following extensions:

com 
cpl 
exe
scr
Propagation via P2P

The worm creates copies of itself in all subdirectories which contain the word 'Share' in their names. The copies are saved under names chosen from the following list:

ACDSee 9.exe
Adobe Photoshop 9 full.exe
Ahead Nero 7.exe
Kaspersky Antivirus 5.0
KAV 5.0
Matrix 3 Revolution English Subtitles.exe
Microsoft Office 2003 Crack, Working!.exe
Microsoft Office XP working Crack, Keygen.exe
Microsoft Windows XP, WinXP Crack, working Keygen.exe
Opera 8 New!.exe
Porno pics arhive, xxx.exe
Porno Screensaver.scr
Porno, sex, oral, anal cool, awesome!!.exe
Serials.txt.exe
WinAmp 5 Pro Keygen Crack Update.exe
WinAmp 6 New!.exe
Windown Longhorn Beta Leak.exe
Windows Sourcecode update.doc.exe
XXX hardcore images.exe
Remote administration

The worm opens and tracks activity on TCP and UDP port 81 in order to receive commands.

Check out if we have free removal tool for this virus


CyberScrub AntiVirus provides state of the art security protection for five years- at one low price. Our award winning technology ensures protection against viruses, worms and trojans backed by top customer support and value.
 
Five Year Cost Comparison
Product Initial Cost Yearly Subscription X Four Years Total
Norton 2004 AntiVirus $49.95* $29.95 $119.80 $169.75
McAfee VirusScan $49.95* $19.95 $79.80 $129.75
CyberScrub AntiVirus $49.95 Included No Additional Cost $49.95
*All prices MSRP as published on respective sites.



It is only a matter of time before a virus, worm or Trojan horse wrecks havoc on your important data. Important files, records, family pictures- all at risk. Some dangerous programs can even ruin your hard drive beyond repair.

CyberScrub AntiVirus offers the most effective protection from all known and unknown viruses.

CyberScrub AntiVirus is powered by a unique integrated technology for virus detection, based on principles of multi-generation heuristic analysis. This allows the program to protect you from suspect “viral behavior”. This highly effective methodology repelled all attacks of each “I LOVEYOU’ viral variation without any additional antivirus database updates. No other technology, including Norton, Trend, or McAfee was able to accomplish this.

CyberScrub AntiVirus is powerful, yet its exceptional ease of use and installation make it acceptable for beginner to pro


CyberScrub Antivirus constantly scans your hard drive and files to identify, clean and destroy infected objects. With updates available every three hours, 24 hours a day, 365 days a year, you can count on CyberScrub to protect your valued data.

CyberScrub AntiVirus
Lifetime Edition

"For the Life of Your Computer"
Save $10 Now!
Limited Time

 

I-Worm.Bagle.as

Symantec Warns Of Flaw In Antivirus Program. More>>

CNN Legend Lynne Russell reports on CyberScrub AntiVirus for Tech Headline News.


















 
 

delete,deletion, file deletion, Internet clean up,privacy, HIPAA, Internet privacy, cookies, erase, erasure, shredder, wipe, overwrite, purge, deletion, security, file wipe, data destruction