Win32.Bagle.AL@mm free removal tool 1.0

Win32.Bagle.AL@mm free removal tool 1.0 Screenshot Symptoms: - Presence of file %SYSTEM%WINdirect.

Developer:   Bitdefender
      software by Bitdefender →
Price:  0.00
License:   Freeware
File size:   0K
Language:   
OS:   Windows Vista (?)
Rating:   0 /5 (0 votes)

Symptoms:
- Presence of file %SYSTEM%WINdirect.exe.
- Presence of file %SYSTEM%windll.exe.
- Presence of registry key HKLMSOFTWAREMicrosoftWindowsCurrentVersionRunwin_upd.exe = %SYSTEM%WINdirect.exe or
HKCUSOFTWAREMicrosoftWindowsCurrentVersionRunwin_upd.exe = %SYSTEM%WINdirect.exe.
- Presence of registry key HKCUSOFTWAREMicrosoftWindowsCurrentVersionRu1n.

Technical description:
The worm comes in the form of a small file, that drops another file ( namely WINDirect.exe) in the %SYSTEM% directory.

This file then tries to raise it's privilege level and then starts a thread in which it keeps looking at all the processes and when it finds one within a list ( in order to prevent updating an AV product or the use of a firewall ) it tries to terminate it. Then it

tags systemwindirect exe  exe presence  exe systemwindirect  registry key  upd exe  

Win32.Bagle.AL@mm free removal tool 1.0 screenshot


Download Win32.Bagle.AL@mm free removal tool 1.0

 Download Win32.Bagle.AL@mm free removal tool 1.0


Similar software

Win32.Bagle.AL@mm free removal tool 1.0 Win32.Bagle.AL@mm free removal tool 1.0
Bitdefender

Symptoms: - Presence of file %SYSTEM%WINdirect.

Win32.Evaman.A@mm Removal Tool 1.0 Win32.Evaman.A@mm Removal Tool 1.0
BitDefender

Symptoms: Presence of registry key: HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionExplorerWintasks, HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionExplorerWintasks, HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRunwintasks.

Win32.MyDoom.M@mm Free Removal tool 1.0 Win32.MyDoom.M@mm Free Removal tool 1.0
SOFTWIN

Symptoms: - Presence of the following registry key: - HKLMSoftwareMicrosoftWindowsCurrentVersionRunJavaVM with the following value: - %WINDIR%java.

Win32.MyDoom.S@mm Free Removal tool 1.0 Win32.MyDoom.S@mm Free Removal tool 1.0
Bitdefender

Symptoms: Presence of "winpsd.

MiMail worm free removal tool MiMail worm free removal tool
SoftWin

A NEW variant of the MiMail worm family, version C, is proliferating across the world, according to security firm iDefense.

Win32.Mydoom.V@mm Free Removal tool 1.0 Win32.Mydoom.V@mm Free Removal tool 1.0
Softwin

Symptoms: Presence of files Documents and SettingsAdministratorStart MenuProgramsStartuprx32hh00.

Win32.Mabutu.A@mm Free Removal Tool 1.0 Win32.Mabutu.A@mm Free Removal Tool 1.0
SOFTWIN

Symptoms: Presence of files *twain.

Cadoa Arts/Science Presence 1.0 Cadoa Arts/Science Presence 1.0
Cadoa Arts/Science

PRESENCE is a useful mypace manager that makes promotion fast and easy.

RootkitRevealer 1.71 RootkitRevealer 1.71
Sysinternals

RootkitRevealer is an advanced root kit detection utility.

Win32.Bagle.AJ@mm Free Removal tool 1.0 Win32.Bagle.AJ@mm Free Removal tool 1.0
Bitdefender

Free removal tool for Win32.