Protector Plus Download Antivirus
Home
Download Antivirus
Antivirus Products
Order Antivirus


Antivirus Software for Windows XP/2000/2003
Antivirus Software for Windows Me/98
Antivirus Software for Exchange 2000/2003
Antivirus Software for NetWare

W32/Bagle.BY Trojan

NameW32/Bagle.BY Trojan
AliasesTROJ_BAGLE.AA, Troj/BagleDl-R
Discovered on August 8, 2005

 Virus Information - W32/Bagle.BY Trojan:

W32/Bagle.BY is a downloader trojan. This will infect Windows systems.

The trojan arrives as an attachment along with an email in a compressed format .zip.   

The infected email carries a spoofed 'From' address picked up randomly from the infected system.

The subject of the infected mail will be any one of the following;

The picture is sent on SMS
Is sent SMS

The body of the infected email will be blank.

The infected email carries any one of the following infected attachment;

beach.zip
In_park.zip
kitten.zip
legs.zip
new.zip
original.zip

Upon execution of the infected attachment, the trojan executes Mspaint application.
It copies itself as winshost.exe and wiwshost.exe in the Windows System folder.

It alters the windows registry at the following location to load itself during next startup;

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

The trojan also tries to terminate the processes related to some security softwares.

It also alters HOSTS file and prevents the user to access some of the security related websites.

Anti virus for Windows Download Now!

Home Page Download Antivirus Antivirus Products Order Antivirus

Copyright © 2005 Proland Software.All rights reserved

antivirus software, anti virus software, anti virus, download antivirus, download anti virus, free antivirus, free anti virus, antivirus, download, free, windows, windows xp, xp, sp2, windows me, windows 2000, 98, 95, nt, me, 2003, netware, anti-virus, virus, worm, trojan, protector, plus, proland, virus software, spyware