Support Forum Articles File Help Startup DB Tips Service DB Hijack This! Analyzer

 

HijackThis automated log analyzer! Submit a log and you will receive ALL the information we have in our DB's on everything on your system INSTANTLY!
Page 0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18

bawindo.exe


Click here to scan for bawindo.exe Related Errors and Optimize PC performance

bawindo.exe
What is it?
bawindo.exe is a file associated with the W32.Beagle.AR@mm mass-mailing worm

What does it do?
W32.Beagle.AR@mm is a mass-mailing worm that uses its own SMTP engine to spread. The email attachment is a downloader, similar to the Mitglieder family of Trojans, that downloads the worm from an external source.

When the w32.Beagle.AR@mm worm is executed it:

Creates the following files:

%System%awindo.exe.
%System%awindo.exeopen
%System%awindo.exeopenopen
%System% e_file.exe

Adds a value:

"bawindo"="%System%awindo.exe" to the registry key: HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionRun

deletes some registry values from the registry keys: HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionRunAttempts to create copies of itself in any folder that contains the characters "shar". The files will have the following file names:
  • Microsoft Office 2003 Crack, Working!.exe
  • Microsoft Windows XP, WinXP Crack, working Keygen.exe
  • Microsoft Office XP working Crack, Keygen.exe
  • Porno, sex, oral, anal cool, awesome!!.exe
  • Porno Screensaver.scr
  • Serials.txt.exe
  • KAV 5.0
  • Kaspersky Antivirus 5.0
  • Porno pics arhive, xxx.exe
  • Windows Sourcecode update.doc.exe
  • Ahead Nero 7.exe
  • Windown Longhorn Beta Leak.exe
  • Opera 8 New!.exe
  • XXX hardcore images.exe
  • WinAmp 6 New!.exe
  • WinAmp 5 Pro Keygen Crack Update.exe
  • Adobe Photoshop 9 full.exe
  • Matrix 3 Revolution English Subtitles.exe
  • ACDSee 9.exe
More info and Removal
@symantec

Fix bawindo.exe Errors: Free Scan

Recommended: Free PC Speed Test - what is slowing down your PC?


bawindo.exe is Spyware!

Startup DB Entries:
[bawindo]"Added by the BEAGLE.AR or BEAGLE.AU WORMS!" b

Service DB Entries:
Nothing Found

Disclaimer

Every attempt has been made to ensure the information about bawindo.exe is accurate but alot of malware applications try to pose as valid applications. If it is something other than what was posted above please leave some feedback in the forum.
Printer Friendly

User Comments
Security Risks - Adware Spyware
sndconfg16.exe | salm.exe | isass.exe | se.dll | kazza.exe | backweb-7288971.exe | bridge.dll | wtoolsa.exe | tkbellexe.exe | dl.exe | newdot~1.dll | wupdt.exe | mwsoemon.exe | saie.exe | webrebates0.exe | bxxs5.dll | funny.exe | 180ax.exe | randreco.exe | mssearchnet.exe | service.exe | webrebates1.exe | saap.exe | sais.exe | wsup.exe | backweb-137903.exe | sed.exe | alcmtr.exe | wo.exe | ffisearch.exe | optimize.exe | iadhide4.dll | backweb-8876480.exe | cdaengine0400.dll | istsvc.exe | newdotnet6_38.dll | Fvprotect.exe | Winupdate.exe | java.exe | cmesys.exe |
Copyright 2003-2013 iamnotageek &/or Martin Krohn.