Support Forum Articles File Help Startup DB Tips Service DB Hijack This! Analyzer


HijackThis automated log analyzer! Submit a log and you will receive ALL the information we have in our DB's on everything on your system INSTANTLY!


Click here to scan for dl.exe Related Errors and Optimize PC performance

What is it?
dl.exe is a file associated with the W32.Bagz@mm worm

What does it do?
W32.Bagz@mm is a mass-mailing worm that uses its own SMTP engine to send itself to email addresses gathered from the infected computer.

When W32.Bagz@mm is executed, it does the following:
  1. Creates the following copy of itself:

    %System% utorial.doc <spaces> .exe

    Note: %System% is a variable that refers to the System folder. By default this is C:WindowsSystem (Windows 95/98/Me), C:WinntSystem32 (Windows NT/2000), or C:WindowsSystem32 (Windows XP).
  2. Adds the value:

    "syslogin.exe" = "syslogin.exe"

    to the registry key:


    so that the worm is executed every time Windows starts.
  3. Creates the following files:
    • %System%dl.exe
    • %System%syslogin.exe
  4. Disables the Windows firewall.
  5. Downloads and executes remote files.
  6. Installs its own network driver to bypass local firewalls.

Fix dl.exe Errors: Free Scan

Recommended: Run a Free Performance Scan to automatically optimize memory, CPU and Internet Settings

dl.exe is Spyware!

Can't connect to local MySQL server through socket '/var/lib/mysql/mysql.sock' (2)
Startup DB Entries: