Support Forum Articles File Help Startup DB Tips Service DB Hijack This! Analyzer

 

HijackThis automated log analyzer! Submit a log and you will receive ALL the information we have in our DB's on everything on your system INSTANTLY!
Page 0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18

win32s.exe


Click here to Run a Free Scan for win32s.exe Related Errors

What is it?
win32s.exe is a file associated with the w32.mydoom.v@mm worm.

What does it do?
W32.Mydoom.V@mm is a mass-mailing worm that downloads an excutable file.

When W32.Mydoom.V@mm is executed, it does the following:
  • Adds the value:

    "Win32System" = "%WinSysDir%win32s.exe"

    to the following registry key:

    HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun

    so that it is executed every time Windows starts.
  • Creates a mutex named "LLLf54fxrDLLL" so that only one copy of the worm is run on the infected computer.
  • Retrieves the email addresses from the Windows address book files.
  • Retrieves the email addresses from the files that have the following extensions on drives C through Y:.........
  • ........
More info and removal instructions
@symantec

Fix win32s.exe Errors: Free Scan

Recommended: Run a Free Performance Scan to automatically optimize memory, CPU and Internet Settings




win32s.exe is Spyware!

Startup DB Entries:
Nothing Found

Service DB Entries:
Nothing Found

Disclaimer

Every attempt has been made to ensure the information about win32s.exe is accurate but alot of malware applications try to pose as valid applications. If it is something other than what was posted above please leave some feedback in the forum.
Printer Friendly

User Comments
Security Risks - Adware Spyware
sndconfg16.exe | salm.exe | isass.exe | se.dll | kazza.exe | backweb-7288971.exe | bridge.dll | wtoolsa.exe | tkbellexe.exe | dl.exe | newdot~1.dll | wupdt.exe | mwsoemon.exe | saie.exe | webrebates0.exe | bxxs5.dll | funny.exe | 180ax.exe | randreco.exe | mssearchnet.exe | service.exe | webrebates1.exe | saap.exe | sais.exe | wsup.exe | backweb-137903.exe | sed.exe | alcmtr.exe | wo.exe | ffisearch.exe | optimize.exe | iadhide4.dll | backweb-8876480.exe | cdaengine0400.dll | istsvc.exe | newdotnet6_38.dll | Fvprotect.exe | Winupdate.exe | java.exe | cmesys.exe |
Copyright 2003-2013 iamnotageek &/or Martin Krohn.