|
 |
|
TROJ_BAGLE.QU
|
|
|
First Report:
|
2008-03-18 04:45
|
|
Last Update:
|
2008-03-24 04:42
|
|
|
Aliases:
|
2000
ME
No
NT
Server
TROJ_BAGLE.QU
XP
|
|
|
|
Information From AntiVirus Vendors
|
|
|
|
|
Below you will find virus information from different antivirus vendors included in this Secunia Virus Profile. Information about the virus along with links to removal tools will be listed below when available.
The information provided is sorted by the date on which the information first became publicy available on the antivirus vendors' websites. The earliest available reports are displayed first. Please note timestamps are in GMT+1.
|
|
|
#1 - TREND MICRO
|
| |
|
|
TROJ_BAGLE.QU
|
Severity:
-
|
File Size:
-
|
| |
|
|
Reported:
2008-03-18 04:45
|
Last Update:
2008-03-24 04:42
|
| |
Description:
This Trojan may be dropped by other malware. It may be downloaded unknowingly by a user when visiting malicious Web sites.
It creates folders. It modifies the affected system's registry to perform certain actions on tha affected system, such as automatically executing at every system startup.
It hides files, processes, and/or registry entries.
It accesses Web sites to download file(s). As a result, malicious routines of the downloaded files are exhibited on the affected system.
It drops files. Trend Micro detects these files as MAL_MLWR-1, TROJ_CORRP.MCS, and TROJ_PAKES.XZ. As a result, routines of the downloaded files are also exhibited on the affected system.
It corrupts the file NTRTSCAN.EXE, a file used by Trend Micro OfficeScan.
|
| |
|
Full Report From Vendor
View/Hide ChangeLog
|
|
ChangeLog:
|
|
|
Changes are listed in chronological order with the latest changes first.
|
|
| |
|
|
2008-03-18 05:31
|
Description was changed.
New:
"This Trojan may be dropped by other malware.
It may be downloaded unknowingly by a user
when visiting malicious Web sites.
It
creates folders. It modifies the affected
system's registry to perform certain actions
on tha affected system, such as automatically
executing at every system startup.
It
hides files, processes, and/or registry
entries.
It accesses Web sites to
download file(s). As a result, malicious
routines of the downloaded files are
exhibited on the affected system.
It
drops files. Trend Micro detects these files
as MAL_MLWR-1, TROJ_CORRP.MCS, and
TROJ_PAKES.XZ. As a result, routines of the
downloaded files are also exhibited on the
affected system.
It corrupts the file
NTRTSCAN.EXE, a file used by Trend Micro
OfficeScan."
Old:
"N/A"
|
|
|
|
|
|
Please note: The information that this Secunia Virus Profile is based on comes from a third party unless stated otherwise.
The grouping process is done completely automatically, therefore minor inconsistencies may occur. For more information about Secunia Virus Information, please read: About Virus Information.
|
|
|
|
|
Secunia PSI
Scan | Patch | Track
Free Download
|
|
|
Secunia Poll
|
|
|
|
|
 |
|
|
Most Popular Advisories
|
|
|
|
|
|
