Removal of W32.Zindos Worm
Win32/Zindos
Also Known As:
Zindos (F-secure)
WORM_ZINDOS (Trend Micro)
W32/Zindos.worm (McAfee)
W32.Zindos (Symantec)
Win32/Zindos (CA)
Summary
Win32/Zindos is a worm that targets computers running the following Microsoft Windows 9x, Windows ME, Windows NT, Windows 2000, and Windows XP. The worm spreads to computers that are already infected by the mass-mailer worm Win32/Mydoom.O@mm. Win32/Zindos may perform a denial of service (DoS) attack against certain Web sites.
Symptoms
You may notice system performance degradation and slower network connectivity if your computer is infected by Win32/Zindos.
Technical Information
The Win32/Zindos worm spreads through a backdoor that is created by the mass-mailer worm Win32/Mydoom.O@mm. The backdoor then runs Win32/Zindos. When Win32/Zindos runs, it adds a value to registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run. The registry value contains the worm path, so that the worm runs whenever Windows starts. The worm may create multiple threads to launch denial of service (DoS) attacks against certain Web sites.
This Malious Software can be removed using MICROSOFT MALICIOUS SOFTWARE REMOVAL TOOL
Download Now
Win32/Zindos
Also Known As:
Zindos (F-secure)
WORM_ZINDOS (Trend Micro)
W32/Zindos.worm (McAfee)
W32.Zindos (Symantec)
Win32/Zindos (CA)
Summary
Win32/Zindos is a worm that targets computers running the following Microsoft Windows 9x, Windows ME, Windows NT, Windows 2000, and Windows XP. The worm spreads to computers that are already infected by the mass-mailer worm Win32/Mydoom.O@mm. Win32/Zindos may perform a denial of service (DoS) attack against certain Web sites.
Symptoms
You may notice system performance degradation and slower network connectivity if your computer is infected by Win32/Zindos.
Technical Information
The Win32/Zindos worm spreads through a backdoor that is created by the mass-mailer worm Win32/Mydoom.O@mm. The backdoor then runs Win32/Zindos. When Win32/Zindos runs, it adds a value to registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run. The registry value contains the worm path, so that the worm runs whenever Windows starts. The worm may create multiple threads to launch denial of service (DoS) attacks against certain Web sites.
This Malious Software can be removed using MICROSOFT MALICIOUS SOFTWARE REMOVAL TOOL
Download Now
No comments:
Post a Comment