Softpedia >Windows >Antivirus >Removal Tools >  Win32.Badtrans.B@mm Detection & Clean
Win32.Badtrans.B@mm Detection & Clean icon

Win32.Badtrans.B@mm Detection & Clean

4.4/5 10
Certified 100% CLEAN Freeware   

A removal tool for the Badtrans virus #Badtrans.B@mm cleaner  #Badtrans remover  #Badtrans worm  #Badtrans.B@mm  #Badtrans  #Worm  

Description

Free Download

Win32.Badtrans.B@mm Detection & Clean screenshot

Win32.Badtrans.B@mm Detection & Clean is a small utility that can help you get rid of the malware infection.

The virus comes in the following format:

From: e-mail address of the infected sender or one of the following e-mail addresses:

"Anna" [email protected] "JUDY" [email protected] "Rita Tulliani" [email protected] "Tina" [email protected] "Kelly Andersen" [email protected] " Andy" [email protected] "Linda" [email protected] "Mon S" [email protected] "Joanna" [email protected] "JESSICA BENAVIDES" [email protected] "Administrator" [email protected] "Admin" [email protected] "Support" [email protected] "Monika Prado" [email protected] "Mary L. Adams" [email protected]

Subject: Empty or having the following content:

RE: RE: [original subject]

Body: Empty

Attachment: The name of the attachement is formed using one of the following words:

fun Humor docs info Sorry_about_yesterday Me_nude Card SETUP stuff YOU_are_FAT! HAMSTER news_doc New_Napster_Site README images Pics

The extension of the attachment could be a combination of .MP3., .DOC., .ZIP., with .scr., .pif. or just .scr or .pif.

The worm is using the IFRAME vulnerability and it will be executed on computers with Outlook Express just by preview. Computers with security patch will be infected only by executing the attachment.

After execution the worm copies itself in Windows %System% directory under the kernel32.exe name, and it will drop the kdll.dll at the same location.

To ensure that it will be executed at restart it adds the following registry key:

[HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\Kernel32]

with value kernel32.exe.

Then it will delete itself from the location where it was executed, and it will gather computer information (like User name, computer name, RAS information, passwords, so on) and sends it to the following e-mail address: [email protected]

The Worm has two methods of getting e-mail addresses: It search them in *ht* and *.asp files in Internet Cache directory or it gets them with MAPI functions from e-mails received by the infected user.

It will not send itself twice to the same address because it keeps the already used e-mail addresses in %SYSTEM%\PROTOCOL.DLL.

Win32.Badtrans.B@mm Detection & Clean 1.0.0.1

 add to watchlist add to download basket send us an update REPORT
  runs on:
Windows All
  file size:
240 KB
  filename:
antibadb.exe
  1 screenshot:
Win32.Badtrans.B@mm Detection & Clean - Win32.Badtrans.B@mm Detection & Clean will scan and remove the virus infection in no time.
  main category:
Antivirus
  developer:
  visit homepage

Microsoft Teams

Effortlessly chat, collaborate on projects, and transfer files within a business-like environment by employing this Microsoft-vetted application
Microsoft Teams

Bitdefender Antivirus Free

Feather-light and free antivirus solution from renowned developer that keeps the PC protected at all times from malware without requiring user configuration
Bitdefender Antivirus Free

4k Video Downloader

Export your favorite YouTube videos and playlists with this intuitive, lightweight program, built to facilitate downloading clips from the popular website
4k Video Downloader

Context Menu Manager

Customize Windows’ original right-click context menu using this free, portable and open-source utility meant to enhance your workflow
Context Menu Manager

7-Zip

An intuitive application with a very good compression ratio that can help you not only create and extract archives, but also test them for errors
7-Zip

Zoom Client

The official desktop client for Zoom, the popular video conferencing and collaboration tool used by millions of people worldwide
Zoom Client

Windows Sandbox Launcher

Set up the Windows Sandbox parameters to your specific requirements, with this dedicated launcher that features advanced parametrization
Windows Sandbox Launcher

IrfanView

With support for a long list of plugins, this minimalistic utility helps you view images, as well as edit and convert them using a built-in batch mode
IrfanView

calibre

Effortlessly keep your e-book library thoroughly organized with the help of the numerous features offered by this efficient and capable manager
calibre

ShareX

Capture your screen, create GIFs, and record videos through this versatile solution that includes various other amenities: an OCR scanner, image uploader, URL shortener, and much more
ShareX

% discount
IrfanView
  • IrfanView
  • calibre
  • ShareX
  • Microsoft Teams
  • Bitdefender Antivirus Free
  • 4k Video Downloader
  • Context Menu Manager
  • 7-Zip
  • Zoom Client
  • Windows Sandbox Launcher
TRY
essentials
Click to load comments
This enables Disqus, Inc. to process some of your data. Disqus privacy policy