bps.exe - Dangerous

%sysdir%\bps.exe

Manual removal instructions:

Antivirus Report of %sysdir%\bps.exe:
%sysdir%\bps.exe Malware
%sysdir%\bps.exeDangerous
%sysdir%\bps.exeHigh Risk
%sysdir%\bps.exe
Bps.exe is mass-mailing worm W32.Mytob.AJ@mm.
Bps.exe tries to terminate antiviral programs installed on a user computer.
Bps.exe opens a back door on TCP port 10087.
Bps.exe spreads by exploiting the DCOM RPC vulnerability (Microsoft Security Bulletin MS03-026) and the Microsoft Windows Local Security Authority Service Remote Buffer Overflow (Microsoft Security Bulletin MS04-011).
Related files:
%System%\bpool.exe
%System%\bps.exe
C:\sysrun.exe
C:\funny_pic.scr
C:\see_this!!.scr
C:\my_photo2005.scr
Adds the value:
"Major Microsoft Windows Driver Boot loader" = "bpool.exe"
to the Windows startup registry keys.
Removal:
Kill bps.exe process and remove bps.exe from Windows startup.

Remove bps.exe now!

Dmitry Sokolov:

I created UnHackMe in 2006 to fix the problem that antivioruses did not fix: detecting rootkits.

Since that time I work every day to fix the issues that antiviruses cannot.

If your antivirus have not helped you solve the problem, you should try UnHackMe.

We are a small company and you can ask me directly, if you have any questions.

Testimonials

You can read UnHackMe testimonials here.