bps.exe - Dangerous
%sysdir%\bps.exe
Manual removal instructions:
Antivirus Report of %sysdir%\bps.exe:
%sysdir%\bps.exe
Bps.exe is mass-mailing worm W32.Mytob.AJ@mm.
Bps.exe tries to terminate antiviral programs installed on a user computer.
Bps.exe opens a back door on TCP port 10087.
Bps.exe spreads by exploiting the DCOM RPC vulnerability (Microsoft Security Bulletin MS03-026) and the Microsoft Windows Local Security Authority Service Remote Buffer Overflow (Microsoft Security Bulletin MS04-011).
Related files:
%System%\bpool.exe
%System%\bps.exe
C:\sysrun.exe
C:\funny_pic.scr
C:\see_this!!.scr
C:\my_photo2005.scr
Adds the value:
"Major Microsoft Windows Driver Boot loader" = "bpool.exe"
to the Windows startup registry keys.
Removal:
Kill bps.exe process and remove bps.exe from Windows startup.
| %sysdir%\bps.exe | Malware |
| %sysdir%\bps.exe | Dangerous |
| %sysdir%\bps.exe | High Risk |
Bps.exe tries to terminate antiviral programs installed on a user computer.
Bps.exe opens a back door on TCP port 10087.
Bps.exe spreads by exploiting the DCOM RPC vulnerability (Microsoft Security Bulletin MS03-026) and the Microsoft Windows Local Security Authority Service Remote Buffer Overflow (Microsoft Security Bulletin MS04-011).
Related files:
%System%\bpool.exe
%System%\bps.exe
C:\sysrun.exe
C:\funny_pic.scr
C:\see_this!!.scr
C:\my_photo2005.scr
Adds the value:
"Major Microsoft Windows Driver Boot loader" = "bpool.exe"
to the Windows startup registry keys.
Removal:
Kill bps.exe process and remove bps.exe from Windows startup.
Dmitry Sokolov:
I created UnHackMe in 2006 to fix the problem that antivioruses did not fix: detecting rootkits.
Since that time I work every day to fix the issues that antiviruses cannot.
If your antivirus have not helped you solve the problem, you should try UnHackMe.
We are a small company and you can ask me directly, if you have any questions.