nabv32.exe - Dangerous
nabv32.exe
Manual removal instructions:
Antivirus Report of nabv32.exe:
nabv32.exe
W32.Titog.C.Worm is a mass-mailing worm that uses Microsoft Outlook and IRC to distribute itself.
It generates the email message with following characteristics:
Subject: Speed up your connection!
Message: Speed up your connection up to 2 times faster! windows xp/2000/9x
Attachment: t_dsl.exe
Size of attachment: 31244
The worm attempts to delete a lot of files and registry values.
It creates the %System%\GotITFolder folder, and then makes many copies of itself in that folder as randomly chosen file names.
Creates the file, Scri1.ini, in the mIRC folder. This is used to distribute the worm as icq2004.exe.
Sends email to all the addresses in the Microsoft Outlook Address Book.
Tries to download some executable files from a Web site.
Automatic removal:
Use RegRun Startup Optimizer.
To disable it, please navigate to the keys:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices
and delete the value
"anbv32"="%system%\nabv32.exe"
nabv32.exe | Malware |
nabv32.exe | Dangerous |
nabv32.exe | High Risk |
It generates the email message with following characteristics:
Subject: Speed up your connection!
Message: Speed up your connection up to 2 times faster! windows xp/2000/9x
Attachment: t_dsl.exe
Size of attachment: 31244
The worm attempts to delete a lot of files and registry values.
It creates the %System%\GotITFolder folder, and then makes many copies of itself in that folder as randomly chosen file names.
Creates the file, Scri1.ini, in the mIRC folder. This is used to distribute the worm as icq2004.exe.
Sends email to all the addresses in the Microsoft Outlook Address Book.
Tries to download some executable files from a Web site.
Automatic removal:
Use RegRun Startup Optimizer.
To disable it, please navigate to the keys:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices
and delete the value
"anbv32"="%system%\nabv32.exe"
Dmitry Sokolov:
I created UnHackMe in 2006 to fix the problem that antivioruses did not fix: detecting rootkits.
Since that time I work every day to fix the issues that antiviruses cannot.
If your antivirus have not helped you solve the problem, you should try UnHackMe.
We are a small company and you can ask me directly, if you have any questions.