Vous êtes dans : Panda Security > Home Users > security-info > about-malware > encyclopedia > overview
Active Scan. Analysez gratuitement votre PC
Gamme de solutions de Panda Security

Encyclopédie des Virus

Bienvenue sur l’Encyclopédie des Virus de Panda Security.

Bagle.BC

Threat LevelHigh threatDamageSevereDistributionNot widespread
Common name:Bagle.BC
Technical name:W32/Bagle.BC.worm!CME-473
Threat level:Medium
Alias:CME-473
Type:Worm
Effects:  

It opens the TCP port 81 and waits for remote connections. It ends processes belonging to security tools and deletes entries belonging to other worms from the Windows Registry.

Affected platforms:

Windows XP/2000/NT/ME/98/95

First detected on:Oct. 29, 2004
Detection updated on:Jan. 14, 2006
StatisticsNo
Yes, using TruPrevent Technologies

Brief Description 

    

Bagle.BC is a worm that opens the TCP port 81 and listens to it, waiting for remote connections. By doing so, Bagle.BC allows hackers to gain remote control over the affected computer in order to carry out malicious actions that would compromise user's confidentiality or impede normal work.

Bagle.BC ends processes belonging to security tools, such as antivirus programs. This leaves the affected computer vulnerable to the attack of other malware.

In addition, Bagle.BC prevents certain worms, such as several variants of Netsky, from being executed whenever Windows is started. In order to do so, it deletes the entries belonging to these worms from the Windows Registry.

Bagle.BC spreads via e-mail in a message with variable characteristics and through peer-to-peer (P2P) file sharing programs.

Visible Symptoms 

    

Bagle.BC is difficult to recognize, as it does not display any messages or warnings that indicate it has reached the computer.