Encyclopedia

Bagle.AA
Threat LevelDamageDistribution

At a glance Tech details | Solution


Common name:	Bagle.AA
Technical name:	W32/Bagle.AA.worm
Threat level:	Low
Type:	Worm
Effects:	It notifies its author that the computer has been affected. It ends processes belonging to several security programs and to several worms.
Affected platforms:	Windows 2003/XP/2000/NT/ME/98
Detection updated on:	April 26, 2004
Statistics	No
Proactive protection:	Yes, using TruPrevent Technologies
Repair utility:	Panda QuickRemover
Family:	Mylife

Brief Description

Bagle.AA is a worm that spreads via e-mail in a message with variable characteristics, and through peer-to-peer (P2P) file sharing programs.

Bagle.AA ends processes belonging to antivirus and firewalls programs, among other security applications, as well as to several worms.

In addition, it attempts to connect to several websites that host an PHP script through the port 2535. By doing so, Bagle.AA notifies its author that the computer has been affected.

Visible Symptoms

Sometimes, Bagle.AA is easy to recognize as it reaches the computer in an e-mail message with one of the following images, with a JPEG extension:

In addition, Bagle.AA displays the following fake error message once it has affected the computer:

Last updated: 26/04/2004

Virus News

3/10/09.-More than 10 Million Worldwide Were Actively Exposed to Identity Theft in 2008

3/5/09.-Cyber-crooks manipulate Internet searches to sell fake antivirus products

3/2/09.-VideoPlay adware infections grew 400% in February through malicious use of Web 2.0 pages

[+ Noticias]

Web Map | Contact Panda Security