Active Scan. Scan your PC free
Download Cloud Antivirus Gratis

Virus Encyclopedia

Welcome to the Virus Encyclopedia of Panda Security.


Threat LevelHigh threatDamageSevereDistributionNot widespread
Common name:Bagle.AB
Technical name:W32/Bagle.AB.worm
Threat level:High

It notifies its author that the computer has been affected. It ends processes belonging to several security programs and to several worms.

Affected platforms:

Windows 2003/XP/2000/NT/ME/98/95

First detected on:April 28, 2004
Detection updated on:Aug. 11, 2009
Proactive protection:
Yes, using TruPrevent Technologies

Brief Description 


Bagle.AB is a worm that spreads via e-mail in a message with variable characteristics and through P2P file sharing programs.

Bagle.AB ends processes belonging to antivirus and firewalls programs, among other security applications, as well as to several worms.

In addition, it attempts to connect to several websites that host a PHP script through the port 2535. By doing so, Bagle.AB notifies its author that the computer has been affected.

Visible Symptoms 


Bagle.AB is easy to recognize, as it displays the following fake error message once it has affected the computer: