Aliases: N/A
Variants: N/A

Classification: Malware
Category: Computer Virus

Status: Inactive
Spreading: Slow
Geographical info: Europe
Removal: Easy
Platform: W32
Discovered: 14 Apr 2009
Damage: Low

Characteristics: The W32.SillyPrep program is a general detection for file contaminators that infect executable files on the compromised computer.

More details about W32.SillyPrep

The W32.SillyPrep virus is a file contaminator that finds for executable files on the compromised PC system and pretends itself to the original file. The W32.SilliPrep virus doesn’t verify if the original file is really a Windows executable file, but only verifies whether the extension is “.exe”. In unusual cases it can occur that the file is a data file. On some occasions, the W32.SillyPrep virus may damage the original file during the contaminating process. If this should occur, even if the virus is eliminated, the original file would remain in a damaged state and therefore would not be able to open.

According to a number of reports, the W32.SillyPrep virus program has a backdoor function that allows a remote intruder to access and control the victim computer via the Internet. A server component is commonly installed on the victim computer without getting permission from the user. The server file could be sent through e-mail, Internet downloads, or peer-to-peer sharing software. Once the backdoor is installed, the Trojan monitors the local system. It is possible that the backdoor is not commonly visible in the log of running programs. This remote utility tool may steal information such as passwords, personal data, and banking details. Hackers could use the backdoor function to perform malicious actions. These actions include sending and receiving of files, deletion of data, opening and closing of the CD-ROM tray, execution of malicious files, and rebooting of the computer. The hacker may also disable security programs such as anti-viruses and firewalls.