Aliases: Tupofse.A
Variants: N/A

Classification: Malware
Category: Computer Virus

Status: Active & Spreading
Spreading: Slow
Geographical info: Asia, North and South America, and some parts of Europe and Australia
Removal: Easy
Platform: W32
Discovered: 05 Jun 2007
Damage: Low

Characteristics: The W32.Tupofse application infects Microsoft Excel and Microsoft word files. The infection length is 448,000 bytes.

More details about W32.Tupofse

Once the W32.Tupofse was executed, it creates files such as the %Temp%\UNINSTX[SINGLE CHARACTER].tmp, %System%\avwav32.dll, and %System%\kspool.exe. It will then creates entry to the registry so that in case the Windows starts the virus will run at the same time. The virus tries to infect the files having extensions such as .xls (Excel) and .doc (Document). The virus replaces the infected files having an extension of .exe. The virus has the ability to stop or prevent the service of the MS SQL. When removing the infected files done by the virus on your computer you must be sure to have the virus definitions updated.

According to some reports, the W32.Tupofse program can allow remote influence and control on the victim computer. The hacker or intruder can then send commands to the victim machine. The commands often include disabling of applications, deletion of system files, spread of computer viruses and participating Web server attacks. When executed, this malware allegedly leaves the file traces that may only be removed through manual removal process and with the help of an effective antimalware program.