W32.Allim
Aliases: Troj/Dwnldr-HIV, Worm.Fliz.A, Proxy-Piky, W32/Opanki.worm, IM-Worm.Win32.Opanki.l
Variants: W32.Spybot.Worm, Backdoor.Sdbot, W32/NoChod@MM, WORM_CHOD.P
Classification: Malware
Category: Computer Worm
Status: Active & Spreading
Spreading: Fast
Geographical info: North America, Europe, Asia
Removal: Easy
Platform: W32
Discovered: 27 Apr 2005
Damage: Low
Characteristics: W32.Allim belongs to a family of Worms which is to exploit security vulnerabilities in America Online messaging service. This malware is responsible for using AOL messenger in spreading its codes to unwary computer users. It is also believed to open a backdoor for its malicious author.
W32.Allim Removal Tool
If you have Malware on your computer it will cause annoyances and will damage your system. You should either:
A. Manually remove the infected files from your computer, or
B. Automatically scan your system using trusted software
A. Manually remove the infected files from your computer, or
B. Automatically scan your system using trusted software
RECOMMENDED:
We recommend that you scan your system for malware. Our partner has a computer worm removal tool to automatically clean W32.Allim from your computer.
More details about W32.Allim
The routine undertaken by the W32.Allim program is to use AOL messenger as a transport unit. It sends a message to all contacts in the user's list. The message normally includes a link which will redirect the Web browser to a predetermined website and an instruction for the recipient to click on the link. When the Web browser is redirected, it automatically downloads and executes a self extracting archive file. According to computer security experts, this is the only way that the W32.Allim program can deliver its payload. When this malware is run, it drops two types of files into the target computer system. The first file is the W32.Allim program itself and the other is a variant of the Backdoor.Sdbot which is capable of creating an unsecured backdoor into the compromised computer system.When using the AOL Instant Messaging client, the W32.Allim program makes use of the TCP port 5190 to control the application's behavior. Compromised computer systems may be used by this malware as a type of traffic relay unit or proxy server. The proxy server may be used by the malicious author to launch an attack to other systems or servers via the backdoor opened by the accompanying malware. Due to the possibility of hidden Worms extracted into the compromised machine, the best way to manually remove an infection is to reformat the hard drive. Using reliable and established antivirus applications is an alternative way of removing the effects of the malware.
Browse for more malware information
- W32.Allim
- W32.AllocUp.A
- W32.Almanahe.A
- W32.Alnuh
- W32.Amani@mm
- W32.Amca
- W32.Amend.A@mm
- W32.Ameter@m
- W32.Amirecivel
- W32.Anel@mm
- W32.Annew.A
- W32.Annoying.Worm
- W32.Anset.Worm
- W32.Antiman.A@mm
- W32.Antinny.AX
- W32.Antiqfx.B.worm
- W32.Antiqfx.Worm
- W32.Antixbot.A
- W32.Aplore@mm
- W32.Appix.Worm
- W32.Areses.A@mm
- W32.Arpiframe
- W32.Assarm@mm
- W32.Atak.B@mm
- W32.Atendo@mm
- W32.Atnas.A
- W32.Auraax
- W32.Autex.C
- W32.Autook
- W32.Autosky
Contact Us
|
Privacy Policy
|
Site Map
Copyright © Uniblue Systems Limited 2007. All rights reserved.