W32/Blaxe-A

Vea la información para eliminar gusanos.

Vea la información (en inglés) para eliminar gusanos.

W32/Blaxe-A es un gusano que se extiende a través de redes de intercambio de archivos.

Al ejecutarse, W32/Blaxe-A se copia en la carpeta Windows con el nombre BearShare.exe y WinBat.exe y crea las siguientes claves en el registro para activarse en el inicio del sistema:

HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices\BearShare
= %WINDOWS%BearShare.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\BearShare
= %WINDOWS%\BearShare.exe

W32/Blaxe-A añade la ruta de acceso a WinBat.exe en la siguiente clave del registro para que WinBat.exe se ejecute cada vez que se ejecuta un archivo de comandos de MS-DOS:

HKLM\Software\CLASSES\batfile\shell\open\command

W32/Blaxe-A crea la carpeta oculta Kernell dentro de Windows y se copia con los siguientes nombres:

(Adult porn sex nude illegal gangbang) Website Password Cracker.exe
A+ Certification Ultimate Study Guide.exe
ACDSee 4.1 cracked.exe
Adobe 6 crack.exe
Adobe 6 full (iso).exe
Adobe 6.0 crack.exe
Adobe 6.0 full.exe
Adobe 6.0.exe
Adobe crack.exe
Adobe Photoshop 6 Ultimate Study Guide.exe
Adobe Photoshop 6.0.exe
Adobe Photoshop.exe
Adult movie.exe
adult(hardcore sex movie xxx)movie.exe
AdvZip Recovery.exe
AIM hacker.exe
AIM Pass stealer.exe
aim.exe
aimcracker.exe
aimhacker.exe
All Cliff notes (cliff's).exe
AMI BIOS Cracker.exe
anarchistcookbook.exe
anastasia anal.exe
anastasia naked.exe
anastasia nude.exe
Anonymous email.exe
ANSI C Ultimate Study Guide.exe
antistudy.exe
AOL Hacker.exe
aol.exe
Autocad 2002 Crack.exe
BabylonX Backdoor.exe
BabylonX password cracker.exe
Bandwidth Booster 4.2 for Cable.exe
BlackICE Defender.exe
Borland C++ Builder 8.0 iso.exe
Britney Spears anal movie.exe
Britney Spears Blowjob movie.exe
Britney Spears hardcore xx movie.exe
Britney Spears in bath (movie).exe
Britney Spears naked.exe
Britney Spears Nipple slip.exe
Britney Spears nude wallpaper.exe
BRUTAL FORCED PRETEEN ANAL SEX.exe
buttman.exe
C++ Ultimate Study Guide.exe
Cable Modem Anonymizer.exe
Cable Uncapper.exe
catherine zeta jones anal.exe
catherine zeta jones naked.exe
catherine zeta jones nude.exe
Christina Aguilera adult movie.exe
Christina Aguilera having sex(mov).exe
Christina Aguilera movie.exe
Christina Aguilera nude wallpaper (xxx lesbian).exe
Christina Aguilera sucks cock.exe
CloneCD Crack (all versions).exe
CloneCD Keygen.exe
CloneCD.exe
College Biology Ultimate Study Guide.exe
College Chemistry Ultimate Study Guide.exe
College Computer Engineering Ultimate Study Guide.exe
College Computer Science Ultimate Study Guide.exe
College English Ultimate Study Guide.exe
College Ethics Ultimate Study Guide.exe
College History Ultimate Study Guide.exe
College Philosophy Ultimate Study Guide.exe
Command and Conquer cnc c&c Generals iso.exe
Command and Conquer cnc c&c Renegade iso.exe
Conceal PC Firewall.exe
Copy (11) of ZoneAlarm Firewall Pro.exe
Copy of ZoneAlarm Firewall Pro.exe
Counter Strike CD Keygen.exe
counter-strike.exe
Crack XBOX live.exe
Credit Card number generator VERIFIER (cc cc#).exe
Dark Planet Battle For Natrolis cracked.exe
Delphi 5 Keygen.exe
Delphi 6 Keygen.exe
Delphi Ultimate Study Guide.exe
delphi.exe
Digimon.exe
DivX Codec 4.0 (codec only).exe
DivX Codec 5.0 (codec only).exe
DivX Codec 6.0 beta (codec only).exe
divx fix.exe
divx pro.exe
divx repair.exe
DoS Attacker.exe
Dreamcast Emulator.exe
driver.exe
DSL Anonymizer.exe
DSL Uncapper.exe
Easy CD Creator crack (all versions) (core).exe
edonkey serverlist.exe
Emailbomber.exe
End Of Twilight iso.exe
ESPN NFL Primetime 2002 iso.exe
ftp cracker.exe
ftp hacker.exe
fuck.exe
Gamecube Emulator.exe
Ghost Recon - Desert Siege.exe
Girls gone wild collection - sex porn nudity hardcore (self-extractor).exe
GTA 2 crack noCD.exe
GTA Vice City crack noCD.exe
GTA Vice City crack.exe
gta3.exe
hack aim.exe
Hack hotmail.exe
hacker utils 2002.exe
hacking tools 2002.exe
Half life Cd keygen.exe
happybirthday.exe
Hooligans iso.exe
host faker.exe
host spoofer.exe
HotGirls.exe
hotmail account sniffer.exe
hotmail hack.exe
hotmail hacker.exe
hotmailcracker.exe
hotmailhacker.exe
HOWTO Crack XBOX live.txt.exe
ICQ AIM Password stealer.exe
ICQ hack.exe
ICQ Hackingtools.exe
icqcracker.exe
icqhacker.exe
ident faker.exe
ident spoofer.exe
IIS shellbind exploit.exe
Incoming Forces iso.exe
invisible IP.exe
ip faker.exe
ip spoofer.exe
IRC hacker.exe
Kate Winslet adult movie.exe
Kazaa Advertisement Ad remover.exe
kazaa.exe
keygen all.exe
Keylogger v1.0.exe
kmd151 en.exe
learn how to hack.exe
linux root.exe
Linux rootaccess.exe
linux.exe
Macromedia Flash 5 Ultimate Study Guide.exe
Macromedia Flash 5.exe
Max Payne full iso.exe
Max Payne Multiplayer Addon.exe
MCSE Ultimate Study Guide.exe
Microsoft Office XP Upgrade (from older versions).exe
Microsoft Visual C++ 7.0 iso.exe
Might and Magic 1 crack.exe
Might and Magic 2 crack.exe
Might and Magic 3 crack.exe
Might and Magic 4 crack.exe
Might and Magic 5 crack.exe
Might and Magic 6 crack.exe
Might and Magic 7 crack.exe
Might and Magic 8 crack.exe
Might and Magic 9 crack.exe
Mirc 6.4.exe
mIRC backdoor hack.exe
Monsterville cracked.exe
MSN banner remover.exe
MSN hacker.exe
msn IP finder.exe
msncracker.exe
msnhacker.exe
Nero 5.5 Crack.exe
Nero Burning Rom 5 cracked.exe
Nero Burning Rom 5.5 Crack.exe
Nikki Cox nude.exe
Nikki cox Playboy session.exe
Nikki Cox sex movie.exe
Norton AntiVirus 2002.exe
Norton Internet Security 2002.exe
Norton Systemworks 2002.exe
Norton Utilities 2002.exe
Notron Utilities 2002.exe
Office key Gen.exe
Office XP Corporate Ed. iso.exe
Office XP crack.exe
Office Xp keygen.exe
OfficeXP Keygen.exe
Oni 2nd second edition.exe
Pamela Anderson adult movie.exe
pamela anderson anal.exe
Pamela Anderson and Tommy Lee hardcore holiday movie.exe
Pamela Anderson deepthroat.exe
Pamela Anderson gets fucked.exe
pamela anderson naked.exe
pamela anderson nude.exe
pamela anderson.exe
Perl Ultimate Study Guide.exe
PHP4 Ultimate Study Guide.exe
Playboy nude wallpaper.exe
Playstation 2 PS2 Emulator.exe
Pokemon.exe
porn account cracker.exe
porn account hacker.exe
PS1 BootCD.exe
PS2 BootCD.exe
PS2 emulator bleem.exe
Quake 3 cracked (works on all servers).exe
Quake 4 leaked beta (cracked).exe
Quicken Pro 2002 iso.exe
Ray Crisis iso.exe
Return to the Castle Wolfenstein iso.exe
sandra bullock naked.exe
sandra bullock nude.exe
sarah michelle gellar naked.exe
sarah michelle gellar nude.exe
serials2003.exe
shakira a-sf--ked.exe
shakira anal.exe
shakira naked.exe
shakira nude.exe
shakira paparazzi collection.exe
Soldier of Fortune 2 CD1 ISO.exe
Soldier of Fortune 2 CD2 ISO.exe
Sound Forge XP Studio + Serial.exe
Space Empires IV 4 Gold iso.exe
Spiderman SVCD CD1.exe
Spiderman SVCD CD2.exe
Spiderman SVCD CD3.exe
Sub7 masterpwd.exe
subseven.exe
tripod cracker.exe
tripod hacker.exe
VB6.exe
VirtuaSex.exe
visio.exe
wc3 keygen.exe
win2k pass decryptor.exe
Win2k reboot exploit.exe
win2k serial.exe
Winamp.exe
Windows 98 crack.exe
Windows 98 keygen.exe
Windows Keygen allver.exe
Windows ME crack.exe
Windows ME keygen.exe
Windows NT crack.exe
Windows NT keygen.exe
Windows XP crack.exe
Windows XP keygen.exe
winxp crack.exe
winxp cracker.exe
winxp hacker.exe
WinXP Keygen.exe
winxphack.exe
Winzip Pass Cracker.exe
Word Pass Cracker.exe
worldbook.exe
xbox emulator beta.exe
XP Box emulator.exe
XP DVD Plugin.exe
XP keygen.exe
XP ScreenSaver.exe
XP.exe
yahoo cracker.exe
yahoo hacker.exe
Yahoo mail cracker.exe

La carpeta con todos estos archivos será compartida en las redes de intercambio de archivos KaZaA, Grokster y iMesh P2P modificando las siguientes entradas en el registro:

HKCU\Software\Kazaa\LocalContent\dir0 = 012345:C:\WINDOWS\kernell
HKCU\Software\Grokster\LocalContent\dir0 = 012345:C:\WINDOWS\kernell
HKCU\Software\iMesh\Client\LocalContent\dir1 = 012345:C:\WINDOWS\kernell
HKCU\Software\iMesh\Client\LocalContent\dir2 = 012345:C:\WINDOWS\kernell

W32/Blaxe-A también se copia a otras carpetas compartidas en las redes KaZaA, KaZaA Lite, BearShare, Grokster y Morpheus sustituyendo los archivos ejecutables existentes.