A new network worm by the name of W32/Bagz-A has been discovered recently. Spreading through electronic mails, it comes with a backdoor which gives remote access from a particular host. Equipped with the ability to download further components, it can likewise install itself from an intruder-specified address.
Also able to collect various data which relate to the present network, this virus can be employed to proxy network traffic on the network for the intruder. Moreover, it has the uncanny ability not to be detected by local firewalls; hence, there’s every chance that network traffic wouldn’t be seen when viewed from a local machine.
Its sent email comes with attachments in a binary file or ZIP format. Some examples of the former are arch.doc.exe. arch.doc.exe, account..doc.exe, db.doc.exe, file.doc.exe, read.doc.exe, readme.doc.exe, msg.doc.exe, message.doc.exe, support.doc.exe, warning.doc.exe and the like.
For the latter, some examples include account.zip, arch.zip, archive.zip, contact.zip, db.zip, doc.zip, file.zip, msg.zip, message.zip, read.zip, readme.zip, support.zip and warning.zip.
It may attempt to disable the default firewall of Windows during startup as well as provide its own drive interface to the NDIS driver to prevent monitoring of network traffic from the local machine.
In case your device does get infected with the W32/Bagz-A virus, your web browser would get locked up. Here are the steps you need to take in order to remove it:
- Stop your internet connection and close your web browser immediately.
- Do a virus scan but pay special attention as this worm comes with the ability to hide or go undetected from anti-virus programs.
The first two steps can actually already remove the said virus if done as soon as detected; however, if not, please proceed to the next steps.
- Restart your computer and switch to safe mode. If needed, press F8 several times.
- To kill W32/Bags-A, restore your system under safe mode.
- At this point, the worm virus would already be effectively removed from your computer.
For queries and help, we, at Compushooter LLC, provide well-trained certified I.T. Technicians who are always ready and happy to be of assistance. Aside from I.T. services, we also offer Inbound Call Center for Business,VoIP Solutions and Installation of Office Security Cameras.
As we value quality over quantity, we have focused our unified I.T. services to Small and Medium businesses only to Arizona specifically in Phoenix, Scottsdale, Glendale and Mesa Metro areas.
Our technicians are available the very instant you call us; thereby, ensuring no interruption of your usual business operations. In case you can’t access our contact page, our phone support is always available to cater to your calls. Just give us a ring at 480-464-0202.