P2P-Worm.Win32.Palevo.bjzz
Posted: January 4, 2011
Threat Metric
The Threat Meter is a malware assessment that SpywareRemove.com's research team is able to
give every identifiable malware threat. Our Threat Meter includes several criteria based off of
specific malware threats to value their severity, reach and volume. The Threat Meter is able to give
you a numerical breakdown of each threat's initial Threat Level, Detection Count, Volume Count,
Trend Path and Percentage Impact. The overall ranking of each threat in the Threat Meter is a basic
breakdown of how all threats are ranked within our own extensive malware database. The scoring for
each specific malware threat can be easily compared to other emerging threats to draw a contrast in
its particular severity. The Threat Meter is a useful tool in the endeavor of seeking a solution to
remove a threat or pursue additional analytical research for all types of computer users.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
| Threat Level: | 8/10 |
|---|---|
| Infected PCs: | 208 |
| First Seen: | December 15, 2010 |
|---|---|
| OS(es) Affected: | Windows |
P2P-Worm.Win32.Palevo.bjzz is a dangerous computer worm which spreads via removable drives. P2P-Worm.Win32.Palevo.bjzz creates a randomly named folder in removable drives connected to the infected computer before placing a randomly named copy of the malware in the folder. An AUTORUN.INF file is added to ensure that the copy of the malware runs whenever a removable drive is connected to the computer. P2P-Worm.Win32.Palevo.bjzz can also use peer-to-peer (P2P) applications to spread. The worm drops copies of itself in the folders that are shared.
P2P-Worm.Win32.Palevo.bjzz is, however, very keen on using Instant-Messaging (IM) applications as a means to spread. MSN Messenger, Yahoo! Messenger and Skype Messenger are the favourites here and P2P-Worm.Win32.Palevo.bjzz uses these applications to spread by sending corrupt instant messages to other users. The messages will contain malicious URLs that eventually lead to the download of P2P-Worm.Win32.Palevo.bjzz.
Remove P2P-Worm.Win32.Palevo.bjzz using an updated malware remover which is both reliable and a genuine software product.
Aliases
Gen.Trojan.Heur [Ikarus]Packed/Win32.Krap [AhnLab-V3]Gen:Trojan.Heur.RP.dmW@amA0iokG [BitDefender]Packed.Win32.Krap.ig [Kaspersky]probably unknown NewHeur_PE [NOD32]Generic20.AKMR [AVG]Win32/Inject.AGA [eTrust-Vet]Artemis!9274F5AFA3C4 [McAfee-GW-Edition]TR/Agent.ccf.1 [AntiVir]Trojan.Inject.16582 [DrWeb]P2P-Worm.Win32.Palevo.bjlw [Kaspersky]Trojan.Inject.16922 [DrWeb]P2P-Worm.Win32.Palevo.bjqd [Kaspersky]Win32/Cryptor [AVG]Trojan-Dropper.Agent [Ikarus]
More aliases (151)
More aliases (151)
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
The following files were created in the system:%APPDATA%\ltzqai.exe
File name: ltzqai.exeSize: 94.2 KB (94208 bytes)
MD5: 199ae16716a29baf61d2830c0cc4e8aa
Detection count: 65
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%
Group: Malware file
Last Updated: December 22, 2010
%WINDIR%\gwdrive32.exe
File name: gwdrive32.exeSize: 65.53 KB (65536 bytes)
MD5: b8dae662b9f4dc56ace9515e2b3eb33c
Detection count: 63
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%
Group: Malware file
Last Updated: December 23, 2010
C:\RECYCLER\S-1-5-21-3353450963-4974517809-598234595-6802\winmap.exe
File name: winmap.exeSize: 94.2 KB (94208 bytes)
MD5: 38a61fbaa65c3968907f89ea3fa91499
Detection count: 54
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-3353450963-4974517809-598234595-6802
Group: Malware file
Last Updated: December 15, 2010
C:\RECYCLER\S-1-5-21-0289134699-3370604928-327716878-6899\syscr.exe
File name: syscr.exeSize: 94.2 KB (94208 bytes)
MD5: 9274f5afa3c49c9c6917c1fa69589d08
Detection count: 35
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-0289134699-3370604928-327716878-6899
Group: Malware file
Last Updated: January 26, 2011
C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-1455\fddg.exe
File name: fddg.exeSize: 36.86 KB (36864 bytes)
MD5: 9fe83eb81b49712fcf349c1d88a291eb
Detection count: 33
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-1455
Group: Malware file
Last Updated: December 17, 2010
C:\RECYCLER\S-1-5-21-8129804923-0576802873-473598341-5060\csidrv.exe
File name: csidrv.exeSize: 94.2 KB (94208 bytes)
MD5: 31ba7b153f49f3bf76cc99a4fb0bef1b
Detection count: 28
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-8129804923-0576802873-473598341-5060
Group: Malware file
Last Updated: December 16, 2010
%APPDATA%\ohydy.exe
File name: ohydy.exeSize: 90.11 KB (90112 bytes)
MD5: f10e5e4998a2abad27edea1ad6f4da1d
Detection count: 16
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%
Group: Malware file
Last Updated: December 16, 2010
%WINDIR%\gwdrive32.exe
File name: gwdrive32.exeSize: 65.53 KB (65536 bytes)
MD5: ceb5e74373140cd45cef89e062fc0b8c
Detection count: 15
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%
Group: Malware file
Last Updated: December 28, 2010
%APPDATA%\ltzqai.exe
File name: ltzqai.exeSize: 90.11 KB (90112 bytes)
MD5: 4062280dce9a76bf561fdc16c3ab39ee
Detection count: 12
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%
Group: Malware file
Last Updated: December 15, 2010
C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-1451\games.exe
File name: games.exeSize: 36.86 KB (36864 bytes)
MD5: 0a677e7c9aee64c31fa296aaaee4d619
Detection count: 12
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-1451
Group: Malware file
Last Updated: December 21, 2010
C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-1451\games.exe
File name: games.exeSize: 40.96 KB (40960 bytes)
MD5: 998975386490d1b74501fdb3136fdf9c
Detection count: 12
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-1451
Group: Malware file
Last Updated: January 2, 2011
C:\RECYCLER\S-1-5-21-3170896501-7583085731-486211775-5469\winmap.exe
File name: winmap.exeSize: 94.2 KB (94208 bytes)
MD5: ac14a796c758b31297bcc1b142962fda
Detection count: 7
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-3170896501-7583085731-486211775-5469
Group: Malware file
Last Updated: January 26, 2011
C:\RECYCLER\S-1-5-21-3803761268-6988671167-260649540-7054\csidrv.exe
File name: csidrv.exeSize: 98.3 KB (98304 bytes)
MD5: ce719b31882c6f93edb1fa7176acb24e
Detection count: 7
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-3803761268-6988671167-260649540-7054
Group: Malware file
Last Updated: December 21, 2010
C:\RECYCLER\S-1-5-21-9612177343-9602638405-004760841-9651\csidrv.exe
File name: csidrv.exeSize: 98.3 KB (98304 bytes)
MD5: e5ea21eaf5963d4007880b134fd95502
Detection count: 7
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-9612177343-9602638405-004760841-9651
Group: Malware file
Last Updated: December 21, 2010
%APPDATA%\oekx.exe
File name: oekx.exeSize: 98.3 KB (98304 bytes)
MD5: 4e55bf6ef2a8d97d00401bdc8544ea08
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%
Group: Malware file
Last Updated: December 21, 2010
C:\RECYCLER\S-1-5-21-1814867402-2715000411-444547937-2667\csidrv.exe
File name: csidrv.exeSize: 98.3 KB (98304 bytes)
MD5: e730fddd19a04c996cff65c2abee8562
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-1814867402-2715000411-444547937-2667
Group: Malware file
Last Updated: December 21, 2010
C:\RECYCLER\S-1-5-21-8428710835-3316691545-179113726-8024\csisf.exe
File name: csisf.exeSize: 98.3 KB (98304 bytes)
MD5: 503d01e39115659b723e1b2fd2db342e
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-8428710835-3316691545-179113726-8024
Group: Malware file
Last Updated: January 9, 2011
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.