Resolve for W32/Apology-B 1.01
Updated on 05 Jul 2011
By Anthony Buckner
By Anthony Buckner
1 KB Safe To Install
Advertising
Specifications
License:
Freeware (Free)
Updated:
Downloads:
309
Platform:
Windows All
Publisher:
Sophos Plc(more)
Website:
Unknown
User Reviews:
Other versions:
Do you like
Resolve for W32/Apology-B?
Resolve for W32/Apology-B?
Publisher's Descriptions
SWAPOL is the name of the utility for disinfecting the W32/Apology family of viruses.
In order to clean your computer you need one of the following tools:
The SWAPOL self-extractor and save it into the C: (root) directory.
The Emergency SAV Distribution (DOS) self-extractor and save it into the C: (root) directory.
W32/Apology-B is a file infecting virus with email-aware worm and backdoor characteristics.
During the infection process the virus creates three hidden files in the windows directory.
IE_Pack.exe contains code which modifies wsock32.dll. Win32.dll is a copy of the file sent by email, it contains code for all components of the virus. MTX_.exe is the backdoor component. When it is executed it tries to connect to a website and download further programs to run.
The virus replaces wsock32.dll with a modified version which monitors network traffic. When the virus detects the user sending an email, it will send another to the same recipient. The message will have no subject or body text, only an attachment with one of the following names:
README.TXT.pif
I_wanna_see_YOU.TXT.pif
MATRiX_Screen_Saver.SCR
LOVE_LETTER_FOR_YOU.TXT.pif
NEW_playboy_Screen_saver.SCR
BILL_GATES_PIECE.JPG.pif
TIAZINHA.JPG.pif
FEITICEIRA_NUA.JPG.pif
Geocities_Free_sites.TXT.pif
NEW_NAPSTER_site.TXT.pif
METALLICA_SONG.MP3.pif
ANTI_CIH.EXE
INTERNET_SECURITY_FORUM.DOC.pif
ALANIS_Screen_Saver.SCR
READER_DIGEST_LETTER.TXT.pif
WIN_$100_NOW.DOC.pif
IS_LINUX_GOOD_ENOUGH!.TXT.pif
QI_TEST.EXE
AVP_Updates.EXE
SEICHO-NO-IE.EXE
YOU_are_FAT!.TXT.pif
FREE_xxx_sites.TXT.pif
I_am_sorry.DOC.pif
Me_nude.AVI.pif
Sorry_about_yesterday.DOC.pif
Protect_your_credit.HTML.pif
JIMI_HMNDRIX.MP3.pif
HANSON.SCR
FUCKING_WITH_DOGS.SCR
MATRiX_2_is_OUT.SCR
zipped_files.EXE
BLINK_182.MP3.pif
When it is active the virus will also attempt to block user access to websites which contain information about viruses. It blocks access to sites whose URLs include text from the list below.
NII.
nai.
avp.
AVP.
F-Se
f-se
mapl
pand
soph
ndmi
afee
yenn
lywa
tbav
yman
It also prevents the user from sending email to organisations whose domain name begins with text from the following list
NII.
nai.
avp.
AVP.
F-Se
f-se
wildlist.o
il.esafe.c
perfectsup
complex.is
HiServ.com
hiserv.com
metro.ch
beyond.com
mcafee.com
pandasoftw
earthlink.
inexar.com
comkom.co.
meditrade.
mabex.com
cellco.com
symantec.c
successful
inforamp.n
newell.com
singnet.co
bmcd.com.a
bca.com.nz
trendmicro
sophos.com
maple.com.
netsales.n
f-secure.c
F-Secure.c
If you detect W32/Apology-B we recommend using Sophos Anti-Virus in full mode to detect all fragments which may be present on the PC.
In order to clean your computer you need one of the following tools:
The SWAPOL self-extractor and save it into the C: (root) directory.
The Emergency SAV Distribution (DOS) self-extractor and save it into the C: (root) directory.
W32/Apology-B is a file infecting virus with email-aware worm and backdoor characteristics.
During the infection process the virus creates three hidden files in the windows directory.
IE_Pack.exe contains code which modifies wsock32.dll. Win32.dll is a copy of the file sent by email, it contains code for all components of the virus. MTX_.exe is the backdoor component. When it is executed it tries to connect to a website and download further programs to run.
The virus replaces wsock32.dll with a modified version which monitors network traffic. When the virus detects the user sending an email, it will send another to the same recipient. The message will have no subject or body text, only an attachment with one of the following names:
README.TXT.pif
I_wanna_see_YOU.TXT.pif
MATRiX_Screen_Saver.SCR
LOVE_LETTER_FOR_YOU.TXT.pif
NEW_playboy_Screen_saver.SCR
BILL_GATES_PIECE.JPG.pif
TIAZINHA.JPG.pif
FEITICEIRA_NUA.JPG.pif
Geocities_Free_sites.TXT.pif
NEW_NAPSTER_site.TXT.pif
METALLICA_SONG.MP3.pif
ANTI_CIH.EXE
INTERNET_SECURITY_FORUM.DOC.pif
ALANIS_Screen_Saver.SCR
READER_DIGEST_LETTER.TXT.pif
WIN_$100_NOW.DOC.pif
IS_LINUX_GOOD_ENOUGH!.TXT.pif
QI_TEST.EXE
AVP_Updates.EXE
SEICHO-NO-IE.EXE
YOU_are_FAT!.TXT.pif
FREE_xxx_sites.TXT.pif
I_am_sorry.DOC.pif
Me_nude.AVI.pif
Sorry_about_yesterday.DOC.pif
Protect_your_credit.HTML.pif
JIMI_HMNDRIX.MP3.pif
HANSON.SCR
FUCKING_WITH_DOGS.SCR
MATRiX_2_is_OUT.SCR
zipped_files.EXE
BLINK_182.MP3.pif
When it is active the virus will also attempt to block user access to websites which contain information about viruses. It blocks access to sites whose URLs include text from the list below.
NII.
nai.
avp.
AVP.
F-Se
f-se
mapl
pand
soph
ndmi
afee
yenn
lywa
tbav
yman
It also prevents the user from sending email to organisations whose domain name begins with text from the following list
NII.
nai.
avp.
AVP.
F-Se
f-se
wildlist.o
il.esafe.c
perfectsup
complex.is
HiServ.com
hiserv.com
metro.ch
beyond.com
mcafee.com
pandasoftw
earthlink.
inexar.com
comkom.co.
meditrade.
mabex.com
cellco.com
symantec.c
successful
inforamp.n
newell.com
singnet.co
bmcd.com.a
bca.com.nz
trendmicro
sophos.com
maple.com.
netsales.n
f-secure.c
F-Secure.c
If you detect W32/Apology-B we recommend using Sophos Anti-Virus in full mode to detect all fragments which may be present on the PC.
Do you like Resolve for W32/Apology-B
Resolve for W32/Apology-B Disclamer
Please be aware FindMySoft.com accepts no responsibility for the file you are downloading. The same applies to the information provided about the software products listed.
We do not allow the inclusion of any Resolve for W32/Apology-B serial, keygen or crack and we disclaim any liability for the inappropriate use of Resolve for W32/Apology-B.
FindMySoft advises that Resolve for W32/Apology-B should be only used in accordance with the rules of intellectual property and the existing Criminal Code.
For your own protection ALWAYS check downloaded files for viruses.
We do not allow the inclusion of any Resolve for W32/Apology-B serial, keygen or crack and we disclaim any liability for the inappropriate use of Resolve for W32/Apology-B.
FindMySoft advises that Resolve for W32/Apology-B should be only used in accordance with the rules of intellectual property and the existing Criminal Code.
For your own protection ALWAYS check downloaded files for viruses.
Advertising
Popular News
As of yesterday, March 23, Yahoo! can boast that it has its own web browser: Yahoo! Axis.
A week after the RC, the final edition of Linux Mint 13 codename Maya has been released.
Your Rating
2.0
out
of
5
of
5
Rated By
3 Users
3 Users
Top Downloads
2.
Opera5.
Trillian8.
AIM9.
Skype10.
Ad-Aware12.
Nero13.
Google Earth14.
Picasa15.
Winamp16.
iTunes17.
RealPlayer18.
uTorrent19.
eMule20.
WinRAR21.
BitComet22.
WinZip23.
Shareaza24.
CCleaner25.
Recuva26.
Tweak UI27.
CuteFTP Home29.
Adobe Reader30.
NewsPiperBecome A Fan!
Link To Us!
Resolve for W32/Apology-B
HTML Linking Code
HTML Linking Code
Latest Reviews