This application requires Javascript for optimal performance.

W32/Brontok.C@mm - Released Oct 06, 2006

Detection Availability

Active DatabaseExtended Database
FortiGate
low
high
FortiClient
FortiMail N/A

Visible Symptoms

  • It drops the following files:
    • drops a copy of itself to any or all of the following folders:
    • c:\
    • c:\\ShellNew
    • C:\Documents and Settings\[user]\Local Settings\Application Data
    • C:\Documents and Settings\[user]\Start Menu\Programs\Startup
    • C:\Documents and Settings\[user]\Templates
    • c:\Windows\Application Data
    • c:\Windows\ShellNew
    • c:\Windows\Start Menu\Programs\Startup
    • c:\Windows\Templates
  • It prevents users from changing folder options, accessing Registry Editor and Task Manager

    • Detailed Analysis

    W32/Brontok.C@mm - 06-10-06


    More Info:

  • It drops the following files:
    • drops a copy of itself to any or all of the following folders:
    • c:\
    • c:\\ShellNew
    • C:\Documents and Settings\[user]\Local Settings\Application Data
    • C:\Documents and Settings\[user]\Start Menu\Programs\Startup
    • C:\Documents and Settings\[user]\Templates
    • c:\Windows\Application Data
    • c:\Windows\ShellNew
    • c:\Windows\Start Menu\Programs\Startup
    • c:\Windows\Templates

    Reference: ID - 99529