The 8 Most Common Malware Processes-Mswin32.exe

mswin32.exe is just one possible file name that is used by the Spybot worm. Because the worm installs itself on your system as a service process, it is impossible to close the program through the Windows Close Program function in Windows 95, 98, and ME. Once installed and once it has added registry entries to ensure that the worm starts every time you log on to your computer, it will then create a folder named kazaabackupfiles and then ensures that this folder is shared through the KaZaZ file sharing network. This is how the worm propagates to other users' computers.

The Spybot worm, using the mswin32.exe process, will then open an Internet chat channel through a remote server. This provides a third party with the capability to execute files, browse your system, steal personal information, and retrieve system information, as well as perform attacks on other computers and networks. This is definitely an undesirable program and one that should be removed as soon as possible
 

 

 

            

    AntiSpywareReview|RegCleaners|Blog|Articles|Resources|Policy|Contact|Links|Sitemap

                      © 2008 Anti-SpywaresReview.com, with all rights reserved