RSS News Feed News Feed XML News Feed

Home

A.P.B.

Designs

Virus

Exploits

Primers

Definitions

Movies

Police Forces

Home > Virus > Worms > W32.Nanpy.A

 

Virus Name: W32.Nanpy.A

Aliases: W32/Nanpy-A

 

Nanpy is a Windows worm, which spreads to vulnerable computers via the RPC-DCOM exploit.  Nanpy attempts to redirect access to various banking web sites by modifying the hosts file to map the url's for them to a remote I.P. address.  It also makes a copy of itself called mmsvc32.exe in the Windows System folder and modifies the registry to run this file on start-up.  Banking web sites affected include Lloyds, Barclays, Co-Operative Bank, Abbeys, and Cahoot.

 

 

Copyright (c) 2005, 2008  A. Ryan Robbins.  All Rights Reserved.

 

 

Google
 
Web ycopfiles.com

 

 

Privacy

Copyright

About

Contact

Site Map

Blog Frog