Know Your Malware: Grew.b Removal

Grew.b is a rapidly spreading Internet worm that propagates by e-mail via messages with infected attachments and through unprotected network shares. The user can accidentally infect a computer by opening a malicious e-mail attachment or running an infected executable file.

Once executed, Grew.b silently installs itself to the system and runs a spreading routine. The worm uses own mail engine to send malicious letters to all the addresses it finds in local text and spreadsheet documents, presentations, archives, databases and other similar files. It also creates infected files in unprotected network shares.

The parasite's payload is comprised of several harmful functions. Grew.b prevents installed antivirus software from running on every system startup. It also deletes essential executables and libraries related to security-related programs and certain file sharing applications. All this corrupts installed software and compromises system security. The worm is able to hide its files.

Grew.b automatically runs on every Windows startup.

Related files: rundll16.exe, scanregw.exe, update.exe, winzip.exe, winzip_tmp.exe

Grew.b properties:
Hides from the user
Stays resident in background Remove Grew.b, removal instructions

Linked by shanmuga Friday, 20th January 2006 1:32AM