Content
FDoS-Byrunner
- Type
- Malware
- SubType
- Denial Of Svc
- Discovery Date
- 09/16/2003
- Length
- 102400
- Minimum DAT
- 4295 (09/24/2003)
- Updated DAT
- 4295 (09/24/2003)
- Minimum Engine
- 5.1.00
- Description Added
- 09/16/2003
- Description Modified
- 09/19/2003 3:24 AM (PT)
Tab Navigation
Characteristics
Detection of FDoS-Byrunner was added to cover for a malicious file called bye.exe . The file is of 32 bit PE filetype and the filesize it 102400 bytes. The file is written using MSVB60.
When running the file, a GUI appears:
Apart from booting, target users can be sent some not-nice messages. In the GUI there're a few links to websites, some of them being regular websites, omitted on purpose here.
Symptoms
-Booting/receiving not-nice messages
Method of Infection
Manually running the bye.exe starts the FDoS-Byrunner malware.
Removal
All Users:
Use current engine and DAT files for detection and removal.
Modifications made to the system Registry and/or INI files for the purposes of hooking system startup, will be successfully removed if cleaning with the recommended engine and DAT combination (or higher).
Variants
Variants
N/A
All Information
Overview -
Characteristics
Characteristics -
Detection of FDoS-Byrunner was added to cover for a malicious file called bye.exe . The file is of 32 bit PE filetype and the filesize it 102400 bytes. The file is written using MSVB60.
When running the file, a GUI appears:
Apart from booting, target users can be sent some not-nice messages. In the GUI there're a few links to websites, some of them being regular websites, omitted on purpose here.
Symptoms
Symptoms -
-Booting/receiving not-nice messages
Method of Infection
Method of Infection -
Manually running the bye.exe starts the FDoS-Byrunner malware.
Removal -
Removal -
All Users:
Use current engine and DAT files for detection and removal.
Modifications made to the system Registry and/or INI files for the purposes of hooking system startup, will be successfully removed if cleaning with the recommended engine and DAT combination (or higher).
Additional Windows ME/XP removal considerations
Variants
Variants -
N/A
