Boom ANSI Bomb Construction Kit

· Overview ·
· Origins ·
· Operation ·
· Detection and Removal ·
· Research ·

Overview

Vendor Notes:

 From the doc: 'This program generates ansi batch files used with ansi.sys to remap keys also known as 'AnsiBombs' programs from user-specified parameters.'

Alias:

 AnsiBomb.Boom.11 Constructor [Eset], AnsiBomb.kit [McAfee], Ansiboom.41408!Trojan [Computer Associates], Constructor.AnsiBomb.Boom.11 [Kaspersky], Constructor.DOS.Boom.11 [Kaspersky], destructive program [F-Prot], Virus Constructor [Panda]

Category:

Virus Creation Tool: A program designed to generate viruses. Even early virus creation tools were able to generate hundreds or thousands of different, functioning viruses, which were initially undetectable by current scanners.

Trojan: Any program with a hidden intent. Trojans are one of the leading causes of breaking into machines. If you pull down a program from a chat room, new group, or even from unsolicited e-mail, then the program is likely trojaned with some subversive purpose. The word Trojan can be used as a verb: To trojan a program is to add subversive functionality to an existing program. For example, a trojaned login program might be programmed to accept a certain password for any user's account that the hacker can use to log back into the system at any time. Rootkits often contain a suite of such trojaned programs.

Trojan Creation Tool: A program designed to create Trojans. Some of these tools merely wrap existing Trojans, to make them harder to detect. Others add a trojan to an existing product (such as RegEdit.exe), making it a Dropper.

Similar Pests:

 Virus Creation Tool · Trojan · Trojan Creation Tool

Origins

Author:

 KD

Group:

 Metaphase VX Team, NoMercyVirusTeam

By This Group:

 Constructor.Macro.WVSG.11 ·

Date of Origin:

 February, 2000

Operation

Storage Required:
  • Boom ANSI Bomb Construction Kit: at least 49 KB
    		•

    Detection and Removal

    Automatic Removal:

    PestPatrol detects this.

    PestPatrol removes this.

    Manual Removal:

    		 Follow these steps to remove Boom ANSI Bomb Construction Kit from your machine. Begin by backing up your registry and your system, and/or setting a Restore Point, to prevent trouble if you make a mistake.
    Stop Running Processes:

    Kill these running processes with Task Manager:

    Remove Files:

    Remove these files (if present) with Windows Explorer:

    Research

    File Analyses:

    More Info:
  • AllTheWeb, AltaVista, AOL Search, Ask Jeeves, Google, HotBot, Lycos, LookSmart, MSN, Yahoo!
    		•

    Research By:
  • PestPatrol's Pest Research Center
    		•

    Last Revised:

    		 February 20, 2005