W32.HLLP.Plea

Risk Level 1: Very Low

Printer Friendly Page

Discovered: November 10, 2003

Updated: February 13, 2007 12:13:43 PM

Also Known As: I-Worm.Plea [KAV], W32/HLLW.Plea.A [FPROT], W32/Scrambler [McAfee], W32/Plea-A [SOPHOS], PE.PLEA.A [Trend], Win32/HLLW.Plea [GcCAD]

Type: Virus

Systems Affected: Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows XP

W32.HLLP.Plea is a parasitic virus that prepends itself to executable files and contains VBS.Plea@mm, which spreads the virus through email and ICQ.

This virus is written in C++ and is packed with UPX.

Protection

Initial Rapid Release version November 11, 2003
Latest Rapid Release version July 26, 2008 revision 017
Initial Daily Certified version November 11, 2003
Latest Daily Certified version January 20, 2009 revision 048
Initial Weekly Certified release date November 12, 2003

Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.

Threat Assessment

Wild

Wild Level: Low
Number of Infections: 0 - 49
Number of Sites: 0 - 2
Geographical Distribution: Low
Threat Containment: Easy
Removal: Easy

Damage

Damage Level: Low

Distribution

Distribution Level: Low

Writeup By: Hiroshi Shinotsuka

Technical Details

Search Threats

Search by name

_{Example: W32.Beagle.AG@mm}