W32.Ackantta.B@mm is a self-replicating computer worm. It spreads by exploiting vulnerabilities in operating systems. Usually, it creates a copy of itself and infects numerous files on compromised system. Then W32.Ackantta.B@mm gathers emails from the infected computer and mass-mail itself as an email attachment with scam messages. This worm has been designed only to spread without making damage to the system. However, it is strongly recommended to remove it from the system as soon as possible after detection.

W32.Ackantta.B@mm manual removal:
Kill processes:
javale.exe


Delete registry values:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\”SunJava Updater v7″ = “%System%\javale.exe”
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\Firewall Policy\StandardProfile\AuthorizedApplications\List\%System%\”javale.exe” = “%System%\javale.exe:*:Enabled:Explorer”
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\”javastation1.1″ = “02″
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\”ultrasparc1.1″ = “25″
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download\”CheckExeSignatures” = “0×1″
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download\”RunInvalidSignatures” = “no”
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Associations\”LowRiskFileTypes” =


Delete files:
javale.exe