W32.Stikpid

W32.Stikpid Description



W32.Stikpid is a worm that circulates through removable drives. W32.Stikpid also drops potentially infected files, steals computer system information, and opens a back door on the affected PC. W32.Stikpid may spread via malicious email attachments, hijacked removable drives, drive-by downloads, or can be dropped by other malware infections. Once executed, W32.Stikpid may replicate itself to the certain locations.
Download SpyHunter Spyware Scanner
W32.Stikpid may create the certain registry entries so that it can run automatically every time you start Windows. W32.Stikpid may insert itself into the processes called iexplore.exe or explorer.exe in order to connect to the Internet. W32.Stikpid may also create the certain file in order to run whenever the drive is used on another PC. W32.Stikpid may also gather personal information, such as OS version, successful installation, specific accessible permissions and CPU type.

W32.Stikpid Automatic Detection Tool (Recommended)


Is your PC infected with W32.Stikpid? To safely & quickly detect W32.Stikpid, we highly recommend you run the malware scanner listed below.



Technical Details

File System Modifications

Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
  • The following files were created in the system:
    # File Name
    1 %DriveLetter%\autorun.inf
    2 %DriveLetter%\[ALL EXISTING FOLDERS]\[SEVEN CHARACTERS]_l.exe
    3 %DriveLetter%\[ALL EXISTING FOLDERS]\[SEVEN CHARACTERS]_a.exe
    4 %UserProfile%\Local Settings\Temp\[SEVEN CHARACTERS]_l.dat
    5 %UserProfile%\Local Settings\Temp\[SEVEN CHARACTERS]_a.dat
    6 %UserProfile%\Application Data\Microsoft\[SEVEN CHARACTERS].exe

Registry Modifications

Tutorial: To edit and delete registry entries manually, read the tutorial on how to remove malicious registry entries.

Tip & Warning: Editing and removing the wrong registry keys can severely damage your PC, so remember to backup your Windows Registry! To optimize your Windows Registry and speed up your PC, download RegHunter's registry cleaner.
  • The following newly produced Registry Values are:
    HKEY..\..\{Value}HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\"[SEVEN CHARACTERS]" = "[PATH TO WORMHKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\"[SEVEN CHARACTERS]" = "[PATH TO WORM]"
Posted: July 27, 2012 | By
Share:
Follow Me on Pinterest More More
Threat Level: 5/10
1 Star2 Stars3 Stars4 Stars5 Stars (No Ratings Yet)
Loading ... Loading ...
Rate this article:
Detection Count: 225

Leave a Reply

What is 12 + 5 ?
Please leave these two fields as-is:
IMPORTANT! To be able to proceed, you need to solve the following simple math (so we know that you are a human) :-)