W32.Custam
W32.Custam is a malicious computer worm that can easily spread across local networks. W32.Custam creates a backdoor on infected computers for other malware to enter the system. W32.Custam will connect to an IRC server to receive malicious commands from hackers. W32.Custam can also propagate through removable drives and should be removed immediately once detected on any system.
File System Modifications
- The following files were created in the system:
# File Name 1 %SystemDrive%\[RANDOM FOLDER NAME]\[SID]\[RANDOM FILE NAME].exe 2 %SystemDrive%\[RANDOM FOLDER NAME]\[SID]\DeSkToP.ini
Registry Modifications
- The following newly produced Registry Values are:
HKEY..\..\..\..{Subkeys}HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{63KLC5K0-4OPM-00WE-AAX8-17EF1D187263}
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.