W32.Imsolk.A@mm
W32.Imsolk.A@mm is a malicious network-aware computer worm which spreads through Instant Messenger systems running on the Windows operating system. W32.Imsolk.A@mm will send a malicious message to all of your contacts. W32.Imsolk.A@mm attempts to spread by sending a link that contains a corrupt download. W32.Imsolk.A@mm also downloads other malware onto the infected system and then spreads through removable drives such as USB flash devices. Remove W32.Imsolk.A@mm immediately once detected using an effective antivirus software.
File System Modifications
- The following files were created in the system:
# File Name 1 C:\Program Files\USB Disk Security 2 D:\Program Files\USB Disk Security
Registry Modifications
- The following newly produced Registry Values are:
HKEY..\..\..\..{Subkeys}HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\EnableLUA" = "0"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\EnableVirtualization" = "0"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\PromptOnSecureDesktop" = "0"HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Winlogon\"Shell" = "Explorer.exe C:\WINDOWS\svchost.exe"
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.