W32.Jonbarr.D
W32.Jonbarr.D@mm, which is a variant of the W32.Jonbarr@mm worm, is a worm that uses its own SMTP engine to send itself to all the email addresses it finds in the .htm files and in temporary Internet files. Besides, the worm attempts to kill the processes of many antivirus applications.
Registry Modifications
- The following newly produced Registry Values are:
HKEY..\..\..\..{RegistryKeys}Browsetothekey:DeletethevalueNero.ma=%SystemRoot%system[twoorthreerandomdigits].exeHKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionRun
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.