Storimbo
Posted: November 28, 2013
Threat Metric
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
| Ranking: | 17,011 |
|---|---|
| Threat Level: | 2/10 |
| Infected PCs: | 8,158 |
| First Seen: | December 2, 2013 |
|---|---|
| Last Seen: | September 19, 2023 |
| OS(es) Affected: | Windows |
Storimbo is a new adware program from SuperWeb LLC, the originators of Illoxum and similarly ignominious browser add-ons. As with all other products by that company, Storimbo may modify your Web-browsing settings to display new advertisements automatically, to the detriment of your browser's basic security and performance. Even though Storimbo only is a Potentially Unwanted Program instead of a Trojan or other high-level PC threats, malware researchers still consider removing Storimbo from your PC to be the obvious and preferable reaction. As long as good anti-malware or related security products are used to verify the complete deletion of all of Storimbo's settings changes, your computer should largely be unaffected by a brief period of contact with Storimbo.
The Adware Storm that's A-Brewing
One of the many SuperWeb products that claim to help your Web-browsing experience but degrade it, Storimbo is a very archetypal form of adware: Storimbo is installed through the bundles of installers for unrelated applications, is suspiciously difficult to uninstall and makes a range of browser changes. All of these changes are for allowing Storimbo to load additional advertising content as malware experts have found with such functions as:
- Modifying a Web page's text content to include links to third party advertisements.
- Modifying Web pages to insert new banners, product comparisons and other graphical advertisements.
- Loading new pop-under and pop-up windows with advertisements.
- Interrupting the loading of another site to display full-window advertisements.
Because SuperWeb has an extended history of developing new adware programs just like Storimbo, malware researchers find it easy to encourage the clean-slate deletion of all of their products. This also goes for Storimbo, which doesn't have any advantages for your browser, and may endanger it by loading unsafe advertisements that may host phishing attempts or drive-by-downloads.
Quieting the Thunder of Storimbo's Advertisements
For the most part, protecting your browser from Storimbo is a matter of safe browsing practices. Sites that tend to distribute adware and other low-level PC threats through bundled installers shouldn't be trusted implicitly to offer safe downloads, and most software that requires the implicit acceptance of third party browser add-ons to finish installation should be considered unnecessary for your computer. If you doubt the potential trustworthiness of a file that might be a Storimbo installer, you should use anti-malware tools to analyze the file and detect any presence of bundled PUPs.
PUPs aren't in the habit of attacking your computer directly, but Storimbo still may host advertisements that have the ability to harm your computer. Before deleting Storimbo with appropriate security tools, you should be careful to avoid unneeded contact with advertisements that are likely threats to your online safety. Attempts to steal information through fake surveys or make you install threats through fake updates are some of the most often-seen advertising network-based attacks.
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
The following files were created in the system:%PROGRAMFILES(x86)%\Storimbo\updateStorimbo.exe
File name: updateStorimbo.exeSize: 66.84 KB (66848 bytes)
MD5: d4630452e718d617ff0973f7e14be7a2
Detection count: 6,570
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES(x86)%\Storimbo
Group: Malware file
Last Updated: April 21, 2020
Registry Modifications
HKEY..\..\..\..{RegistryKeys}Software\Microsoft\Internet Explorer\Approved Extensions\{ddac750c-59da-4bb6-9ee7-ead55ebe0b64}SOFTWARE\Microsoft\Tracing\updatestorimbo_RASAPI32SOFTWARE\Microsoft\Tracing\updatestorimbo_RASMANCSSOFTWARE\Microsoft\Tracing\utilstorimbo_RASAPI32SOFTWARE\Microsoft\Tracing\utilstorimbo_RASMANCSSOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{ddac750c-59da-4bb6-9ee7-ead55ebe0b64}Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{ddac750c-59da-4bb6-9ee7-ead55ebe0b64}Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{ddac750c-59da-4bb6-9ee7-ead55ebe0b64}SOFTWARE\storimboSOFTWARE\Wow6432Node\Microsoft\Tracing\storimbo_RASAPI32SOFTWARE\Wow6432Node\Microsoft\Tracing\storimbo_RASMANCSSOFTWARE\Wow6432Node\Microsoft\Tracing\updatestorimbo_RASAPI32SOFTWARE\Wow6432Node\Microsoft\Tracing\updatestorimbo_RASMANCSSOFTWARE\Wow6432Node\Microsoft\Tracing\utilstorimbo_RASAPI32SOFTWARE\Wow6432Node\Microsoft\Tracing\utilstorimbo_RASMANCSSOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{ddac750c-59da-4bb6-9ee7-ead55ebe0b64}SOFTWARE\Wow6432Node\storimboSYSTEM\ControlSet001\services\eventlog\Application\Update storimboSYSTEM\ControlSet001\services\eventlog\Application\Util storimboSYSTEM\ControlSet001\services\Update storimboSYSTEM\ControlSet001\services\Util storimboSYSTEM\CurrentControlSet\services\eventlog\Application\Update storimboSYSTEM\CurrentControlSet\services\eventlog\Application\Util storimboSYSTEM\CurrentControlSet\services\Update storimboSYSTEM\CurrentControlSet\services\Util storimboHKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}storimbo
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.