W32.HLLP.Sality.O
W32.HLLP.Sality.O is a mischievous trojan infection that is advertised through the use of bogus online scanners and other fake websites or malware that shows fraudulent security alerts on your computer. W32.HLLP.Sality.O can communicate with a remote IRC server and download files to the computer without user's consent which will lead to security threat. W32.HLLP.Sality.O also downloads additional components before the attackers get the remote access to the compromised PC. W32.HLLP.Sality.O opens up firewalls and gathers private details such as personal financial information. W32.HLLP.Sality.O is able to make modifications to various system services, such as Windows Audio, Computer Browser Network Connections, Cyptographic Services, etc.
File System Details
W32.HLLP.Sality.O may create the following file(s):
# | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
---|---|---|
1. | %UserProfile%\Application Data mp.exe | |
2. | %Documents and Settings%\[UserName]\Application Data\WRblt8464P |
Registry Details
W32.HLLP.Sality.O may create the following registry entry or registry entries:
Settings 'WarnonBadCertRecving' = '0'
HKEY_CLASSES_ROOT\Folder\shellex\ContextMenuHandlers\SimpleShlExt
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet
HKEY_LOCAL_MACHINE\SOFTWARE\Malware Defense
HKEY_LOCAL_MACHINE\SOFTWARE\Paladin Antivirus
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings 'WarnOnPostRedirect' = '0'
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce 'SelfdelNT'
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.