We're gradually updating threat actor names in our reports to align with the new weather-themed taxonomy. Learn about Microsoft threat actor names
TrojanSpy:Win32/Worsmep.A
Detected by Microsoft Defender Antivirus
Aliases: No associated aliases
Summary
TrojanSpy:Win32/Worsmep.A is a trojan that modifies the infected computer's Hosts file, and monitors the user's Internet activities.
To detect and remove this threat and other malicious software that may be installed in your computer, run a full-system scan with an up-to-date antivirus product such as the following:
For more information on antivirus software, see http://www.microsoft.com/windows/antivirus-partners/.
Additional remediation instructions for TrojanSpy:Win32/Worsmep.A
This threat may make lasting changes to a computer’s configuration that are NOT restored by detecting and removing this threat. For more information on returning an infected computer to its pre-infected state, please see the following article/s:
-
Recreating a clean Hosts file: http://support.microsoft.com/kb/972034