Published May 05, 2010|Updated Sep 15, 2017


Alert level: Severe Detected with Windows Defender Antivirus

Also detected as: Win-Trojan/Xema.variant (AhnLab) W32/EmailWorm.OXI (Command) Email-Worm.Win32.Brontok.q (Kaspersky) W32/Rontokbro (Norman) I-Worm.Brontok.QJ (VirusBuster) Worm/Brontok.FW (AVG) Worm/Brontok.C (Avira) Win32/Robknot.Z (CA) Win32/Brontok.S (ESET) Email-Worm.Win32.Brontok (Ikarus) W32/Rontokbro.gen@MM (McAfee) W32/Brontok.GS.WORM (Panda) Trojan.Win32.Mnless.dyr (Rising AV) W32/Brontok-G (Sophos) Email-Worm.Win32.Brontok.ik (Sunbelt Software) W32.Rontokbro@mm (Symantec) WORM_RONTOKBR.CO (Trend Micro)

Windows Defender  detects and removes this threat.
This threat is a mass-mailing worm that changes security systems on the infected computer. It usually arrives through spam e-mail.
It also modifies certain computer settings, such as how hidden files are displayed, and disables registry editing. It can also modify the computer's HOSTS file.


Latest news
Show/Hide feedback form