Home / Spyware Encyclopedia / IM.Pok << Back

Recommendation to Automatically remove IM.Pok


Our products can remove IM.Pok and thousands of other Virus and Spyware automatically and instantly.

IM.Pok Details


  • Category IM
  • Discovered 3/28/2011 3:08:31 PM
  • Modified 8/11/2023 3:36:01 PM
  • Threat Level Critical
  • Category Description
    A threat that is capable to cause Denial-Of-Service attacks against other instant messenger client systems.

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
thnall1t.exe 65536betterinternet, inc.1.0.0.8f9531200c381331a6fe0a59dbcfeb55e 
Trojan-Dropper.Win32.Small.qt.exe 33280  3b5cbc56054e26847d461ca6c37f8705 
492df2865ce58d2f67f28d6e1dd1adb5379dba927631f6f18785c1faa61c6061.exe 266240 1.0.0.07ce604dc1ca8bbce3b6d677cac25cf8a11/08/2023
492df2865ce58d2f67f28d6e1dd1adb5379dba927631f6f18785c1faa61c6061.exe 266240 1.0.0.07ce604dc1ca8bbce3b6d677cac25cf8a 
winlogon32.exe 432640    
mtwcnl32.dll 747    
mtwcnl32.dll 453    
mtwcnl32.dll 495    
TROJAN-DROPPER.WIN32.SMALL.QK.EXE 19968  06e4e0e44f4b8d01d78415d19333fbc8 
cidpoq32.dll 766  0d310881dedfc40c74bc70f9f1cea92f 

The following Registry Entries were created:
..\Software\Microsoft\Windows\CurrentVersion\Run\\"winlogon"\"%WIN.SYS32%\winlogon32.exe"
..\Software\Microsoft\Windows\CurrentVersion\URL\Prefixes\"www."\"http://"
..\Software\Microsoft\Windows\CurrentVersion\RunServices\\"desktop"\"%WIN.SYS32%\desktop.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"nsdriver"\"%WIN.SYS32%\nssys32.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"desktop"\"%WIN.SYS32%\desktop.exe"
..\Software\Classes\Clsid\{FF986C12-B5C9-439A-839B-D8591CBC24D6}\(Default)
..\Software\Classes\Clsid\{FF593D78-92C8-484E-BCDA-51B5FBB52E98}\(Default)
..\Software\Classes\Clsid\{E3D2751B-7B67-4C6A-8A46-614714042CDE}\(Default)
..\Software\Classes\Clsid\{DACF72F8-AD3D-4556-853A-90B69C531628}\(Default)
..\Software\Classes\Clsid\{D8825110-0A81-43B5-BC1A-A6FE5270F364}\(Default)

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware