Solved! Use MSFAX32.EXE (Trojan Agent) Removal Guide

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

MSFAX32.EXE – Trojan Agent removal

File MD5 Virus Alias
MSFAX32.EXE 4a30064270b7e2848e2fb92ac4d85777 Trojan Agent
MSFAX32.EXE 4a30064270b7e2848e2fb92ac4d85777 Trojan Small

MSFAX32.EXE size: 303473 bytes
MSFAX32.EXE hash: 4A30064270B7E2848E2FB92AC4D85777

Created files:

%WinDir%\svchost.exe
%SysDir%\concp32.exe
%SysDir%\explorer.exe
%SysDir%\msfax32.exe
%SysDir%\vcl32.exe

Autostart registry keys:

HKLM\Software\Microsoft\Active Setup\Installed Components\{E4883584-8B9A-11D5-EBA1-F78EEEEEE983}\StubPath: msfax32.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\VCL: vcl32.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\VCL: vcl32.exe

Detected by UnHackMe:

MSFAX32.EXE
Default location: %SYSDIR%\MSFAX32.EXE

Dropper information:
MD5: 65bc310da52fa6fc4615f615ebda9e10
File size: 284937 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images