SVCHOST.EXE – Trojan Delf

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

SVCHOST.EXE – Trojan Delf removal

File MD5 Virus Alias
SVCHOST.EXE 33D484F6A5323D709ABC05C036ECDB2F Trojan Delf
SVCHOST.EXE 33D484F6A5323D709ABC05C036ECDB2F Trojan SuspiciousFile
SVCHOST.EXE 33D484F6A5323D709ABC05C036ECDB2F Trojan Generic
SVCHOST.EXE 33D484F6A5323D709ABC05C036ECDB2F Trojan Eldorado
SVCHOST.EXE 33D484F6A5323D709ABC05C036ECDB2F Trojan Downloader
SVCHOST.EXE 33D484F6A5323D709ABC05C036ECDB2F Trojan Agent

SVCHOST.EXE size: 194560 bytes
SVCHOST.EXE hash: 33D484F6A5323D709ABC05C036ECDB2F

Created files:

C:\Documents and Settings\LocalService\Local Settings\Application Data\sLT.exf
%SysDir%\drivers\svchost.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\Host Generic Process\Type: 10010000
HKLM\System\CurrentControlSet\Services\Host Generic Process\Start: 02000000
HKLM\System\CurrentControlSet\Services\Host Generic Process\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\Host Generic Process\DisplayName: Host Generic Process for Win32 Services
HKLM\System\CurrentControlSet\Services\Host Generic Process\ImagePath: %WinDir%\System32\drivers\svchost.exe

Detected by UnHackMe:

SVCHOST.EXE
Default location: %SYSDIR%\DRIVERS\SVCHOST.EXE

Dropper information:
MD5: 33D484F6A5323D709ABC05C036ECDB2F
File size: 194560 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images