Solved! Use SYSAGEO.EXE (Trojan Graftor) Removal Guide

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

SYSAGEO.EXE – Trojan Graftor removal

File MD5 Virus Alias
SYSAGEO.EXE 8182f9afc7593856a53223412a00d15c Trojan Graftor
SYSAGEO.EXE 8182f9afc7593856a53223412a00d15c Trojan, Suspicious File
SYSAGEO.EXE 8182f9afc7593856a53223412a00d15c Trojan Artemis
SYSAGEO.EXE 8182f9afc7593856a53223412a00d15c Trojan Generic
SYSAGEO.EXE 8182f9afc7593856a53223412a00d15c Trojan Eldorado
SYSAGEO.EXE 8182f9afc7593856a53223412a00d15c Trojan Downloader

SYSAGEO.EXE size: 49152 bytes
SYSAGEO.EXE hash: 8182F9AFC7593856A53223412A00D15C

Created files:

%WinDir%\sysageo.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\KillAllmkea web Service\Type: 10000000
HKLM\System\CurrentControlSet\Services\KillAllmkea web Service\Start: 02000000
HKLM\System\CurrentControlSet\Services\KillAllmkea web Service\DisplayName: WebSystemfpla
HKLM\System\CurrentControlSet\Services\KillAllmkea web Service\ImagePath: %WinDir%\sysageo.exe

Detected by UnHackMe:

SYSAGEO.EXE
Default location: %WinDir%\SYSAGEO.EXE

Dropper information:
MD5: 8182f9afc7593856a53223412a00d15c
File size: 49152 bytes

Leave a Reply