Trojan ExpProc – nhe.exe – 0ef6d6f20a2e0644dc5c24e173790fa3

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

Trojan ExpProc
Also known as: Trojan Eldorado, Trojan FakeAV
SHA256: 0948e0df60a641906e2e2f7dcc73bd55658c82f90713203a181097437c7147cb
SHA1: 031fa225fcd6a3737515a60f9b7adf69f729b05f
MD5: 0ef6d6f20a2e0644dc5c24e173790fa3
File size: 348160 bytes

Created files:

%Local AppData%\nhe.exe – Trojan ExpProc

Trojan ExpProc created autostart registry keys:

HKLM\System\CurrentControlSet\Services\SharedAccess\Start: 04000000
HKLM\System\CurrentControlSet\Services\wuauserv: deleted registry key
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\ctfmon.exe: %WinDir%\System32\ctfmon.exe

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images