jkhg.exe – Trojan Generic

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

jkhg.exe – Trojan Generic removal

FileVirus Alias
jkhg.exe Trojan Generic
jkhg.exe Trojan Agent
jkhg.exe Trojan Downloader.Generic
jkhg.exe Worm AMN

Created files:

%Program Files%\baidu\bar\BaiduBar.dll – Trojan Generic
%Program Files%\baidu\bar\baidubartmp – Trojan Generic
%Program Files%\baidu\bar\BDBar_tmp\BaiduBar.dll – Trojan Generic
%Program Files%\baidu\bar\BDBar_tmp\baidubartmp – Trojan Generic
%WinDir%\TEMP\jkhg.exe – Trojan Generic

Autostart registry keys:

HKLM\Software\Classes\CLSID\{77FEF28E-EB96-44FF-B511-3185DEA48697}\InprocServer32 : C:\PROGRA~1\baidu\bar\BaiduBar.dll
HKLM\Software\Classes\CLSID\{7C76C055-ED6E-4535-A70F-CD476E727F67}\InprocServer32 : C:\PROGRA~1\baidu\bar\BaiduBar.dll
HKLM\Software\Classes\CLSID\{A7F05EE4-0426-454F-8013-C41E3596E9E9}\InprocServer32 : C:\PROGRA~1\baidu\bar\BaiduBar.dll
HKLM\Software\Classes\CLSID\{B580CF65-E151-49C3-B73F-70B13FCA8E86}\InprocServer32 : C:\PROGRA~1\baidu\bar\BaiduBar.dll
HKLM\Software\Classes\CLSID\{FE14F22E-BE14-4F08-A80F-F27BC3A67B2D}\InprocServer32 : C:\PROGRA~1\baidu\bar\BaiduBar.dll

Detected by UnHackMe:

jkhg.exe
Default location: %WinDir%\TEMP\jkhg.exe

Dropper information:
SHA256: d6f2f944f4b5f18e4d6943c9113899fd7aaa21b13c5babf6ac3d12f466ba0a65
SHA1: c3845b869f13a5d5a6dd64eac1d0c4ac47c46028
MD5: 26e15ca0981bb6f2d5447d67b68c9970
File size: 740864 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images