I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free DownloadFully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
JAXFAQ.EXE – Trojan Magania removal
File | MD5 | Virus Alias |
---|---|---|
JAXFAQ.EXE | 535fbfb237a16df776542060b46d34ca | Trojan Magania |
JAXFAQ.EXE | 535fbfb237a16df776542060b46d34ca | Trojan Downloader |
JAXFAQ.EXE | 535fbfb237a16df776542060b46d34ca | Trojan Agent |
JAXFAQ.EXE | 535fbfb237a16df776542060b46d34ca | Trojan Scar |
JAXFAQ.EXE size: 139264 bytes
JAXFAQ.EXE hash: 535FBFB237A16DF776542060B46D34CA
Created files:
%SysDir%\jaxfaq.exe
%TEMP%\Server.dll
Autostart registry keys:
HKLM\System\CurrentControlSet\Services\BITS\JConnectGroup: 8fHs4J6gnqGr1tbV3/Tqq/Ds6peVnZ2dzQ==
HKLM\System\CurrentControlSet\Services\BITS\JSet: û??????
HKLM\System\CurrentControlSet\Services\BITS\JTime: 014
HKLM\System\CurrentControlSet\Services\Dr yta Service\Type: 10000000
HKLM\System\CurrentControlSet\Services\Dr yta Service\Start: 02000000
HKLM\System\CurrentControlSet\Services\Dr yta Service\DisplayName: Dr jrq
HKLM\System\CurrentControlSet\Services\Dr yta Service\ImagePath: %WinDir%\System32\jaxfaq.exe
HKLM\System\CurrentControlSet\Services\Dr yta Service\Description: Dr mid server for NI security.
Detected by UnHackMe:
JAXFAQ.EXE
Default location: %SYSDIR%\JAXFAQ.EXE
Dropper information:
MD5: 535fbfb237a16df776542060b46d34ca
File size: 139264 bytes