VGJUOT.EXE – Backdoor Xyligan

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

VGJUOT.EXE – Backdoor Xyligan removal

FileMD5Virus Alias
VGJUOT.EXE 17cf2840a713328db16c1e6b514adc26 Backdoor Xyligan
VGJUOT.EXE 17cf2840a713328db16c1e6b514adc26 Trojan Downloader
VGJUOT.EXE 17cf2840a713328db16c1e6b514adc26 Trojan CI
VGJUOT.EXE 17cf2840a713328db16c1e6b514adc26 Trojan OnLineGames
VGJUOT.EXE 17cf2840a713328db16c1e6b514adc26 Trojan Crypt
VGJUOT.EXE 17cf2840a713328db16c1e6b514adc26 Backdoor IRCBot

VGJUOT.EXE size: 852480 bytes
VGJUOT.EXE hash: 17CF2840A713328DB16C1E6B514ADC26

Created files:

%SysDir%\vgjuot.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\GmPnSN\Type: 10000000
HKLM\System\CurrentControlSet\Services\GmPnSN\Start: 02000000
HKLM\System\CurrentControlSet\Services\GmPnSN\DisplayName: Portable Media Serial Numbar Service
HKLM\System\CurrentControlSet\Services\GmPnSN\ImagePath: %WinDir%\System32\vgjuot.exe
HKLM\System\CurrentControlSet\Services\GmPnSN\Description: Retrieves the seriay number of any portable media player connected to this computer.

Detected by UnHackMe:

VGJUOT.EXE
Default location: %SYSDIR%\VGJUOT.EXE

Dropper information:
MD5: 17cf2840a713328db16c1e6b514adc26
File size: 852480 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images