I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free DownloadFully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
SESSMGR.VIR – Virus Expiro removal
File | MD5 | Virus Alias |
---|---|---|
SESSMGR.VIR | 0fd030c9c57bd7b6f6e116b382807c27 | Virus Expiro |
SESSMGR.VIR | 0fd030c9c57bd7b6f6e116b382807c27 | Trojan SuspiciousFile |
SESSMGR.VIR size: 251904 bytes
SESSMGR.VIR hash: 0FD030C9C57BD7B6F6E116B382807C27
Created files:
%SysDir%\cisvc.vir
%SysDir%\clipsrv.vir
%SysDir%\dllhost.vir
%SysDir%\dmadmin.vir
%SysDir%\imapi.vir
%SysDir%\locator.vir
%SysDir%\lsass.vir
%SysDir%\mnmsrvc.vir
%SysDir%\MsDtc\Trace\dtctrace.log.2013-03-12-23-06-42-0708-00
%SysDir%\msdtc.vir
%SysDir%\msiexec.vir
%SysDir%\netdde.vir
%SysDir%\rsvp.vir
%SysDir%\scardsvr.vir
%SysDir%\sessmgr.vir
%SysDir%\smlogsvc.vir
%SysDir%\svchost.vir
%SysDir%\tlntsvr.vir
%SysDir%\ups.vir
%SysDir%\vssvc.exe
%SysDir%\vssvc.vir
Autostart registry keys:
HKLM\System\CurrentControlSet\Services\msiserver\Type: 20010000
HKLM\System\CurrentControlSet\Services\msiserver\Start: 02000000
Detected by UnHackMe:
SESSMGR.VIR
Default location: %SYSDIR%\SESSMGR.VIR
Dropper information:
MD5: 28898c6027f17da009a63ab65e4bb7ab
File size: 116736 bytes