PEVFIND.EXE – Trojan BadReputation

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

PEVFIND.EXE – Trojan BadReputation removal

FileMD5Virus Alias
PEVFIND.EXE ed6ffffe015dcc1b238ed630c9b57471 Trojan BadReputation
PEVFIND.EXE ed6ffffe015dcc1b238ed630c9b57471 Trojan SuspiciousFile

PEVFIND.EXE size: 249344 bytes
PEVFIND.EXE hash: ED6FFFFE015DCC1B238ED630C9B57471

Created files:

%WinDir%\RegLooks\asic
%WinDir%\RegLooks\dumphive.exe
%WinDir%\RegLooks\fdsv.exe
%WinDir%\RegLooks\MD5File.exe
%WinDir%\RegLooks\pevFind.exe
%WinDir%\RegLooks\reglooks.vbs
%WinDir%\RegLooks\service
%WinDir%\RegLooks\servsafe
%WinDir%\RegLooks\serv_axinstsvgroup
%WinDir%\RegLooks\serv_bthsvcs
%WinDir%\RegLooks\serv_dcomlaunch
%WinDir%\RegLooks\serv_defragsvc
%WinDir%\RegLooks\serv_imgsvc
%WinDir%\RegLooks\serv_localservice
%WinDir%\RegLooks\serv_localserviceandnoimpersonation
%WinDir%\RegLooks\serv_localservicenetworkrestricted
%WinDir%\RegLooks\serv_localservicenonetwork
%WinDir%\RegLooks\serv_localservicepeernet
%WinDir%\RegLooks\serv_localsystemnetworkrestricted
%WinDir%\RegLooks\serv_netsvcs
%WinDir%\RegLooks\serv_networkservice
%WinDir%\RegLooks\serv_networkserviceandnoimpersonation
%WinDir%\RegLooks\serv_networkservicenetworkrestricted
%WinDir%\RegLooks\serv_peerdist
%WinDir%\RegLooks\serv_regsvc
%WinDir%\RegLooks\serv_rpcss
%WinDir%\RegLooks\serv_sdrsvc
%WinDir%\RegLooks\serv_secsvcs
%WinDir%\RegLooks\serv_swprv
%WinDir%\RegLooks\serv_termsvcs
%WinDir%\RegLooks\serv_wbiosvcgroup
%WinDir%\RegLooks\serv_wcssvc
%WinDir%\RegLooks\serv_wersvcgroup
%WinDir%\RegLooks\swreg.exe
%WinDir%\RegLooks\U2

Detected by UnHackMe:

PEVFIND.EXE
Default location: %WinDir%\REGLOOKS\PEVFIND.EXE

Dropper information:
MD5: df8b14f5a3ae973b417076b911b2f41c
File size: 589860 bytes

Leave a Reply