SVCHOST.EXE – Trojan Artemis

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

SVCHOST.EXE – Trojan Artemis removal

FileMD5Virus Alias
SVCHOST.EXE 03dca11a611f63afaef14a43551f7260 Trojan Artemis
SVCHOST.EXE 03dca11a611f63afaef14a43551f7260 Trojan SuspiciousFile
SVCHOST.EXE 03dca11a611f63afaef14a43551f7260 Trojan Generic
SVCHOST.EXE 03dca11a611f63afaef14a43551f7260 Trojan MulDrop4
SVCHOST.EXE 03dca11a611f63afaef14a43551f7260 Trojan Agent

SVCHOST.EXE size: 286720 bytes
SVCHOST.EXE hash: 03DCA11A611F63AFAEF14A43551F7260

Created files:

%Program Files Common%\Microsoft Shared\WindowsUpdate\svchost.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\WSFilter\Type: 10000000
HKLM\System\CurrentControlSet\Services\WSFilter\Start: 02000000
HKLM\System\CurrentControlSet\Services\WSFilter\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\WSFilter\DisplayName: Windows Filter Foundation Framework
HKLM\System\CurrentControlSet\Services\WSFilter\ImagePath: %Program Files Common%\Microsoft Shared\WindowsUpdate\svchost.exe -s -k -netsvc

Detected by UnHackMe:

SVCHOST.EXE
Default location: %PROGRAM FILES COMMON%\MICROSOFT SHARED\WINDOWSUPDATE\SVCHOST.EXE

Dropper information:
MD5: 03dca11a611f63afaef14a43551f7260
File size: 286720 bytes

Leave a Reply