SVCHOST.EXE – Backdoor Plugx

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

SVCHOST.EXE – Backdoor Plugx removal

FileMD5Virus Alias
SVCHOST.EXE a8dd5d448023771934461c7825b458c3 Backdoor Plugx
SVCHOST.EXE a8dd5d448023771934461c7825b458c3 Trojan Artemis
SVCHOST.EXE a8dd5d448023771934461c7825b458c3 Trojan Generic
SVCHOST.EXE a8dd5d448023771934461c7825b458c3 Trojan Downloader
SVCHOST.EXE a8dd5d448023771934461c7825b458c3 Trojan Graftor
SVCHOST.EXE a8dd5d448023771934461c7825b458c3 Trojan Agent

SVCHOST.EXE size: 297489 bytes
SVCHOST.EXE hash: A8DD5D448023771934461C7825B458C3

Created files:

C:\programdata\Svchost.exe
%AllUsersProfile%\MC\Mc.exe
%AllUsersProfile%\MC\McUtil.dll
%Temp%\RarSFX0\Mc.exe
%Temp%\RarSFX0\McUtil.dll

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\Macfee MC\Type: 10010000
HKLM\System\CurrentControlSet\Services\Macfee MC\Start: 02000000
HKLM\System\CurrentControlSet\Services\Macfee MC\DisplayName: Macfee MC Server
HKLM\System\CurrentControlSet\Services\Macfee MC\ImagePath: %AllUsersProfile%\MC\Mc.exe

Detected by UnHackMe:

SVCHOST.EXE
Default location: C:\PROGRAMDATA\SVCHOST.EXE

Dropper information:
MD5: ca33e1826f8d03ed2c11fba563ca3bbb
File size: 4207 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images