WINDOWS 3D.SCR – Trojan Downloader

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

WINDOWS 3D.SCR – Trojan Downloader removal

FileMD5Virus Alias
WINDOWS 3D.SCR 20d94a13868d5cdb3246e76ccdc04a87 Trojan Downloader
WINDOWS 3D.SCR 20d94a13868d5cdb3246e76ccdc04a87 Trojan SuspiciousFile
WINDOWS 3D.SCR 20d94a13868d5cdb3246e76ccdc04a87 Trojan Generic
WINDOWS 3D.SCR 20d94a13868d5cdb3246e76ccdc04a87 Trojan Hllw
WINDOWS 3D.SCR 20d94a13868d5cdb3246e76ccdc04a87 Worm Autorun
WINDOWS 3D.SCR 20d94a13868d5cdb3246e76ccdc04a87 Trojan Agent

WINDOWS 3D.SCR size: 78335 bytes
WINDOWS 3D.SCR hash: 20D94A13868D5CDB3246E76CCDC04A87

Created files:

C:\windows\system32\CommandPrompt.Sysm
C:\windows\system32\Desktop.sysm
C:\windows\system32\Windows 3D.scr
C:\windows\system32\~A~m~B~u~R~a~D~u~L~\csrss.exe
C:\windows\system32\~A~m~B~u~R~a~D~u~L~\csrss.exe?
C:\windows\system32\~A~m~B~u~R~a~D~u~L~\lsass.exe
C:\windows\system32\~A~m~B~u~R~a~D~u~L~\lsass.exe?
C:\windows\system32\~A~m~B~u~R~a~D~u~L~\msvbvm60.dll
C:\windows\system32\~A~m~B~u~R~a~D~u~L~\Paraysutki_VM_Community
C:\windows\system32\~A~m~B~u~R~a~D~u~L~\services.exe
C:\windows\system32\~A~m~B~u~R~a~D~u~L~\smss.exe
C:\windows\system32\~A~m~B~u~R~a~D~u~L~\smss.exe?
C:\windows\system32\~A~m~B~u~R~a~D~u~L~\winlogon.exe
%AppData%\Microsoft\2068
%AppData%\Microsoft\amnv.exe
%Startup%\Microsoft Connection.msd

Detected by UnHackMe:

WINDOWS 3D.SCR
Default location: %SYSDIR%\WINDOWS 3D.SCR

Dropper information:
MD5: 0cfd0ea83402d335706f585075e6ed2e
File size: 130050 bytes

Leave a Reply