Solved! Use 77931C10.SYS (Trojan Artemis) Removal Guide

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

77931C10.SYS – Trojan Artemis removal

FileMD5Virus Alias
77931C10.SYS 6fd8f1c74b17cfc41eb40fc053153709 Trojan Artemis
77931C10.SYS 6fd8f1c74b17cfc41eb40fc053153709 Trojan SuspiciousFile
77931C10.SYS 6fd8f1c74b17cfc41eb40fc053153709 Trojan MLW

77931C10.SYS size: 75264 bytes
77931C10.SYS hash: 6FD8F1C74B17CFC41EB40FC053153709

Created files:

%SysDir%\33e71ea3375
%SysDir%\33e736abec9
%SysDir%\33e74c9153e
%SysDir%\33e75a23709
%SysDir%\33e7654e5f1
%SysDir%\33e7707e225
%SysDir%\77931c10.sys
%WinDir%\Temp\3d26025e777342f5\2000.20000
%WinDir%\Temp\3d26025e777342f5\2000.23000
%WinDir%\Temp\4fac57dceb551e

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\77931c10\Type: 01000000
HKLM\System\CurrentControlSet\Services\77931c10\Tag: 01000000
HKLM\System\CurrentControlSet\Services\77931c10\Group: Boot Bus Extender
HKLM\System\CurrentControlSet\Services\77931c10\ImagePath: System32\77931c10.sys

Detected by UnHackMe:

77931C10.SYS
Default location: %SYSDIR%\77931C10.SYS

Dropper information:
MD5: 13f6783072fc5a9ba644da696b0faece
File size: 909824 bytes

Leave a Reply