Solved! Use HACKER.COM.CN.EXE (Backdoor Hupigon) Removal Guide

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

HACKER.COM.CN.EXE – Backdoor Hupigon removal

File MD5 Virus Alias
HACKER.COM.CN.EXE bf2d7d56b99f151a5eb1126fbf0a7169 Backdoor Hupigon
HACKER.COM.CN.EXE bf2d7d56b99f151a5eb1126fbf0a7169 Trojan (Suspicious File)
HACKER.COM.CN.EXE bf2d7d56b99f151a5eb1126fbf0a7169 Trojan Generic
HACKER.COM.CN.EXE bf2d7d56b99f151a5eb1126fbf0a7169 Trojan Eldorado
HACKER.COM.CN.EXE bf2d7d56b99f151a5eb1126fbf0a7169 Trojan Downloader
HACKER.COM.CN.EXE bf2d7d56b99f151a5eb1126fbf0a7169 Trojan Agent

HACKER.COM.CN.EXE size: 281600 bytes
HACKER.COM.CN.EXE hash: BF2D7D56B99F151A5EB1126FBF0A7169

Created files:

%WinDir%\Hacker.com.cn.exe
%Temp%\IXP000.TMP\3.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\GrayPigeon_Hacker.com.cn\Type: 10010000
HKLM\System\CurrentControlSet\Services\GrayPigeon_Hacker.com.cn\Start: 02000000
HKLM\System\CurrentControlSet\Services\GrayPigeon_Hacker.com.cn\DisplayName: GrayPigeon_Hacker.com.cn
HKLM\System\CurrentControlSet\Services\GrayPigeon_Hacker.com.cn\ImagePath: %WinDir%\Hacker.com.cn.exe

Detected by UnHackMe:

HACKER.COM.CN.EXE
Default location: %WinDir%\HACKER.COM.CN.EXE

Dropper information:
MD5: d6903e3334939e34f1d84a23e54e6ea0
File size: 337408 bytes

Leave a Reply