I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free Download Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
MSGNFN.EXE – Backdoor Xyligan removal
| File | MD5 | Virus Alias |
|---|---|---|
| MSGNFN.EXE | 4dd7f9be6fe1faff7acf5becb0276d45 | Backdoor Xyligan |
| MSGNFN.EXE | 4dd7f9be6fe1faff7acf5becb0276d45 | Trojan PcClient |
| MSGNFN.EXE | 4dd7f9be6fe1faff7acf5becb0276d45 | Trojan Eldorado |
| MSGNFN.EXE | 4dd7f9be6fe1faff7acf5becb0276d45 | Backdoor PcClien |
| MSGNFN.EXE | 4dd7f9be6fe1faff7acf5becb0276d45 | Backdoor Nitol |
| MSGNFN.EXE | 4dd7f9be6fe1faff7acf5becb0276d45 | Trojan Agent |
MSGNFN.EXE size: 58368 bytes
MSGNFN.EXE hash: 4DD7F9BE6FE1FAFF7ACF5BECB0276D45
Created files:
%SysDir%\msgnfn.exe
Autostart registry keys:
HKLM\System\CurrentControlSet\Services\rcmsvc\Type: 10000000
HKLM\System\CurrentControlSet\Services\rcmsvc\Start: 02000000
HKLM\System\CurrentControlSet\Services\rcmsvc\DisplayName: Remsote Command Serviace
HKLM\System\CurrentControlSet\Services\rcmsvc\ImagePath: %WinDir%\System32\msgnfn.exe
HKLM\System\CurrentControlSet\Services\rcmsvc\Description: Windows Resouwrce Kit
Detected by UnHackMe:
MSGNFN.EXE
Default location: %SYSDIR%\MSGNFN.EXE
Dropper information:
MD5: 4dd7f9be6fe1faff7acf5becb0276d45
File size: 58368 bytes