I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free Download Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
SERVER.EXE – Backdoor Bifrose removal
| File | MD5 | Virus Alias |
|---|---|---|
| SERVER.EXE | 2a5d4b282ec2c3fc902f97e38174376f | Backdoor Bifrose |
| SERVER.EXE | 2a5d4b282ec2c3fc902f97e38174376f | Trojan SuspiciousFile |
| SERVER.EXE | 2a5d4b282ec2c3fc902f97e38174376f | Trojan Generic |
| SERVER.EXE | 2a5d4b282ec2c3fc902f97e38174376f | Trojan Downloader |
| SERVER.EXE | 2a5d4b282ec2c3fc902f97e38174376f | Trojan Adload |
| SERVER.EXE | 2a5d4b282ec2c3fc902f97e38174376f | Trojan Agent |
SERVER.EXE size: 1226435 bytes
SERVER.EXE hash: 2A5D4B282EC2C3FC902F97E38174376F
Created files:
%SysDir%\server.exe
Autostart registry keys:
HKLM\Software\Microsoft\Active Setup\Installed Components\{9B71D88C-C598-4935-C5D1-43AA4DB90836}\stubpath: 43003A005C00570049004E0044004F00570053005C00730079007300740065006D00330032005C007300650072007600650072002E00650078006500200073000000
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\startkey: %WinDir%\System32\server.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\startkey: %WinDir%\System32\server.exe
Detected by UnHackMe:
SERVER.EXE
Default location: %SYSDIR%\SERVER.EXE
Dropper information:
MD5: 2a5d4b282ec2c3fc902f97e38174376f
File size: 1226435 bytes