RUNDLL32MGR.EXE – Rootkit SpyEye

Rootkits No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

RUNDLL32MGR.EXE – Rootkit SpyEye removal

FileMD5Virus Alias
RUNDLL32MGR.EXE c8b1f715192e0e340d54b8fac428eb44 Rootkit SpyEye
RUNDLL32MGR.EXE c8b1f715192e0e340d54b8fac428eb44 Trojan Win32-Spy
RUNDLL32MGR.EXE c8b1f715192e0e340d54b8fac428eb44 Trojan Eldorado
RUNDLL32MGR.EXE c8b1f715192e0e340d54b8fac428eb44 Worm AMN
RUNDLL32MGR.EXE c8b1f715192e0e340d54b8fac428eb44 Trojan Agent
RUNDLL32MGR.EXE c8b1f715192e0e340d54b8fac428eb44 Trojan ZBot

RUNDLL32MGR.EXE size: 167414 bytes
RUNDLL32MGR.EXE hash: C8B1F715192E0E340D54B8FAC428EB44

Created files:

%Program Files%\shmomfjs\bnebwisg.exe
%SysDir%\rundll32mgr.exe
%Common AppData%\Apple Computer\Installer Cache\Safari 5.34.52.7\SetupAdmin.exe
%Startup%\bnebwisg.exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit: %WinDir%\System32\userinit.exe,,%Program Files%\shmomfjs\bnebwisg.exe

Detected by UnHackMe:

RUNDLL32MGR.EXE
Default location: %SYSDIR%\RUNDLL32MGR.EXE

Dropper information:
MD5: 0db1a88751c09e4dd0c6a953354a2cc3
File size: 842087 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images