1656500.DLL – Trojan Magania

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

1656500.DLL – Trojan Magania removal

File MD5 Virus Alias
1656500.DLL 30c369dfaa852ab00e0605da084aa27c Trojan Magania
1656500.DLL 30c369dfaa852ab00e0605da084aa27c Trojan PcClient
1656500.DLL 30c369dfaa852ab00e0605da084aa27c Trojan Eldorado
1656500.DLL 30c369dfaa852ab00e0605da084aa27c Trojan Downloader
1656500.DLL 30c369dfaa852ab00e0605da084aa27c Backdoor PcClien
1656500.DLL 30c369dfaa852ab00e0605da084aa27c Trojan Siggen

1656500.DLL size: 103936 bytes
1656500.DLL hash: 30C369DFAA852AB00E0605DA084AA27C

Created files:

C:\1656500.dll
%Program Files%\Gbic\Bqmaoafqc.pic

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\RemoteAccess\RouterManagers\Ip\DLLPath: 43003A005C0031003600350036003500300030002E0064006C006C000000
HKLM\System\CurrentControlSet\Services\Xhtftj Fhiupvnx Tnc\Type: 10010000
HKLM\System\CurrentControlSet\Services\Xhtftj Fhiupvnx Tnc\Start: 02000000
HKLM\System\CurrentControlSet\Services\Xhtftj Fhiupvnx Tnc\DisplayName: Wylkph Dolkrtbh Ldrlsynm Wvsq
HKLM\System\CurrentControlSet\Services\Xhtftj Fhiupvnx Tnc\ImagePath: %SystemRoot%\System32\svchost.exe -k imgsvc

Detected by UnHackMe:

1656500.DLL
Default location: C:\1656500.DLL

Dropper information:
MD5: d9caff5acd58d43e4d7d8896c059b813
File size: 137216 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images