DLLHOST.EXE – Trojan Artemis

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

DLLHOST.EXE – Trojan Artemis removal

FileMD5Virus Alias
DLLHOST.EXE 1b14070dc6b639c41814162b0a2322e8 Trojan Artemis
DLLHOST.EXE 1b14070dc6b639c41814162b0a2322e8 Trojan BadReputation
DLLHOST.EXE 1b14070dc6b639c41814162b0a2322e8 Trojan Generic
DLLHOST.EXE 1b14070dc6b639c41814162b0a2322e8 Trojan Eldorado
DLLHOST.EXE 1b14070dc6b639c41814162b0a2322e8 Trojan Downloader
DLLHOST.EXE 1b14070dc6b639c41814162b0a2322e8 Trojan Agent

DLLHOST.EXE size: 471552 bytes
DLLHOST.EXE hash: 1B14070DC6B639C41814162B0A2322E8

Created files:

%WinDir%\System\spoolsv.exe
%Local AppData%\Microsoft\dllhost.exe
%Local AppData%\smss.exe
%TEMP%\Twain002.Mtx
%AllUsersProfile%\dllhst3g.exe
%AllUsersProfile%\lsm.exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\Session Manager: %WinDir%\System32\config\SYSTEM~1\LOCALS~1\APPLIC~1\smss.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\lsm service: C:\DOCUME~1\ALLUSE~1\lsm.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\Spooler: %WinDir%\System\spoolsv.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\DllHost3g: C:\DOCUME~1\ALLUSE~1\dllhst3g.exe

Detected by UnHackMe:

DLLHOST.EXE
Default location: %LOCAL APPDATA%\MICROSOFT\DLLHOST.EXE

Dropper information:
MD5: 1b14070dc6b639c41814162b0a2322e8
File size: 471552 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images