HLUPDATE.EXE – Trojan SuspiciousFile

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

HLUPDATE.EXE – Trojan SuspiciousFile removal

FileMD5Virus Alias
HLUPDATE.EXE ccf2e19fda6834a6c3e788005d4fd4e5 Trojan SuspiciousFile

HLUPDATE.EXE size: 103424 bytes
HLUPDATE.EXE hash: CCF2E19FDA6834A6C3E788005D4FD4E5

Created files:

%Program Files Common%\Services\1016\hlupdate.exe
%Program Files Common%\System\1016\hlapp.dll
%Program Files%\HighliteApp\1016\uninst.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\HighliteApp_1016\Type: 10010000
HKLM\System\CurrentControlSet\Services\HighliteApp_1016\Start: 02000000
HKLM\System\CurrentControlSet\Services\HighliteApp_1016\DisplayName: HighliteApp Update
HKLM\System\CurrentControlSet\Services\HighliteApp_1016\ImagePath: “%Program Files Common%\Services\1016\hlupdate.exe”
HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Num_Catalog_Entries: 0F000000
HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Next_Catalog_Entry_ID: F8030000
HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Serial_Access_Num: 09000000
HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000001\PackedCatalogItem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
HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000002\PackedCatalogItem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
HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000003\PackedCatalogItem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
HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000004\PackedCatalogItem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
HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000005\PackedCatalogItem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
HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000006\PackedCatalogItem: 2553797374656D526F6F74255C73797374656D33325C6D7377736F636B2E646C6C00656D5C313031365C686C6170702E646C6C00FFFFFFFF88860A0300000000CC1600008006000080060000000000009600090020000C02D0F7210378011C0004B1EFCD0000000054010000000000000400000074C7A8773011D801FFFFFFFF88860A0300000000CD1600008006000080060000000000008D0009002F000802D0F7210378011C000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000180000000000000000000000090602000000000000000000000000000C000000A01A0FE78BABCF118CA300805F48A192EB0300000100000000000000000000000000000000000000000000000000000000000000020000000200000010000000100000000300000000000000FF0000000000000000000000BBFF0000000000004D00530041004600440020005400630070006900700020005B005200410057002F00490050005D0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000
HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000007\PackedCatalogItem: 2553797374656D526F6F74255C73797374656D33325C7273767073702E646C6C0000656D5C313031365C686C6170702E646C6C00FFFFFFFF88860A0300000000CC1600008006000080060000000000009600090020000C02D0F7210378011C0004B1EFCD0000000054010000000000000400000074C7A8773011D801FFFFFFFF88860A0300000000CD1600008006000080060000000000008D0009002F000802D0F7210378011C0000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001800000000000000000000000926020000000000000000000000000008000000E0A9609D7A33D011BD880000C082E69AEC0300000100000084F8A7067CF8A70688F9A706DAA460751C090000683C5F75B0F9A706060000000200000010000000100000000200000011000000000000000000000000000000BBFF00000000000052005300560050002000550044005000200053006500720076006900630065002000500072006F0076006900640065007200000001000000E4FBA7060100000038DA1F03000000000DF6907C80F9A7060000000000F9A7063CF6907C41F6907C0000000080F9A7060DF6907CDCF8A7062CF9A70648F9A70600E9907C48F6907CFFFFFFFF41F6907C3E6ADD77776ADD77803C5F75B0090000B009000088011C00B009000080F9A70640000000000000000000000008000800803C5F755C004400650076006900630065005C007B00350043004100460037003900460033002D0037004200330039002D0034003600350033002D0039004400440042002D003400380033003400310039004400320033004300310032007D00000033003400310039004400320033004300310032007D000000A7069B6CDD77C0F9A7066610917CBB01917C58FDA70618700902100000007A8B6175856BDD77B0040000F4F9A7066610917CBB01917C0100000058FDA70604000000000000000000B5004CFAA7066610917CBB01917C0100000058FDA7066610917CBB01917C000000000000000058000000BB01917C0100000058FDA70601000000000000002800000040380702D4F1A7060000000090470702E8B9190390011C000000000045004D005C00430075007200720065000C0000001C00000088011C000000B5006610917C6610917C
HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000008\PackedCatalogItem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
HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000009\PackedCatalogItem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
HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000010\PackedCatalogItem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
HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000011\PackedCatalogItem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
HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000012\PackedCatalogItem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
HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000013\PackedCatalogItem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
HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000014\PackedCatalogItem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
HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000015\PackedCatalogItem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

Detected by UnHackMe:

HLUPDATE.EXE
Default location: %PROGRAM FILES COMMON%\SERVICES\1016\HLUPDATE.EXE

Dropper information:
MD5: 184a87b1c430092f7534ba627b904918
File size: 332288 bytes

Leave a Reply