mcshield.exe – Trojan Generic

November 10, 2012

Alex NightWatcher

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

mcshield.exe – Trojan Generic removal

File	Virus Alias
mcshield.exe	Trojan Generic
mcshield.exe	Trojan Generic.KD
mcshield.exe	Trojan Kazy
mcshield.exe	Trojan DNAScan
mcshield.exe	Trojan CI
mcshield.exe	Trojan FakeAV

Created files:

%Program Files%\Internet Explorer\Connection Wizard\mcshield.exe – Trojan Generic
%WinDir%\ieuser.exe – Trojan Generic

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\SonyAgent: %Program Files%\Internet Explorer\Connection Wizard\mcshield.exe

Detected by UnHackMe:

mcshield.exe
Default location: %Program Files%\Internet Explorer\Connection Wizard\mcshield.exe

Dropper information:
SHA256: b71d50dffdc6c55e9042def5ccad78795dbd5dd98f06155c8868b1f3d88635aa
SHA1: c806fbb11fae2766923b8880044b41b3c22807d9
MD5: 288c0749d858375e65ede86c90488889
File size: 788992 bytes

Leave a Reply Cancel reply

You must be logged in to post a comment.