Solved! Use ROULETTE_MONITYPEMP.EXE (Trojan SuspiciousFile) Removal Guide

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

ROULETTE_MONITYPEMP.EXE – Trojan SuspiciousFile removal

File MD5 Virus Alias
ROULETTE_MONITYPEMP.EXE f4d2f9476c721454fbe7ea0230136e3a Trojan SuspiciousFile

ROULETTE_MONITYPEMP.EXE size: 890880 bytes
ROULETTE_MONITYPEMP.EXE hash: F4D2F9476C721454FBE7EA0230136E3A

Created files:

%Program Files Common%\Microsoft Shared\MSINFO\scvhosts
%Program Files%\Fixed_Directory_Name\roulette_monitypeMp.exe
%Desktop%\UnicodeFile.bin
%Temp%\scvhosts.exe
%Temp%\?????.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\scvhostp\Type: 10010000
HKLM\System\CurrentControlSet\Services\scvhostp\Start: 02000000
HKLM\System\CurrentControlSet\Services\scvhostp\DisplayName: scvhostp
HKLM\System\CurrentControlSet\Services\scvhostp\ImagePath: %Program Files Common%\Microsoft Shared\MSINFO\scvhosts -k

Detected by UnHackMe:

ROULETTE_MONITYPEMP.EXE
Default location: %PROGRAM FILES%\FIXED_DIRECTORY_NAME\ROULETTE_MONITYPEMP.EXE

Dropper information:
MD5: 1ef9a49f03d5653663a5379f5fbb7a32
File size: 1269760 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images