SECURX86.EXE – Trojan Artemis

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

SECURX86.EXE – Trojan Artemis removal

FileMD5Virus Alias
SECURX86.EXE 653ffc574a13c4bc8337c688124fd0bf Trojan Artemis
SECURX86.EXE 653ffc574a13c4bc8337c688124fd0bf Trojan SuspiciousFile
SECURX86.EXE 653ffc574a13c4bc8337c688124fd0bf Trojan Malware.Obscu
SECURX86.EXE 653ffc574a13c4bc8337c688124fd0bf Trojan Generic
SECURX86.EXE 653ffc574a13c4bc8337c688124fd0bf Trojan Generic.KD
SECURX86.EXE 653ffc574a13c4bc8337c688124fd0bf Trojan Siggen

SECURX86.EXE size: 113432 bytes
SECURX86.EXE hash: 653FFC574A13C4BC8337C688124FD0BF

Created files:

%SysDir%\agil.jkd
%SysDir%\paport.dll
%SysDir%\securx86.bin
%SysDir%\securx86.exe
%SysDir%\securx86.sys

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\securx86: %WinDir%\System32\securx86.exe
HKLM\System\CurrentControlSet\Services\EpsonK200\Type: 01000000
HKLM\System\CurrentControlSet\Services\EpsonK200\Start: 03000000
HKLM\System\CurrentControlSet\Services\EpsonK200\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\EpsonK200\DisplayName: EpsonK200
HKLM\System\CurrentControlSet\Services\EpsonK200\ImagePath: %WinDir%\System32\securx86.sys

Detected by UnHackMe:

SECURX86.EXE
Default location: %SYSDIR%\SECURX86.EXE

Dropper information:
MD5: 60af79fb0bd2c9f33375035609c931cb
File size: 370872 bytes

Leave a Reply