SERVER.EXE – Trojan Agent

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

SERVER.EXE – Trojan Agent removal

FileMD5Virus Alias
SERVER.EXE 76b51e560f570320fa9a1b7635cf877c Trojan Agent
SERVER.EXE 76b51e560f570320fa9a1b7635cf877c Suspicious File
SERVER.EXE 76b51e560f570320fa9a1b7635cf877c Trojan Eldorado
SERVER.EXE 76b51e560f570320fa9a1b7635cf877c Backdoor Pigeon
SERVER.EXE 76b51e560f570320fa9a1b7635cf877c Trojan Downloader
SERVER.EXE 76b51e560f570320fa9a1b7635cf877c Trojan OnLineGames

SERVER.EXE size: 23552 bytes
SERVER.EXE hash: 76B51E560F570320FA9A1B7635CF877C

Created files:

C:\program files\common files\microsoft shared\msinfo\123.exe
C:\program files\common files\microsoft shared\msinfo\CrossFire_OBV187_Full_XFDL_signed.exe
C:\program files\common files\microsoft shared\msinfo\lsass.exe
C:\program files\common files\microsoft shared\msinfo\Server.exe
%TEMP%\1107000
%TEMP%\1107000.exe
%WinDir%\XXXXXX8F70D37A\svchsot.exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\XXXXXX8F70D37A: %WinDir%\XXXXXX8F70D37A\svchsot.exe

Detected by UnHackMe:

SERVER.EXE
Default location: %PROGRAM FILES COMMON%\MICROSOFT SHARED\MSINFO\SERVER.EXE

Dropper information:
MD5: b0667f460e8c096fdae7ad9063143180
File size: 794624 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images