I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free Download Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
SESSMGR.EXE – Trojan Small removal
| File | MD5 | Virus Alias |
|---|---|---|
| SESSMGR.EXE | 00e8328d1008b32d9a21f3801359f1e1 | Trojan Small |
| SESSMGR.EXE | 00e8328d1008b32d9a21f3801359f1e1 | Suspicious File |
| SESSMGR.EXE | 00e8328d1008b32d9a21f3801359f1e1 | Trojan Artemis |
| SESSMGR.EXE | 00e8328d1008b32d9a21f3801359f1e1 | Trojan Generic |
| SESSMGR.EXE | 00e8328d1008b32d9a21f3801359f1e1 | Trojan Eldorado |
| SESSMGR.EXE | 00e8328d1008b32d9a21f3801359f1e1 | Trojan Agent |
SESSMGR.EXE size: 465408 bytes
SESSMGR.EXE hash: 00E8328D1008B32D9A21F3801359F1E1
Created files:
%UserProfile%\Local Settings\Application Data\Microsoft\cisvc.exe
%UserProfile%\Local Settings\Application Data\Microsoft\mqtgsvc.exe
%UserProfile%\Local Settings\Application Data\Microsoft\winlogon.exe
%SysDir%\drivers\sessmgr.exe
%TEMP%\Twain002.Mtx
%AllUsersProfile%\esentutl.exe
Autostart registry keys:
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\cisvc: %WinDir%\System32\config\SYSTEM~1\LOCALS~1\APPLIC~1\MICROS~1\cisvc.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\MessageService: %WinDir%\System32\config\SYSTEM~1\LOCALS~1\APPLIC~1\MICROS~1\mqtgsvc.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\Sessmgr: %WinDir%\System32\drivers\sessmgr.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\EseNtUtl: C:\DOCUME~1\ALLUSE~1\esentutl.exe
Detected by UnHackMe:
SESSMGR.EXE
Default location: %SYSDIR%\DRIVERS\SESSMGR.EXE
Dropper information:
MD5: 00e8328d1008b32d9a21f3801359f1e1
File size: 465408 bytes