SPOOLSV.EXE – Trojan Small

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

SPOOLSV.EXE – Trojan Small removal

FileMD5Virus Alias
SPOOLSV.EXE 00e4cefb58c0c21328c91ad76027933e Trojan Small
SPOOLSV.EXE 00e4cefb58c0c21328c91ad76027933e Trojan Artemis
SPOOLSV.EXE 00e4cefb58c0c21328c91ad76027933e Trojan Generic
SPOOLSV.EXE 00e4cefb58c0c21328c91ad76027933e Trojan Eldorado
SPOOLSV.EXE 00e4cefb58c0c21328c91ad76027933e Trojan Downloader
SPOOLSV.EXE 00e4cefb58c0c21328c91ad76027933e Trojan Agent

SPOOLSV.EXE size: 472064 bytes
SPOOLSV.EXE hash: 00E4CEFB58C0C21328C91AD76027933E

Created files:

%WinDir%\mqtgsvc.exe
%WinDir%\System\mstsc.exe
%WinDir%\System\spoolsv.exe
%UserProfile%\Local Settings\Application Data\ieudinit.exe
%TEMP%\Twain002.Mtx

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\IEudInit: %WinDir%\System32\config\SYSTEM~1\LOCALS~1\APPLIC~1\ieudinit.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\MessageService: %WinDir%\mqtgsvc.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\Mstsc: %WinDir%\System\mstsc.exe

Detected by UnHackMe:

SPOOLSV.EXE
Default location: %WinDir%\SYSTEM\SPOOLSV.EXE

Dropper information:
MD5: 00e4cefb58c0c21328c91ad76027933e
File size: 472064 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images