SRG.DLL – Trojan PAK_Generic

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

SRG.DLL – Trojan PAK_Generic removal

FileMD5Virus Alias
SRG.DLL 7ab9df4ba66f949710c00eea7b757210 Trojan PAK_Generic

SRG.DLL size: 18944 bytes
SRG.DLL hash: 7AB9DF4BA66F949710C00EEA7B757210

Created files:

%Program Files%\%Program Files%\laass.exe
%AppData%\qmacro\qdisp.dll
%TEMP%\cfgdll.dll
%TEMP%\plugin\BKGND.DLL
%TEMP%\plugin\COLOR.DLL
%TEMP%\plugin\FILE.DLL
%TEMP%\plugin\FINDPICTURE5_03.DLL
%TEMP%\plugin\MEDIA.DLL
%TEMP%\plugin\MEMORY.DLL
%TEMP%\plugin\PIC.DLL
%TEMP%\plugin\REGDLL.DLL
%TEMP%\plugin\SR.DLL
%TEMP%\plugin\SRG.DLL
%TEMP%\plugin\SYS.DLL
%TEMP%\plugin\WINDOW.DLL
%TEMP%\plugin\WINDOWEX5_01.DLL
%TEMP%\???????(??).exe

Autostart registry keys:

HKLM\Software\Microsoft\Active Setup\Installed Components\{4f645220-306d-11d2-995d-00c04f98bbc9} : Microsoft Windows Script 5.8
HKLM\Software\Microsoft\Active Setup\Installed Components\{4f645220-306d-11d2-995d-00c04f98bbc9}\IsInstalled: 01000000
HKLM\Software\Microsoft\Active Setup\Installed Components\{4f645220-306d-11d2-995d-00c04f98bbc9}\Version: 5,8,6001,18702
HKLM\Software\Microsoft\Active Setup\Installed Components\{4f645220-306d-11d2-995d-00c04f98bbc9}\Locale: EN
HKLM\Software\Microsoft\Active Setup\Installed Components\{4f645220-306d-11d2-995d-00c04f98bbc9}\ComponentID: MSVBScript
HKLM\System\CurrentControlSet\Services\Winsock\ConnectGroup: 1??17
HKLM\System\CurrentControlSet\Services\Winsock\MyVerSion: 2011

Detected by UnHackMe:

SRG.DLL
Default location: %TEMP%\PLUGIN\SRG.DLL

Dropper information:
MD5: 38bcbc0c4fd8ed816a91589861824cd8
File size: 2158074 bytes

Leave a Reply