I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.
SVCHOST.EXE – Trojan Delf removal
| File | MD5 | Virus Alias |
|---|---|---|
| SVCHOST.EXE | 8b475ecbece7a631860a135057609359 | Trojan Delf |
| SVCHOST.EXE | 8b475ecbece7a631860a135057609359 | Trojan Eldorado |
| SVCHOST.EXE | 8b475ecbece7a631860a135057609359 | Trojan Downloader |
| SVCHOST.EXE | 8b475ecbece7a631860a135057609359 | Trojan Agent |
| SVCHOST.EXE | 8b475ecbece7a631860a135057609359 | Trojan Scar |
SVCHOST.EXE size: 194560 bytes
SVCHOST.EXE hash: 8B475ECBECE7A631860A135057609359
Created files:
C:\Documents and Settings\LocalService\Local Settings\Application Data\sLT.exf
%SysDir%\drivers\svchost.exe
Autostart registry keys:
HKLM\System\CurrentControlSet\Services\Host Generic Process\Type: 10010000
HKLM\System\CurrentControlSet\Services\Host Generic Process\Start: 02000000
HKLM\System\CurrentControlSet\Services\Host Generic Process\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\Host Generic Process\DisplayName: Host Generic Process for Win32 Services
HKLM\System\CurrentControlSet\Services\Host Generic Process\ImagePath: %WinDir%\System32\drivers\svchost.exe
Detected by UnHackMe:
SVCHOST.EXE
Default location: %SYSDIR%\DRIVERS\SVCHOST.EXE
Dropper information:
MD5: 8b475ecbece7a631860a135057609359
File size: 194560 bytes