I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.
SVCHOST.EXE – Trojan Delf removal
| File | MD5 | Virus Alias |
|---|---|---|
| SVCHOST.EXE | 5269f002109b2b0641f0d0e30bdc438e | Trojan Delf |
| SVCHOST.EXE | 5269f002109b2b0641f0d0e30bdc438e | Trojan Generic |
| SVCHOST.EXE | 5269f002109b2b0641f0d0e30bdc438e | Trojan Eldorado |
| SVCHOST.EXE | 5269f002109b2b0641f0d0e30bdc438e | Trojan Downloader |
| SVCHOST.EXE | 5269f002109b2b0641f0d0e30bdc438e | Trojan Agent |
| SVCHOST.EXE | 5269f002109b2b0641f0d0e30bdc438e | Trojan Scar |
SVCHOST.EXE size: 194560 bytes
SVCHOST.EXE hash: 5269F002109B2B0641F0D0E30BDC438E
Created files:
C:\Documents and Settings\LocalService\Local Settings\Application Data\sLT.exf
%SysDir%\drivers\svchost.exe
Autostart registry keys:
HKLM\System\CurrentControlSet\Services\Host Generic Process\Type: 10010000
HKLM\System\CurrentControlSet\Services\Host Generic Process\Start: 02000000
HKLM\System\CurrentControlSet\Services\Host Generic Process\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\Host Generic Process\DisplayName: Host Generic Process for Win32 Services
HKLM\System\CurrentControlSet\Services\Host Generic Process\ImagePath: %WinDir%\System32\drivers\svchost.exe
Detected by UnHackMe:
SVCHOST.EXE
Default location: %SYSDIR%\DRIVERS\SVCHOST.EXE
Dropper information:
MD5: 5269f002109b2b0641f0d0e30bdc438e
File size: 194560 bytes