Trojan Agent – services.exe – 3307eedcd3e75637ab7262e698c30bde

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Trojan Agent
Also known as: Trojan LdPinch
SHA256: fb7f9cec28b1d283c9d497a1e74f849bd87b980122d8240ad056df0636f28772
SHA1: d8e7cca37b7b7e187c7656e1c95995962bd7851b
MD5: 3307eedcd3e75637ab7262e698c30bde
File size: 2014764 bytes

Created files:

%WinDir%\services.exe – Trojan Agent
%WinDir%\system\sservice.exe – Trojan Agent
%SysDir%\fservice.exe – Trojan Agent
%SysDir%\reginv.dll – Trojan Agent
%SysDir%\winkey.dll – Trojan Agent

Trojan Agent created autostart registry keys:

HKLM\Software\Microsoft\Active Setup\Installed Components\{5Y99AE78-58TT-11dW-BE53-Y67078979Y}\StubPath: %WinDir%\System\sservice.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\DirectX For Microsoft? Windows: %WinDir%\System32\fservice.exe
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell: Explorer.exe %WinDir%\System32\fservice.exe
HKLM\System\CurrentControlSet\Services\SharedAccess\Start: 04000000
HKLM\System\CurrentControlSet\Services\srservice\Start: 04000000

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images