Trojan AVKill – EasySide.dll – 4f5c442b5ec25f76670b2e6a7dcb5be3

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

Trojan AVKill
Also known as: Trojan Agent
SHA256: ca24298fed8dab5086a56a4deff27f5a89410e6b14bcf35eccefdff615667006
SHA1: e1444a8cd26b7bfa7287d641a4be8f646844f927
MD5: 4f5c442b5ec25f76670b2e6a7dcb5be3
File size: 88280 bytes

Created files:

%Program Files%\EasySide\EasySide.dll – Trojan AVKill
%Program Files%\EasySide\EasySide.exe – Trojan AVKill
%Program Files%\EasySide\ESHelper.dll – Trojan AVKill
%Program Files%\EasySide\Uninstall.exe – Trojan AVKill

Trojan AVKill created autostart registry keys:

HKLM\Software\Classes\CLSID\{B1242067-7C2E-4768-8135-5B834BA117CD}\InprocServer32 : %Program Files%\EasySide\ESHelper.dll
HKLM\Software\Classes\CLSID\{B1242067-7C2E-4768-8135-5B834BA117CD}\InprocServer32\ThreadingModel: Apartment
HKLM\Software\Classes\CLSID\{B8D8BF26-0150-4730-95C0-DE47FD117399}\InprocServer32 : %Program Files%\EasySide\EasySide.dll
HKLM\Software\Classes\CLSID\{B8D8BF26-0150-4730-95C0-DE47FD117399}\InprocServer32\ThreadingModel: Apartment
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\EasySide: %Program Files%\EasySide\EasySide.exe

Leave a Reply