YHGITC.DLL – Trojan Crypt

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

YHGITC.DLL – Trojan Crypt removal

FileMD5Virus Alias
YHGITC.DLL 469bf3a0e1eb21baeb3272b8bfd53ce8 Trojan Crypt
YHGITC.DLL 469bf3a0e1eb21baeb3272b8bfd53ce8 Trojan SuspiciousFile
YHGITC.DLL 469bf3a0e1eb21baeb3272b8bfd53ce8 Trojan MLW
YHGITC.DLL 469bf3a0e1eb21baeb3272b8bfd53ce8 Backdoor PcClien
YHGITC.DLL 469bf3a0e1eb21baeb3272b8bfd53ce8 Trojan OnLineGames

YHGITC.DLL size: 35984 bytes
YHGITC.DLL hash: 469BF3A0E1EB21BAEB3272B8BFD53CE8

Created files:

%SysDir%\ 4e875.001
%SysDir%\yhgitc.dll

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\mdkiiu\Type: 10010000
HKLM\System\CurrentControlSet\Services\mdkiiu\Start: 02000000
HKLM\System\CurrentControlSet\Services\mdkiiu\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\mdkiiu\DisplayName: mdkiiu
HKLM\System\CurrentControlSet\Services\mdkiiu\ImagePath: %WinDir%\System32\svchost.exe -k mdkiiu
HKLM\System\CurrentControlSet\Services\mdkiiu\Description: Microsoft .NET Framework TPM
HKLM\System\CurrentControlSet\Services\mdkiiu\Parameters\ServiceDll: 2500530079007300740065006D0052006F006F00740025005C00530079007300740065006D00330032005C007900680067006900740063002E0064006C006C000000

Detected by UnHackMe:

YHGITC.DLL
Default location: %SYSDIR%\YHGITC.DLL

Dropper information:
MD5: 04138aa4f54e3011f8e825c8308560c4
File size: 85727 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images