PLUGUIN.EXE – Worm Autoit

Worm No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

PLUGUIN.EXE – Worm Autoit removal

FileMD5Virus Alias
PLUGUIN.EXE 00631012c5dcc0e4c9c8f4a6809f48d3 Worm Autoit
PLUGUIN.EXE 00631012c5dcc0e4c9c8f4a6809f48d3 Trojan Generic
PLUGUIN.EXE 00631012c5dcc0e4c9c8f4a6809f48d3 Trojan Chifrax
PLUGUIN.EXE 00631012c5dcc0e4c9c8f4a6809f48d3 Trojan CI

PLUGUIN.EXE size: 1949044 bytes
PLUGUIN.EXE hash: 00631012C5DCC0E4C9C8F4A6809F48D3

Created files:

C:\dir\install\Microsoft\Pluguin.exe

Autostart registry keys:

HKLM\Software\Microsoft\Active Setup\Installed Components\{KMP628NQ-3X4V-JDT5-16L7-70616J431L84}\StubPath: c:\dir\install\Microsoft\Pluguin.exe Restart
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\cftmon: 63003A005C006400690072005C0069006E007300740061006C006C005C004D006900630072006F0073006F00660074005C0050006C0075006700750069006E002E006500780065000000
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\Adobe Reader: 63003A005C006400690072005C0069006E007300740061006C006C005C004D006900630072006F0073006F00660074005C0050006C0075006700750069006E002E006500780065000000
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\cftmon: 63003A005C006400690072005C0069006E007300740061006C006C005C004D006900630072006F0073006F00660074005C0050006C0075006700750069006E002E006500780065000000
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\Svchost: 63003A005C006400690072005C0069006E007300740061006C006C005C004D006900630072006F0073006F00660074005C0050006C0075006700750069006E002E006500780065000000

Detected by UnHackMe:

PLUGUIN.EXE
Default location: C:\DIR\INSTALL\MICROSOFT\PLUGUIN.EXE

Dropper information:
MD5: 00631012c5dcc0e4c9c8f4a6809f48d3
File size: 1949044 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images