SPOOLSV.EXE – Worm Vobfus

Worm No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

SPOOLSV.EXE – Worm Vobfus removal

File MD5 Virus Alias
SPOOLSV.EXE f8b0c877c4dcbce5aaa9c4a3107795f2 Worm Vobfus
SPOOLSV.EXE f8b0c877c4dcbce5aaa9c4a3107795f2 Trojan SuspiciousFile
SPOOLSV.EXE f8b0c877c4dcbce5aaa9c4a3107795f2 Trojan Artemis
SPOOLSV.EXE f8b0c877c4dcbce5aaa9c4a3107795f2 Trojan Hllw
SPOOLSV.EXE f8b0c877c4dcbce5aaa9c4a3107795f2 Trojan Krap
SPOOLSV.EXE f8b0c877c4dcbce5aaa9c4a3107795f2 Trojan Agent

SPOOLSV.EXE size: 46592 bytes
SPOOLSV.EXE hash: F8B0C877C4DCBCE5AAA9C4A3107795F2

Created files:

C:\Recycled\CTFMON.EXE
C:\Recycled\SMSS.EXE
C:\Recycled\SPOOLSV.EXE
C:\Recycled\SVCHOST.EXE

Autostart registry keys:

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit: C:\recycled\SVCHOST.exe,
HKCU\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell: Explorer.exe “C:\recycled\SVCHOST.exe”

Detected by UnHackMe:

SPOOLSV.EXE
Default location: C:\RECYCLED\SPOOLSV.EXE

Dropper information:
MD5: 0c3bae80b41f8a3445a54106629db999
File size: 46592 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images