929SCAMLLX.EXE is Trojan Wigon

June 5, 2012 by NightWatcher
Filed under: Malware 
: Solved!

Fix it immediately:

We checked up the file 929SCAMLLX.EXE and found it hazardous.
The file 929SCAMLLX.EXE must be deleted from the system immediately.
Kill the process 929SCAMLLX.EXE and remove 929SCAMLLX.EXE from the Windows startup.

Malware Analysis of 929SCAMLLX.EXE
Full path on a computer: %UserProfile%\929scamllx.exe

Detected by UnHackMe:

929SCAMLLX.EXE
Default location: %UserProfile%\929scamllx.exe

Removal Results: Success
Number of reboot: 1

929SCAMLLX.EXE is known as:

Trojan.Wigon, Trojan.Jorik.Totem, Backdoor.Bulknet., Trojan.Cutwail

929SCAMLLX.EXE hash:

  • MD5: 209f614a3d05f8314fc8a278434be597
How to quickly detect 929SCAMLLX.EXE presence?

Registry:
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Run\929scamllx: “%UserProfile%\929scamllx.exe”
Files:
  • %UserProfile%\929scamllx.exe


Recommended: UnHackMe anti-rootkit and anti-malware

Premium software: RegRun Security Suite (Good choice for removal and protection)

Written by

Malware Hunter.

Tags: 929SCAMLLX.EXE, Trojan, Wigon

Comments

Tell me what you're thinking...
and oh, if you want a pic to show with your comment, go get a gravatar!

You must be logged in to post a comment.