AMIGOS.EXE is Trojan Downloader

March 5, 2013 by NightWatcher
Filed under: Malware 
: Solved!

You should Download Removal Tool here...

The file AMIGOS.EXE is identified as a virus dropper.
The dropper AMIGOS.EXE is used for downloading and installing other malware, Trojans, viruses by the commands received from the Command Center.
The file AMIGOS.EXE loads into the computer memory and tries to connect to the dangerous web site.
Usually the AMIGOS.EXE dropper does not infect the files on the computer and does not replicate itself on other computers.
Kill the AMIGOS.EXE process and delete the file AMIGOS.EXE.

Malware Analysis of AMIGOS.EXE
Full path on a computer: %WINDIR%\AMIGOS.EXE

Detected by UnHackMe:

AMIGOS.EXE
Default location: %WINDIR%\AMIGOS.EXE

Removal Results: Success
Number of reboot: 1

AMIGOS.EXE is known as:

Trojan Downloader

How to quickly detect AMIGOS.EXE presence?

Files:
  • %WINDIR%\PLUG.BAT
  • %PROFILE%\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\2VAZY7AN\PLUG[1].BAT
  • %WINDIR%\PLUGIN.BAT
  • %PROFILE%\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\YPORKZYZ\PLUGIN[1].BAT
  • %WINDIR%\AMIGOS.EXE


Recommended: UnHackMe anti-rootkit and anti-malware

Premium software: RegRun Security Suite (Good choice for removal and protection)

Written by

Malware Hunter.

Comments

Tell me what you're thinking...
and oh, if you want a pic to show with your comment, go get a gravatar!

You must be logged in to post a comment.