DCM.EXE is Trojan Jorik

June 20, 2012 by NightWatcher
Filed under: Malware 
: Solved!

Fix it immediately:

The file DCM.EXE is malware related.
You must delete the file DCM.EXE immediately!
Delete the file DCM.EXE without delay!
Kill the process DCM.EXE and remove DCM.EXE from the Windows startup.

Malware Analysis of DCM.EXE
Full path on a computer: C:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\DCM.exe

Detected by UnHackMe:

DCM.EXE
Default location: C:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\DCM.exe

Removal Results: Success
Number of reboot: 1

DCM.EXE is known as:

Trojan.Jorik

DCM.EXE hash:

  • MD5: 0b9e2d5cee36774de40376a68b202f2d
How to quickly detect DCM.EXE presence?

Registry:
  • HKLM\Software\Microsoft\Active Setup\Installed Components\{51H3Y8I7-1GRQ-45DK-OOL9-09001D765456}\StubPath: “C:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\DCM.exe”
Folders:
  • C:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013
Files:
  • C:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\DCM.exe
  • C:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\Desktop.ini


  • Recommended: UnHackMe anti-rootkit and anti-malware

    Premium software: RegRun Security Suite (Good choice for removal and protection)

    Written by

    Malware Hunter.

    Tags: DCM.exe, Jorik, Trojan

    Comments

    Tell me what you're thinking...
    and oh, if you want a pic to show with your comment, go get a gravatar!

    You must be logged in to post a comment.