Threat Database Trojans Trojan.Egguard

Trojan.Egguard

By CagedTech in Trojans

Threat Scorecard

Ranking: 10,870
Threat Level: 80 % (High)
Infected Computers: 111,111
First Seen: April 23, 2016
Last Seen: October 3, 2024
OS(es) Affected: Windows

SpyHunter Detects & Remove Trojan.Egguard

File System Details

Trojan.Egguard may create the following file(s):
# File Name MD5 Detections
1. work0.exe.bak ed27f55b0b3fb1445d4c17ab515a0590 8,239
2. work0.exe 78b8591eab38939e030d10716f3242b5 1,110
3. work0.exe 591b28799acdd2ed71aa3da89310f139 1,041
4. sysnetwk.exe 326a730a7db6929630eed5467426bc83 644
5. Mswapi32.dll b2f207a0dcf7701937136902f18faacf 594
6. sysnetwk.exe a4dc6d8192b6b44086b77809f1badc08 325
7. winsecurity.exe 4404d5b7a40830680971e73a18a287cc 273
8. sysnetwk.exe 1fbdffd63985ff606bfff13b11dad8e7 257
9. syshostctl.exe faed18897a2803598507657c5099acda 128
10. syshostctl.exe 4908fe1f95c17d5079effd90bbb735f7 116
11. 007020.EXE ceb07dd7e9804292df90a0ccc582b53c 84
12. syshostctl.exe 35db0e95abc4ef3d01a0d6cb01f83cdd 76
13. winsecurity.exe cbb4571a44bf2466ef338cef163d6279 70
14. sysnetwk.exe f92878f8abd7696d9f10372dd998abb6 65
15. sysnetwk.exe eff45a928e09eac7028fad4c5f161982 55
16. syshostctl.exe c17841f762d87bc77f8450ab92d1221a 43
17. sysnetwk.exe 4ce3bef738df75ccde67903dd26c277d 36
18. syshostctl.exe ea904d334fb4c9e2bb60cd8af4b568b7 28
19. sysnetwk.exe dcb6b84a4f60eb7bf8c9a1fb9588857d 27
20. sysnetwk.exe 9f4fbd60ad35fa573ec1cab41ef1bf15 25
21. syshostctl.exe cd0ab3116709e5d447ee0c592d184646 19
22. syshostctl.exe 02285274fa6f8567e8e497d1883bbc8f 18
23. syshostctl.exe 511cfcb02e1869a26ab0aad932481201 12
24. syshostctl.exe d1d6f17e02f75a0ea1073badb2379401 11
25. syshostctl.exe 68bfdca89f59cf34bd6c1b895492a4bb 11
26. Mswapi32.dll e59b2533e14dd60a58c185992bd184ee 6
More files

Registry Details

Trojan.Egguard may create the following registry entry or registry entries:
Regexp file mask
%ALLUSERSPROFILE%\Microsoft\Network\Dsq\browser\syshostctl.exe
%ALLUSERSPROFILE%\Microsoft\Network\Dsq\network\sysnetwk.exe
%ALLUSERSPROFILE%\microsoft\windows\eventsvc\eventsvc.exe
%ALLUSERSPROFILE%\Microsoft\Windows\EventSvc\work0.exe
%ALLUSERSPROFILE%\Microsoft\Windows\GPR\browser\svchostctl.exe
%ALLUSERSPROFILE%\Windows Security\winsecurity.exe
%WINDIR%\EUtil_amd64.sys
%WINDIR%\EUtil_x86.sys

Directories

Trojan.Egguard may create the following directory or directories:

%ALLUSERSPROFILE%\Application Data\Microsoft\Network\Dsq
%ALLUSERSPROFILE%\EventSvc
%ALLUSERSPROFILE%\Microsoft\Network\Dsq
%PROGRAMFILES%\SkypeUpdateEx
%PROGRAMFILES(x86)%\SkypeUpdateEx

Related Posts

Trending

Most Viewed

Loading...