Trojan.Dropper Removal Guide
Trojan.Dropper is a generic detection for a Trojan that is able to compromise your system’s security by secretly entering your computer. The problem is that at first it might not seem to be offensive at all. That is because quite frequently Trojans enter your computer along with some shareware programs that the users download online without even considering them to be dangerous. However, even though the program that you download MIGHT be useful in some way, Trojan.Dropper will soon rear its nasty head, revealing its true nature.
Before you know it, you might be exposed to further malware infection and even lose your personal data. Even though Trojan.Dropper is more known for its backdoor qualities and the ability to download other malware onto the affected computer, it can also capture and record your personal data by screenlogging and keylogging. It should be noticed that Trojan.Dropper cannot spread on its own accord. It needs to be downloaded by the user itself. However, internet is not the only medium of distribution for this Trojan. It might as well be lurking in infected CDs and USB drives, so you have to be careful when you plug an unfamiliar device into your computer, because that might as well be a start of the Trojan.Dropper’s infection.
When Trojan.Dropper is installed, it creates a big security loophole in your computer and as a result other types of viruses and rogue antispyware can easily be downloaded onto your system. That poses a great threat not only to your operating system, but also to your financial security, because there is a big number of rogues aiming for your money. Therefore, since Trojan.Dropper can lead to system crash and ultimate theft, you have to delete it from your system as soon as possible.
It might be hard to determine whether you are infected or not, but if your computer is slower than usual, if you cannot load certain programs and you are being redirected to suspicious websites, you most probably are infected with Trojan.Dropper. In such case, get yourself a reliable computer security tool and remove Trojan.Dropper at once, along with all the additional malware it might’ve downloaded.
Trojan.Dropper technical info for manual removal:
Files Modified/Created on the system:
| # | File Name | File Size (Bytes) | File Hash |
|---|---|---|---|
| 1 | drm.exe | 692736 bytes | MD5: ccd63de22be14961e4357cca58eb8c5c |
| 2 | init.exe | 35840 bytes | MD5: fe9b99190fbbfcb4de1dbe77539a69c6 |
| 3 | tmp_1.exe | 56596 bytes | MD5: 0f4864d5eb0be53ace178de2ebdec174 |
| 4 | scvhost.exe | 147968 bytes | MD5: b751e973a0fa7cffcf60a548552ce45e |
| 5 | Mendoza.exe | ||
| 6 | Isass.exe | 390191 bytes | MD5: 093582649a602b85db4d8c684179858c |
| 7 | numbsoftnew.exe | 111104 bytes | MD5: 74a49dd826375f764ded7bc01aabbd46 |
| 8 | wgatray.exe | 75264 bytes | MD5: 8b49bc39a62ad6d6874e22173028f79d |
| 9 | visfx500new.exe | 467968 bytes | MD5: 53d109380b6756cde27b1635c36afa94 |
| 10 | sysrtmvs.exe | ||
| 11 | win32.exe | 120320 bytes | MD5: bc588ff0a21c11d80af7d62584d4ab15 |
| 12 | system.exe | 16469 bytes | MD5: 62076ebac75f9531c202a19e199a16bf |
| 13 | Mendoza1.exe | 418445 bytes | MD5: 99e09c670116e655ac8fc4060de79f32 |
| 14 | explorers.exe | 498765 bytes | MD5: 8135ad5d2966e8791cae5e80a79d8e87 |
| 15 | winsys.exe | 512599 bytes | MD5: 166b5b6018e3475bedb35ae0d0eb64b2 |
| 16 | fblmcgk.exe | 245760 bytes | MD5: 7b41aa6c478de6a4cdbab547fc32789d |
| 17 | shkzba.exe | 72192 bytes | MD5: 4312c87d6bbe33e313f40536ecddfefe |
| 18 | xxatiptaxx.exe | 41472 bytes | MD5: 4dec067a10ba99a3d9b8338155079f8e |
| 19 | ftn2ksv.exe | 13824 bytes | MD5: 94de5cba450bd6325c5364d8dafedac9 |
| 20 | yuhu.exe | 245760 bytes | MD5: 73f87db9a810e2725ff01fe2ad9759d4 |
| 21 | ehxnfgur.exe | 249856 bytes | MD5: b11ea01513e57f2bccf998f737b8f38f |
| 22 | vqqmzmyd.exe | 245760 bytes | MD5: 63f1f3d276808c4eb278cbde4f776c1f |
| 23 | qdahkvf.exe | 249856 bytes | MD5: 640827fa51016f65f6436b9ea887fc91 |
| 24 | GoogleToolbarUpdate.exe | 111616 bytes | MD5: ce7679af9d8ad929a58e4398a8d382f8 |
| 25 | svhost.exe | 110592 bytes | MD5: 979235c02243347568330cacbd00d739 |
| 26 | OEM.exe | ||
| 27 | sfev.exe | 245760 bytes | MD5: 53a7477ac6e040c6068bccf9995fc7c7 |
| 28 | wd7gi8nnew.exe | ||
| 29 | Svchost.exe | 341527 bytes | MD5: efbbda1cba44bc9d853269ed1f4efa41 |
| 30 | AnyTrialControl.exe | 170302 bytes | MD5: ac3dc7bc634421d169fe0841a661e068 |
| 31 | mrcmgr.exe | 31744 bytes | MD5: 70e098bdeb653e55fb1b56549dc2c0be |
| 32 | hasp-upd.exe | 147456 bytes | MD5: c02feaea929549bf3ea35827f9160afe |
| 33 | regsvr.exe | 617343 bytes | MD5: e9f7627d4710e414b579003332287f05 |
| 34 | ddexpshare.exe | 786432 bytes | MD5: d1b6f11c70a01983cd9d4822f5b06174 |
| 35 | fftpux.exe | 159744 bytes | MD5: 86de42d21cfc23f658148349df3d257a |
| 36 | winupdate.exe | 105984 bytes | MD5: be6f49f94b64359d54145a0703648419 |
| 37 | akjopyy.exe | 245760 bytes | MD5: f194255f27eed65695455d147fb037c3 |
| 38 | senh.exe | ||
| 39 | winlogon.exe | 169352 bytes | MD5: 155cca87bd1630c1550c15eff43c2b7a |
| 40 | ctfmun.exe | 37890 bytes | MD5: 1fa78f38a099d191bdeef71a14ecd928 |
| 41 | vdalxfano.exe | 249856 bytes | MD5: ffbd4dcd4576f8a72950aa76fd093ff9 |
| 42 | appletsun.exe | 454366 bytes | MD5: 41897cb2a36bd3f71b8115f91f300094 |
| 43 | aulfma.exe | 63488 bytes | MD5: 168f99a649d0cb6dcee94f6467ec9675 |
| 44 | a.exe | 91652 bytes | MD5: 61fda050ca7d9f7d49cd3fc97b8d4545 |
| 45 | search[2].exe | ||
| 46 | fcmrtioih.exe | 245760 bytes | MD5: 091073c6c6eeef16f9a47f1598809445 |
| 47 | mediacodec.exe | 23552 bytes | MD5: a75d2ed1598b587cd5d5cd0b15163c9d |
| 48 | lsass.exe | 696909 bytes | MD5: 0d71c6ab6cbb7e701dcef8b1accf547d |
Memory Processes Created:
| # | Process Name | Process Filename | Main module size |
|---|---|---|---|
| 1 | drm.exe | drm.exe | 692736 bytes |
| 2 | init.exe | init.exe | 35840 bytes |
| 3 | tmp_1.exe | tmp_1.exe | 56596 bytes |
| 4 | scvhost.exe | scvhost.exe | 147968 bytes |
| 5 | Mendoza.exe | Mendoza.exe | |
| 6 | Isass.exe | Isass.exe | 390191 bytes |
| 7 | numbsoftnew.exe | numbsoftnew.exe | 111104 bytes |
| 8 | wgatray.exe | wgatray.exe | 75264 bytes |
| 9 | visfx500new.exe | visfx500new.exe | 467968 bytes |
| 10 | sysrtmvs.exe | sysrtmvs.exe | |
| 11 | win32.exe | win32.exe | 120320 bytes |
| 12 | system.exe | system.exe | 16469 bytes |
| 13 | Mendoza1.exe | Mendoza1.exe | 418445 bytes |
| 14 | explorers.exe | explorers.exe | 498765 bytes |
| 15 | winsys.exe | winsys.exe | 512599 bytes |
| 16 | fblmcgk.exe | fblmcgk.exe | 245760 bytes |
| 17 | shkzba.exe | shkzba.exe | 72192 bytes |
| 18 | xxatiptaxx.exe | xxatiptaxx.exe | 41472 bytes |
| 19 | ftn2ksv.exe | ftn2ksv.exe | 13824 bytes |
| 20 | yuhu.exe | yuhu.exe | 245760 bytes |
| 21 | ehxnfgur.exe | ehxnfgur.exe | 249856 bytes |
| 22 | vqqmzmyd.exe | vqqmzmyd.exe | 245760 bytes |
| 23 | qdahkvf.exe | qdahkvf.exe | 249856 bytes |
| 24 | GoogleToolbarUpdate.exe | GoogleToolbarUpdate.exe | 111616 bytes |
| 25 | svhost.exe | svhost.exe | 110592 bytes |
| 26 | OEM.exe | OEM.exe | |
| 27 | sfev.exe | sfev.exe | 245760 bytes |
| 28 | wd7gi8nnew.exe | wd7gi8nnew.exe | |
| 29 | Svchost.exe | Svchost.exe | 341527 bytes |
| 30 | AnyTrialControl.exe | AnyTrialControl.exe | 170302 bytes |
| 31 | mrcmgr.exe | mrcmgr.exe | 31744 bytes |
| 32 | hasp-upd.exe | hasp-upd.exe | 147456 bytes |
| 33 | regsvr.exe | regsvr.exe | 617343 bytes |
| 34 | ddexpshare.exe | ddexpshare.exe | 786432 bytes |
| 35 | fftpux.exe | fftpux.exe | 159744 bytes |
| 36 | winupdate.exe | winupdate.exe | 105984 bytes |
| 37 | akjopyy.exe | akjopyy.exe | 245760 bytes |
| 38 | senh.exe | senh.exe | |
| 39 | winlogon.exe | winlogon.exe | 169352 bytes |
| 40 | ctfmun.exe | ctfmun.exe | 37890 bytes |
| 41 | vdalxfano.exe | vdalxfano.exe | 249856 bytes |
| 42 | appletsun.exe | appletsun.exe | 454366 bytes |
| 43 | aulfma.exe | aulfma.exe | 63488 bytes |
| 44 | a.exe | a.exe | 91652 bytes |
| 45 | search[2].exe | search[2].exe | |
| 46 | fcmrtioih.exe | fcmrtioih.exe | 245760 bytes |
| 47 | mediacodec.exe | mediacodec.exe | 23552 bytes |
| 48 | lsass.exe | lsass.exe | 696909 bytes |