The file SK.ENHANCER.EXE is not a virus.
The program SK.ENHANCER.EXE is a system security tool.
But the SK.ENHANCER.EXE tool may be used to compromise computer security by the hacker.
Use the SK.ENHANCER.EXE file at your own risk!
You can delete the SK.ENHANCER.EXE program from your computer with problems.
Malware Analysis of SK.ENHANCER.EXE
Full path on a computer: %Common Appdata%\QuickSet\SK.Enhancer\SK.Enhancer.exe
Detected by UnHackMe:
SK.ENHANCER.EXE
Default location: %Common Appdata%\QuickSet\SK.Enhancer\SK.Enhancer.exe
Removal Results: Success
Number of reboot: 1
SK.ENHANCER.EXE is known as:
PUP.Optional.MultiPlug.A, Trojan-Downloader ( 0048ec4f1 ), Trojan.Symmi.cnlorl, Trojan.Agent.nsR3DbgfvU8, TrojWare.Downloader.Agent.~AKO, TR.Symmi.14078.7, Troj.Undef.(kcloud), W32.Trojan.QAZB-2907, a variant of Win32.TrojanDownloader.Agent.AFD, Trojan-Downloader.Agent, W32.Agent.AFD.tr.dldr, Downloader.Agent2.BRRB, Trojan.Downloader.AFD
SK.ENHANCER.EXE hash:
- MD5: 83528348154f9f3f3c332191b0849b25
The file tries to connect to the dangerous web site.
How to quickly detect SK.ENHANCER.EXE presence?
![]( "Registry")
Registry:
![]( "Folders")
Folders:
![]( "Files")
Files:
Registry:- HKCU\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}\Version: “24,0,0,0″
- HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs: “c:\progra~1\ska573~1.enh\psupport.dll c:\progra~1\websea~1\sprote~1.dll”
Folders:- %Appdata%\Mozilla\Firefox\Profiles\gi17c3pt.default\searchplugins
- %Local Appdata%\Temp
- %Common Appdata%\InstallMate
- %Common Appdata%\InstallMate\FD0865FD
- %Common Appdata%\InstallMate\{F3238917-4341-44E8-A603-0B6328C0ABE1}
- %Common Appdata%\QuickSet
- %Common Appdata%\QuickSet\Setup
- %Common Appdata%\QuickSet\SK.Enhancer
- %Common Appdata%\QuickSet\SK.Enhancer\5881886836
- %Program Files%\Sk.Enhancer
- %Program Files%\WebSearch
Files:- %Appdata%\Mozilla\Firefox\Profiles\gi17c3pt.default\searchplugins\WebSearch.xml
- %Desktop%\error.txt
- %Common Appdata%\InstallMate\{F3238917-4341-44E8-A603-0B6328C0ABE1}\20131122111905.log
- %Common Appdata%\InstallMate\{F3238917-4341-44E8-A603-0B6328C0ABE1}\Custom.dll
- %Common Appdata%\InstallMate\{F3238917-4341-44E8-A603-0B6328C0ABE1}\Readme.txt
- %Common Appdata%\InstallMate\{F3238917-4341-44E8-A603-0B6328C0ABE1}\Setup.dat
- %Common Appdata%\InstallMate\{F3238917-4341-44E8-A603-0B6328C0ABE1}\Setup.exe
- %Common Appdata%\InstallMate\{F3238917-4341-44E8-A603-0B6328C0ABE1}\Setup.ico
- %Common Appdata%\InstallMate\{F3238917-4341-44E8-A603-0B6328C0ABE1}\TsuDll.dll
- %Common Appdata%\InstallMate\{F3238917-4341-44E8-A603-0B6328C0ABE1}\_Setup.dll
- %Common Appdata%\QuickSet\SK.Enhancer\5881886836.ini
- %Common Appdata%\QuickSet\SK.Enhancer\SK.Enhancer.exe
- %Program Files%\Sk.Enhancer\psupport.dll
- %Program Files%\Sk.Enhancer\uninstall.exe
- %Program Files%\WebSearch\sprotector.dll
- %Program Files%\WebSearch\uninstall.exe
- %WinDir%\Tasks\SK.Enhancer-S-5881886836.job