The file GJBJOJHT.EXE is identified as the Trojan Program that is used for stealing bank information and users passwords.
To delete GJBJOJHT.EXE we suggest you should use UnHackMe:
http://www.unhackme.com
Malware Analysis of GJBJOJHT.EXE
Full path on a computer: %Temp%\gjbjojht.exe
Detected by UnHackMe:
GJBJOJHT.EXE
Default location: %Temp%\gjbjojht.exe
Removal Results: Success
Number of reboot: 1
GJBJOJHT.EXE is known as:
Trojan.Miuref, Trojan-FDJJ.2F41049D8755, Trojan.Dorkbot.ED, Trojan.Inject.csapod, Trojan.Dropper, Agent.AZUAM, Trojan.Inject.gytk, Trojan.Agent.BPZseUmFr1M, Troj.VB-GYS, Trojan.Siggen6.1747, VirTool.VBInject.acn (v), TR.Dropper.VB.8734, Trojan.Agent.ZDFA (B), Troj.Inject.gy.(kcloud), Trojan.Miuref.A, Trojan.Inject, Win32.Boaxxe.BE, Outbreak, W32.Inject.GYTK.tr, Trojan.Inject.AETr, Win32.Trojan.Multi.daf
GJBJOJHT.EXE hash:
- MD5: 2f41049d87553c9c7820a3cb95c54356
The file tries to download information from some web sites.
How to quickly detect GJBJOJHT.EXE presence?
![]( "Registry")
Registry:
![]( "Folders")
Folders:
![]( "Files")
Files:
Registry:- HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce\{3356C7A5-29FF-4131-33B6-D1CB34F3BE41}: “%Temp%\gjbjojht.exe”
Folders:- %Appdata%\Mozilla\Firefox\Profiles\profile.default\extensions\{0B129884-0F69-B02F-2C4A-F42D723D8D77}
- %Appdata%\Mozilla\Firefox\Profiles\profile.default\extensions\{0B129884-0F69-B02F-2C4A-F42D723D8D77}\components
- %Local Appdata%\Google\Chrome\User Data\Default\iejibcalgjapcplacmekpecnhcdninhh
- %Local Appdata%\Google\Chrome\User Data\Default\iejibcalgjapcplacmekpecnhcdninhh\4.0.4
Files:- %Appdata%\Microsoft\Protect\S-1-5-21-1659004503-1708537768-1801674531-500\8a044988-7c1b-44ae-aa8c-799fb31febb6
- %Appdata%\Mozilla\Firefox\Profiles\profile.default\extensions\{0B129884-0F69-B02F-2C4A-F42D723D8D77}\chrome.manifest
- %Appdata%\Mozilla\Firefox\Profiles\profile.default\extensions\{0B129884-0F69-B02F-2C4A-F42D723D8D77}\components\BroadcastEventService.js
- %Appdata%\Mozilla\Firefox\Profiles\profile.default\extensions\{0B129884-0F69-B02F-2C4A-F42D723D8D77}\install.rdf
- %Local Appdata%\Google\Chrome\User Data\Default\iejibcalgjapcplacmekpecnhcdninhh\4.0.4\background.js
- %Local Appdata%\Google\Chrome\User Data\Default\iejibcalgjapcplacmekpecnhcdninhh\4.0.4\content.js
- %Local Appdata%\Google\Chrome\User Data\Default\iejibcalgjapcplacmekpecnhcdninhh\4.0.4\manifest.json
- %Temp%\a.dat
- %Temp%\gjbjojht.exe
- %Temp%\setup.dat
- %Temp%\~DF71B.tmp