The file PRISHTINA_2.CRX can destroy your system, thus making the computer to work abnormally.
PRISHTINA_2.CRX is a dangerous file.
RemovePRISHTINA_2.CRX from your computer immediately.
Kill the process PRISHTINA_2.CRX and remove PRISHTINA_2.CRX from the Windows startup.
Malware Analysis of PRISHTINA_2.CRX
Full path on a computer: %Common Appdata%\Fipq\Prishtina_2.crx
Detected by UnHackMe:
PRISHTINA_2.CRX
Default location: %Common Appdata%\Fipq\Prishtina_2.crx
Removal Results: Success
Number of reboot: 1
PRISHTINA_2.CRX is known as:
Trojan.JS.Agent.JGI, Trojan.JS.Agent.JGI (B), Trojan:JS.Kilim.O, JS.ExtenBro.FBook.BT, Trojan.JS.ExtenBro
PRISHTINA_2.CRX hash:
- MD5: 2100e4d75a4a71f65fdd4f98ffb47be4
The file is used for downloading and installing other malware, Trojans, viruses by the commands received from the Command Center.
How to quickly detect PRISHTINA_2.CRX presence?
![]( "Registry")
Registry:
![]( "Folders")
Folders:
![]( "Files")
Files:
Registry:- HKLM\Software\Google\Chrome\Extensions\bempokoddbgidehgjdhlppgpaahallkj\path: “%Common Appdata%\Fipq\Prishtina_2.crx”
- HKLM\Software\Google\Chrome\Extensions\bempokoddbgidehgjdhlppgpaahallkj\version: “0.2″
Folders:- %Common Appdata%\Fipq
- C:\RECYCLER\S-1-5-21-1659004503-1708537768-1801674531-500\Dc1
Files:- %Local Appdata%\Google\Chrome\User Data\Default\Extension Rules\000055.log
- %Local Appdata%\Google\Chrome\User Data\Default\Extension Rules\MANIFEST-000054
- %Local Appdata%\Google\Chrome\User Data\Default\Session Storage\000171.log
- %Local Appdata%\Google\Chrome\User Data\Default\Session Storage\000172.ldb
- %Local Appdata%\Google\Chrome\User Data\Default\Session Storage\MANIFEST-000169
- %Common Appdata%\Fipq\Prishtina_2.crx
- C:\RECYCLER\S-1-5-21-1659004503-1708537768-1801674531-500\Dc1\config.bip
- C:\RECYCLER\S-1-5-21-1659004503-1708537768-1801674531-500\Dc1\Prishtina_2.crx