VVPVS.EXE – Trojan Agent

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

VVPVS.EXE – Trojan Agent removal

FileMD5Virus Alias
VVPVS.EXE 09899db0f111c343f1fca47cbc083dc7 Trojan Agent
VVPVS.EXE 09899db0f111c343f1fca47cbc083dc7 Suspicious File
VVPVS.EXE 09899db0f111c343f1fca47cbc083dc7 Trojan Artemis
VVPVS.EXE 09899db0f111c343f1fca47cbc083dc7 Trojan Generic
VVPVS.EXE 09899db0f111c343f1fca47cbc083dc7 Trojan CI
VVPVS.EXE 09899db0f111c343f1fca47cbc083dc7 Trojan Graftor

VVPVS.EXE size: 71168 bytes
VVPVS.EXE hash: 09899DB0F111C343F1FCA47CBC083DC7

Created files:

%Program Files%\syslass.cpl
%Program Files%\vvpvs.exe
%SysDir%\svcnet32.dll

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\Avt-Net\Type: 10000000
HKLM\System\CurrentControlSet\Services\Avt-Net\Start: 02000000
HKLM\System\CurrentControlSet\Services\Avt-Net\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\Avt-Net\DisplayName: Portable Sound Serial Number Services
HKLM\System\CurrentControlSet\Services\Avt-Net\ImagePath: 2500530079007300740065006D0052006F006F00740025005C00730079007300740065006D00330032005C0073007600630068006F007300740020002D006B0020004100760074002D004E00650074000000
HKLM\System\CurrentControlSet\Services\Avt-Net\Description: Retrieves the serial number of any portable Sound player connected to this computer. If this service is stopped, any services that explicitly depend on it will fail to start.
HKLM\System\CurrentControlSet\Services\Avt-Net\Group: Com Infrastructure
HKLM\System\CurrentControlSet\Services\Avt-Net\ObjectName: LocalSystem
HKLM\System\CurrentControlSet\Services\Avt-Net\FailureAction: 00000000000000000000000001000000000000000200000060EA0000
HKLM\System\CurrentControlSet\Services\Avt-Net\Parameters\ServiceDll: 2500530079007300740065006D0052006F006F00740025005C00730079007300740065006D00330032005C007300760063006E0065007400330032002E0064006C006C000000

Detected by UnHackMe:

VVPVS.EXE
Default location: %PROGRAM FILES%\VVPVS.EXE

Dropper information:
MD5: 09899db0f111c343f1fca47cbc083dc7
File size: 71168 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images