I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free Download Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
AGROIO.SYS – Trojan Artemis removal
| File | MD5 | Virus Alias |
|---|---|---|
| AGROIO.SYS | 0f4df94c30cd51f12815960f7b52dce5 | Trojan Artemis |
| AGROIO.SYS | 0f4df94c30cd51f12815960f7b52dce5 | Trojan Generic |
| AGROIO.SYS | 0f4df94c30cd51f12815960f7b52dce5 | Trojan Dulom |
| AGROIO.SYS | 0f4df94c30cd51f12815960f7b52dce5 | Trojan CI |
| AGROIO.SYS | 0f4df94c30cd51f12815960f7b52dce5 | Trojan Agent |
| AGROIO.SYS | 0f4df94c30cd51f12815960f7b52dce5 | Trojan Banker |
AGROIO.SYS size: 25088 bytes
AGROIO.SYS hash: 0F4DF94C30CD51F12815960F7B52DCE5
Created files:
%SysDir%\drivers\agroio.sys
%SysDir%\drivers\hp3900.sys
Autostart registry keys:
HKLM\System\CurrentControlSet\Services\agroio\Type: 01000000
HKLM\System\CurrentControlSet\Services\agroio\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\agroio\DisplayName: agroio
HKLM\System\CurrentControlSet\Services\agroio\ImagePath: %WinDir%\System32\drivers\agroio.sys
HKLM\System\CurrentControlSet\Services\hp3900\Type: 01000000
HKLM\System\CurrentControlSet\Services\hp3900\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\hp3900\DisplayName: hp3900
HKLM\System\CurrentControlSet\Services\hp3900\ImagePath: %WinDir%\System32\drivers\hp3900.sys
HKLM\System\CurrentControlSet\Services\hp3900\Group: Boot Bus Extender
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\alg: \Macromidia\alg.exe
Detected by UnHackMe:
AGROIO.SYS
Default location: %SYSDIR%\DRIVERS\AGROIO.SYS
Dropper information:
MD5: 7803d7f80da5ee8fdce1625bce653108
File size: 650240 bytes