Solved! Use SVLKANAGER.EXE (Rootkit SpyEye) Removal Guide

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

SVLKANAGER.EXE – Rootkit SpyEye removal

FileMD5Virus Alias
SVLKANAGER.EXE 169d502311c2e7da5f1db7e04216b655 Rootkit SpyEye
SVLKANAGER.EXE 169d502311c2e7da5f1db7e04216b655 Trojan XPACK
SVLKANAGER.EXE 169d502311c2e7da5f1db7e04216b655 Trojan MLW
SVLKANAGER.EXE 169d502311c2e7da5f1db7e04216b655 Trojan Krap
SVLKANAGER.EXE 169d502311c2e7da5f1db7e04216b655 Trojan ZBot
SVLKANAGER.EXE 169d502311c2e7da5f1db7e04216b655 Trojan Kryptik

SVLKANAGER.EXE size: 200704 bytes
SVLKANAGER.EXE hash: 169D502311C2E7DA5F1DB7E04216B655

Created files:

%SysDir%\drivers\svlkanager.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\svlkanag\Type: 10010000
HKLM\System\CurrentControlSet\Services\svlkanag\Start: 02000000
HKLM\System\CurrentControlSet\Services\svlkanag\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\svlkanag\DisplayName: sv_lkanag
HKLM\System\CurrentControlSet\Services\svlkanag\ImagePath: %WinDir%\System32\drivers\svlkanager.exe

Detected by UnHackMe:

SVLKANAGER.EXE
Default location: %SYSDIR%\DRIVERS\SVLKANAGER.EXE

Dropper information:
MD5: 169d502311c2e7da5f1db7e04216b655
File size: 200704 bytes

Leave a Reply