I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free Download Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
EPLVAH.EXE – Backdoor Xyligan removal
| File | MD5 | Virus Alias |
|---|---|---|
| EPLVAH.EXE | 206da15ea2f2fe364dffced2a9901509 | Backdoor Xyligan |
| EPLVAH.EXE | 206da15ea2f2fe364dffced2a9901509 | Trojan PcClient |
| EPLVAH.EXE | 206da15ea2f2fe364dffced2a9901509 | Trojan Eldorado |
| EPLVAH.EXE | 206da15ea2f2fe364dffced2a9901509 | Backdoor PcClien |
| EPLVAH.EXE | 206da15ea2f2fe364dffced2a9901509 | Backdoor Nitol |
| EPLVAH.EXE | 206da15ea2f2fe364dffced2a9901509 | Trojan Agent |
EPLVAH.EXE size: 58368 bytes
EPLVAH.EXE hash: 206DA15EA2F2FE364DFFCED2A9901509
Created files:
%SysDir%\eplvah.exe
Autostart registry keys:
HKLM\System\CurrentControlSet\Services\Dreamw\Type: 10000000
HKLM\System\CurrentControlSet\Services\Dreamw\Start: 02000000
HKLM\System\CurrentControlSet\Services\Dreamw\DisplayName: Remote Dreamw Service
HKLM\System\CurrentControlSet\Services\Dreamw\ImagePath: %WinDir%\System32\eplvah.exe
HKLM\System\CurrentControlSet\Services\Dreamw\Description: Windows Resource KDreamw
Detected by UnHackMe:
EPLVAH.EXE
Default location: %SYSDIR%\EPLVAH.EXE
Dropper information:
MD5: 206da15ea2f2fe364dffced2a9901509
File size: 58368 bytes