2E6166.SYS – Trojan Qhost

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

2E6166.SYS – Trojan Qhost removal

FileMD5Virus Alias
2E6166.SYS 8268541ef8acf1ed4fc1d308ab6d3734 Trojan Qhost
2E6166.SYS 8268541ef8acf1ed4fc1d308ab6d3734 Trojan Generic
2E6166.SYS 8268541ef8acf1ed4fc1d308ab6d3734 Trojan Eldorado
2E6166.SYS 8268541ef8acf1ed4fc1d308ab6d3734 Trojan Downloader

2E6166.SYS size: 66688 bytes
2E6166.SYS hash: 8268541EF8ACF1ED4FC1D308AB6D3734

Created files:

%SysDir%\drivers\2e6166.sys
%Temp%\Uqma\cuyhx.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\2e6166\Type: 01000000
HKLM\System\CurrentControlSet\Services\2e6166\Start: 01000000
HKLM\System\CurrentControlSet\Services\2e6166\DisplayName: cuyhx.exe
HKLM\System\CurrentControlSet\Services\2e6166\ImagePath: %WinDir%\System32\drivers\2e6166.sys
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\Cuyhx: “%Temp%\Uqma\cuyhx.exe”

Detected by UnHackMe:

2E6166.SYS
Default location: %SYSDIR%\DRIVERS\2E6166.SYS

Dropper information:
MD5: 7f5bf1757c4c9c25ae4f6755a13a0f1d
File size: 406528 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images