GBPSVS.DLL – Trojan Barys

January 31, 2013

Alex NightWatcher

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

GBPSVS.DLL – Trojan Barys removal

File	MD5	Virus Alias
GBPSVS.DLL	9d9407cff0fa682085558bab48cef589	Trojan Barys
GBPSVS.DLL	9d9407cff0fa682085558bab48cef589	Suspicious File
GBPSVS.DLL	9d9407cff0fa682085558bab48cef589	Trojan Eldorado
GBPSVS.DLL	9d9407cff0fa682085558bab48cef589	Trojan Banker
GBPSVS.DLL	9d9407cff0fa682085558bab48cef589	Trojan Crypt

GBPSVS.DLL size: 1069056 bytes
GBPSVS.DLL hash: 9D9407CFF0FA682085558BAB48CEF589

Created files:

C:\ProgramData\gbpsvs.dll

Autostart registry keys:

HKLM\Software\Classes\CLSID\{114B2373-EB1E-48BD-B895-0AD5DC7998D6}\InprocServer32 : C:\ProgramData\gbpsvs.dll
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\MsnService: C:\ProgramData\msns.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\Antivirus: C:\ProgramData\avskill.exe

Detected by UnHackMe:

GBPSVS.DLL
Default location: C:\PROGRAMDATA\GBPSVS.DLL

Dropper information:
MD5: fe446c3364c6708c3301a97a08bc9356
File size: 301312 bytes

Leave a Reply Cancel reply

You must be logged in to post a comment.