I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free Download Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
PPSave.dll – Trojan Generic removal
| File | Virus Alias |
|---|---|
| PPSave.dll | Trojan Generic |
| PPSave.dll | Trojan Generic.KD |
| PPSave.dll | Worm AMN |
| PPSave.dll | Trojan Agent |
| PPSave.dll | Trojan Spy |
Created files:
%SysDir%\PPSave.dll – Trojan Generic
Autostart registry keys:
HKLM\System\CurrentControlSet\Services\PPSave\Type: 10010000
HKLM\System\CurrentControlSet\Services\PPSave\Start: 02000000
HKLM\System\CurrentControlSet\Services\PPSave\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\PPSave\DisplayName: PPSave
HKLM\System\CurrentControlSet\Services\PPSave\ImagePath: %WinDir%\System32\svchost.exe -k PPSave
HKLM\System\CurrentControlSet\Services\PPSave\Parameters\ServiceDll: 43003A005C00570049004E0044004F00570053005C00730079007300740065006D00330032005C005000500053006100760065002E0064006C006C000000
Detected by UnHackMe:
PPSave.dll
Default location: %SysDir%\PPSave.dll
Dropper information:
SHA256: fd89eeb3f06b3af8eb263e10abda733491062a88575f07686d4912fe44933e0a
SHA1: c818edc41328e579962fd34f35429820fc4884a2
MD5: 472cdd26cfbc9aed6672349f4bb78f2e
File size: 249856 bytes