I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free Download Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
QUANSKP.SYS – Trojan Artemis removal
| File | MD5 | Virus Alias |
|---|---|---|
| QUANSKP.SYS | 974aad11aaff3ac5182c21e76b59d24a | Trojan Artemis |
| QUANSKP.SYS | 974aad11aaff3ac5182c21e76b59d24a | Trojan XPACK |
| QUANSKP.SYS | 974aad11aaff3ac5182c21e76b59d24a | Trojan Click |
| QUANSKP.SYS | 974aad11aaff3ac5182c21e76b59d24a | Trojan Genome |
| QUANSKP.SYS | 974aad11aaff3ac5182c21e76b59d24a | Trojan CI |
| QUANSKP.SYS | 974aad11aaff3ac5182c21e76b59d24a | Worm AMN |
QUANSKP.SYS size: 26112 bytes
QUANSKP.SYS hash: 974AAD11AAFF3AC5182C21E76B59D24A
Created files:
%SysDir%\quanskp.sys
%SysDir%\WindowsDriver.dll
Autostart registry keys:
HKLM\System\CurrentControlSet\Services\quanskp\Type: 01000000
HKLM\System\CurrentControlSet\Services\quanskp\Start: 02000000
HKLM\System\CurrentControlSet\Services\quanskp\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\quanskp\DisplayName: quanskp
HKLM\System\CurrentControlSet\Services\quanskp\ImagePath: c:\windows\System32\quanskp.sys
HKLM\System\CurrentControlSet\Services\WindowsDriver\Type: 10010000
HKLM\System\CurrentControlSet\Services\WindowsDriver\Start: 02000000
HKLM\System\CurrentControlSet\Services\WindowsDriver\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\WindowsDriver\DisplayName: WindowsDriver
HKLM\System\CurrentControlSet\Services\WindowsDriver\ImagePath: %WinDir%\System32\svchost.exe -k WindowsDriver
HKLM\System\CurrentControlSet\Services\WindowsDriver\Parameters\ServiceDll: 43003A005C00570049004E0044004F00570053005C00730079007300740065006D00330032005C00570069006E0064006F00770073004400720069007600650072002E0064006C006C000000
Detected by UnHackMe:
QUANSKP.SYS
Default location: %SYSDIR%\QUANSKP.SYS
Dropper information:
MD5: 946e08e3c556b7e49694be6e96d81930
File size: 740352 bytes