I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.
RUNDLL32SRV.EXE – Trojan ZBot removal
| File | MD5 | Virus Alias |
|---|---|---|
| RUNDLL32SRV.EXE | ff5e1f27193ce51eec318714ef038bef | Trojan ZBot |
| RUNDLL32SRV.EXE | ff5e1f27193ce51eec318714ef038bef | Trojan SuspiciousFile |
| RUNDLL32SRV.EXE | ff5e1f27193ce51eec318714ef038bef | Trojan XPACK |
| RUNDLL32SRV.EXE | ff5e1f27193ce51eec318714ef038bef | Trojan Eldorado |
| RUNDLL32SRV.EXE | ff5e1f27193ce51eec318714ef038bef | Worm AMN |
| RUNDLL32SRV.EXE | ff5e1f27193ce51eec318714ef038bef | Trojan Krap |
RUNDLL32SRV.EXE size: 56320 bytes
RUNDLL32SRV.EXE hash: FF5E1F27193CE51EEC318714EF038BEF
Created files:
%Program Files%\Microsoft\DesktopLayer.exe
%SysDir%\rundll32Srv.exe
%Common AppData%\Apple Computer\Installer Cache\Safari 5.34.52.7\SetupAdmin.exe
%UserProfile%\Local Settings\Application Data\Google\Chrome\Application\17.0.963.56\avcodec-53.dll
%UserProfile%\Local Settings\Application Data\Google\Chrome\Application\17.0.963.56\avformat-53.dll
%UserProfile%\Local Settings\Application Data\Google\Chrome\Application\17.0.963.56\avutil-51.dll
%UserProfile%\Local Settings\Application Data\Google\Chrome\Application\17.0.963.56\chrome.dll
Autostart registry keys:
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit: c:\windows\System32\userinit.exe,,c:\program files\Microsoft\desktoplayer.exe
Detected by UnHackMe:
RUNDLL32SRV.EXE
Default location: %SYSDIR%\RUNDLL32SRV.EXE
Dropper information:
MD5: 299c0618805a352a5fe9a4af1c25c0ba
File size: 327168 bytes