I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free Download Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
SYSTEM64.DLL – Trojan OnLineGames removal
| File | MD5 | Virus Alias |
|---|---|---|
| SYSTEM64.DLL | 03b916047d02feed651d439f9e400278 | Trojan OnLineGames |
| SYSTEM64.DLL | 03b916047d02feed651d439f9e400278 | Trojan Artemis |
| SYSTEM64.DLL | 03b916047d02feed651d439f9e400278 | Trojan Generic |
| SYSTEM64.DLL | 03b916047d02feed651d439f9e400278 | Trojan Eldorado |
| SYSTEM64.DLL | 03b916047d02feed651d439f9e400278 | Backdoor Pigeon |
| SYSTEM64.DLL | 03b916047d02feed651d439f9e400278 | Backdoor Hupigon |
SYSTEM64.DLL size: 358400 bytes
SYSTEM64.DLL hash: 03B916047D02FEED651D439F9E400278
Created files:
%SysDir%\System64.dll
%SysDir%\vnc\00.exe
%SysDir%\vnc\s.exe
%SysDir%\vnc\vnc.exe
%SysDir%\vnc\VNCLink.exe
%TEMP%\E_4\krnln.fnr
%TEMP%\r.exe
%TEMP%\vnc1.exe
%TEMP%\????????VNC?????.exe
Autostart registry keys:
HKLM\System\CurrentControlSet\Services\Windows System Evnt Notification\Type: 10010000
HKLM\System\CurrentControlSet\Services\Windows System Evnt Notification\Start: 02000000
HKLM\System\CurrentControlSet\Services\Windows System Evnt Notification\DisplayName: Windows System Evnt Notification
HKLM\System\CurrentControlSet\Services\Windows System Evnt Notification\ImagePath: %SystemRoot%\System32\svchost.exe -k netservice
HKLM\System\CurrentControlSet\Services\Windows System Evnt Notification\DependOnService: RpcSs
HKLM\System\CurrentControlSet\Services\Windows System Evnt Notification\Enum\0: Root\LEGACY_Windows System Evnt Notification\0000
HKLM\System\CurrentControlSet\Services\Windows System Evnt Notification\Parameters\ServiceDll: 43003A005C00570049004E0044004F00570053005C00730079007300740065006D00330032005C00530079007300740065006D00360034002E0064006C006C000000
Detected by UnHackMe:
SYSTEM64.DLL
Default location: %SYSDIR%\SYSTEM64.DLL
Dropper information:
MD5: 768e39809917b65a82657ddbd6adeb73
File size: 1140224 bytes