Trojan OnLineGames – WinSocketA.dll – c7c62124b8dd0ee037124ec3bb07394f

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Trojan OnLineGames
Also known as: Trojan Generic, Trojan CI
SHA256: 781781c38a6d56d7f1669e90a57b39ed5723ee261e2c2721bd4457cf518b66f8
SHA1: 3e8cf9716838f8ee955de5c03ba3f2140524bbce
MD5: c7c62124b8dd0ee037124ec3bb07394f
File size: 39936 bytes

Created files:

%SysDir%\WinSocketA.dll – Trojan OnLineGames
%WinDir%Rv3ebSt.sys – Trojan OnLineGames

Trojan OnLineGames created autostart registry keys:

HKLM\System\CurrentControlSet\Services\Rv3ebSt.sys\Type: 01000000
HKLM\System\CurrentControlSet\Services\Rv3ebSt.sys\Start: 03000000
HKLM\System\CurrentControlSet\Services\Rv3ebSt.sys\DisplayName: Rv3ebSt.sys
HKLM\System\CurrentControlSet\Services\Rv3ebSt.sys\ImagePath: %WinDir%Rv3ebSt.sys
HKLM\System\CurrentControlSet\Services\WS2IFSL\Type: 01000000
HKLM\System\CurrentControlSet\Services\WS2IFSL\Start: 01000000
HKLM\System\CurrentControlSet\Services\WS2IFSL\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\WS2IFSL\DisplayName: Windows Socket 2.0 Non-IFS Service Provider Support Environment
HKLM\System\CurrentControlSet\Services\WS2IFSL\ImagePath: \SystemRoot\System32\drivers\ws2ifsl.sys

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images