XPV3001.SYS – Trojan Agent

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

XPV3001.SYS – Trojan Agent removal

FileMD5Virus Alias
XPV3001.SYS 81d5da189e2db7cc857cd5b05ce1ea67 Trojan Agent
XPV3001.SYS 81d5da189e2db7cc857cd5b05ce1ea67 Trojan SuspiciousFile
XPV3001.SYS 81d5da189e2db7cc857cd5b05ce1ea67 Trojan Generic
XPV3001.SYS 81d5da189e2db7cc857cd5b05ce1ea67 Trojan CI
XPV3001.SYS 81d5da189e2db7cc857cd5b05ce1ea67 Trojan OnLineGames
XPV3001.SYS 81d5da189e2db7cc857cd5b05ce1ea67 Trojan AVKill

XPV3001.SYS size: 7680 bytes
XPV3001.SYS hash: 81D5DA189E2DB7CC857CD5B05CE1EA67

Created files:

C:\1289100.dll
C:\windows\system32\dllcache\ws2help.dll
C:\windows\system32\drivers\420a0a1f.sys
C:\windows\system32\drivers\xpV3001.sys
C:\windows\system32\RpcSvc.psd
C:\windows\system32\ws2helpXP.dll
C:\windows\system32\wshtcpip.dll
C:\windows\Tasks\csrss.exe
C:\windows\temp\svohcst.exe
C:\windows\temp\temp1.exe
C:\windows\temp\temp2.exe
C:\windows\temp\temp3.exe
C:\windows\temp\temp4.exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\Download: C:\windows\temp\svohcst.exe
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit: %WinDir%\System32\userinit.exe,%WinDir%\Tasks\csrss.exe?, |Q- |X- |2?`?Detected by UnHackMe:

XPV3001.SYS
Default location: %SYSDIR%\DRIVERS\XPV3001.SYS

Dropper information:
MD5: ca33e1826f8d03ed2c11fba563ca3bbb
File size: 4207 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images