LONERSVR.SYS – Unclassified Malware

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

LONERSVR.SYS – Unclassified Malware removal

LONERSVR.SYS size: 10752 bytes
LONERSVR.SYS hash: 2D5E2AD2A0A33D4AC482F84BDBFE7063

Created files:

%SysDir%\LonerSvr.sys
%SysDir%\TPkill DV.sys

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\DBKDRVR54\Type: 01000000
HKLM\System\CurrentControlSet\Services\DBKDRVR54\Start: 03000000
HKLM\System\CurrentControlSet\Services\DBKDRVR54\DisplayName: DBKDRVR54
HKLM\System\CurrentControlSet\Services\DBKDRVR54\ImagePath: %WinDir%\System32\.\TPkill DV.sys
HKLM\System\CurrentControlSet\Services\LonerSvr\Type: 01000000
HKLM\System\CurrentControlSet\Services\LonerSvr\Start: 03000000
HKLM\System\CurrentControlSet\Services\LonerSvr\DisplayName: LonerSvr
HKLM\System\CurrentControlSet\Services\LonerSvr\ImagePath: %WinDir%\System32\LonerSvr.sys
HKLM\System\CurrentControlSet\Services\LonerTEST\Type: 01000000
HKLM\System\CurrentControlSet\Services\LonerTEST\Start: 03000000
HKLM\System\CurrentControlSet\Services\LonerTEST\DisplayName: LonerTEST
HKLM\System\CurrentControlSet\Services\LonerTEST\ImagePath: 3I866V5TF.sys

Detected by UnHackMe:

LONERSVR.SYS
Default location: %SYSDIR%\LONERSVR.SYS

Dropper information:
MD5: 061e2c5612548b0d415b1a84718e303b
File size: 467968 bytes

Leave a Reply