The program V3XERV32.DLL is used for hidden penetration into PC and its remote administration.
UnHackMe is recommended as a reliable program for solving the problem with V3XERV32.DLL.
Download for free: http://www.unhackme.com
Malware Analysis of V3XERV32.DLL
Full path on a computer: %SysDir%\V3Xerv32.dll
Detected by UnHackMe:
Item Name: V3Xerv
Author: Unknown
Related File: %SYSDIR%\V3XERV32.DLL
Type: Svchost DLLs
Removal Results: Success
Number of reboot: 1
V3XERV32.DLL is known as:
Backdoor.Pangus.w, a variant of Win32.Spy.Banker.ABBK, PE:Packer.Agent.f.1075136883
V3XERV32.DLL hash:
- MD5: 69b752fb23654f8c30f475760f00a31a
The file tries to download information from some web sites.
How to quickly detect V3XERV32.DLL presence?
![]( "Registry")
Registry:
![]( "Folders")
Folders:
![]( "Files")
Files:
Registry:- HKLM\System\CurrentControlSet\Services\V3Xerv\ImagePath: “%SystemRoot%\system32\svchost -k V3Xerv”
- HKLM\System\CurrentControlSet\Services\V3Xerv\DisplayName: “V3 Server”
Folders:- C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\LUIIOHEM
- %Program Files Common%\Plugins
Files:- %Temp%\d85f_appcompat.txt
- %Temp%\F8D7.dmp
- C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\LUIIOHEM\desktop.ini
- C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\LUIIOHEM\index[1].txt
- %Program Files Common%\Plugins\index.txt
- %SysDir%\V3Xerv32.dll
