I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.
SYSHOST.EXE – Fake Antivirus SecurityTool removal
| File | MD5 | Virus Alias |
|---|---|---|
| SYSHOST.EXE | a7c41ebcb96f9e4ff73758ec49ab9e61 | Fake Antivirus SecurityTool |
| SYSHOST.EXE | a7c41ebcb96f9e4ff73758ec49ab9e61 | Trojan CI |
| SYSHOST.EXE | a7c41ebcb96f9e4ff73758ec49ab9e61 | Trojan Agent |
| SYSHOST.EXE | a7c41ebcb96f9e4ff73758ec49ab9e61 | Trojan ZBot |
| SYSHOST.EXE | a7c41ebcb96f9e4ff73758ec49ab9e61 | Trojan Kryptik |
| SYSHOST.EXE | a7c41ebcb96f9e4ff73758ec49ab9e61 | Trojan Crypt |
SYSHOST.EXE size: 77312 bytes
Created files:
%WinDir%\Installer\{332E439E-2E80-4BAA-01E9-FE30E18F8A55}\syshost.exe
Autostart registry keys:
HKLM\System\CurrentControlSet\Services\syshost32\Type: 10000000
HKLM\System\CurrentControlSet\Services\syshost32\Start: 02000000
HKLM\System\CurrentControlSet\Services\syshost32\ImagePath: “%WinDir%\Installer\{332E439E-2E80-4BAA-01E9-FE30E18F8A55}\syshost.exe” /service
Detected by UnHackMe:
SYSHOST.EXE
Default location: %WinDir%\INSTALLER\{332E439E-2E80-4BAA-01E9-FE30E18F8A55}\SYSHOST.EXE