PATCHER.EXE – Worm Autorun

Worm No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

PATCHER.EXE – Worm Autorun removal

FileMD5Virus Alias
PATCHER.EXE 97b7d677dcdb22fe1c98397280ca48a5 Worm Autorun
PATCHER.EXE 97b7d677dcdb22fe1c98397280ca48a5 Backdoor PcClien

PATCHER.EXE size: 131072 bytes
PATCHER.EXE hash: 97B7D677DCDB22FE1C98397280CA48A5

Created files:

%WinDir%\system\patcher.exe
%WinDir%\system\WinIo32.dll
%WinDir%\system\WinIo32.sys
%TEMP%\lorer.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\WINIO\Type: 01000000
HKLM\System\CurrentControlSet\Services\WINIO\Start: 03000000
HKLM\System\CurrentControlSet\Services\WINIO\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\WINIO\DisplayName: WINIO
HKLM\System\CurrentControlSet\Services\WINIO\ImagePath: %WinDir%\System\winio32.sys

Detected by UnHackMe:

PATCHER.EXE
Default location: %WinDir%\SYSTEM\PATCHER.EXE

Dropper information:
MD5: a98606ea6beb2cad60f03680f637c6cd
File size: 380928 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images