KSIH.SYS – Backdoor Koutodoor

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

KSIH.SYS – Backdoor Koutodoor removal

File MD5 Virus Alias
KSIH.SYS 3e99524a434eae682097566da8c7b529 Backdoor Koutodoor
KSIH.SYS 3e99524a434eae682097566da8c7b529 Trojan SuspiciousFile
KSIH.SYS 3e99524a434eae682097566da8c7b529 Trojan Generic
KSIH.SYS 3e99524a434eae682097566da8c7b529 Trojan Eldorado
KSIH.SYS 3e99524a434eae682097566da8c7b529 Trojan Agent
KSIH.SYS 3e99524a434eae682097566da8c7b529 Trojan Crypt

KSIH.SYS size: 42336 bytes
KSIH.SYS hash: 3E99524A434EAE682097566DA8C7B529

Created files:

%SysDir%\drivers\ksih.sys
%SysDir%\qgoadf.dll
%TEMP%\inxump.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\ksih\Type: 01000000
HKLM\System\CurrentControlSet\Services\ksih\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\ksih\DisplayName: ksih
HKLM\System\CurrentControlSet\Services\ksih\ImagePath: 730079007300740065006D00330032005C0064007200690076006500720073005C006B007300690068002E007300790073000000

Detected by UnHackMe:

KSIH.SYS
Default location: %SYSDIR%\DRIVERS\KSIH.SYS

Dropper information:
MD5: 822c85dcadca384f313f5c14be90a535
File size: 348456 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images