Solved! Use SVCH0ST.EXE (Backdoor Maximus) Removal Guide

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

SVCH0ST.EXE – Backdoor Maximus removal

File MD5 Virus Alias
SVCH0ST.EXE 514519e465f309f99bd455f7d0826485 Backdoor Maximus
SVCH0ST.EXE 514519e465f309f99bd455f7d0826485 Trojan VBTrojan
SVCH0ST.EXE 514519e465f309f99bd455f7d0826485 Trojan Generic
SVCH0ST.EXE 514519e465f309f99bd455f7d0826485 Trojan Agent
SVCH0ST.EXE 514519e465f309f99bd455f7d0826485 Worm Pronny

SVCH0ST.EXE size: 138771 bytes
SVCH0ST.EXE hash: 514519E465F309F99BD455F7D0826485

Created files:

C:\Documents and Settings\Default User\Start Menu\Programs\Startup\ .exe
%WinDir%\system\wincirl.com
%SysDir%\SVCH0ST.EXE
%Common Startmenu%\Programs\Startup\ .exe
%AppData%\Microsoft\Internet Explorer\Quick Launch\TEST.exe
%Favorites%\Links\www.test.com
%Startup%\ .exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\shell: Explorer.exe %WinDir%/System32/SVCH0ST.EXE
HKCU\Software\Microsoft\Windows NT\CurrentVersion\Windows\load: %WinDir%/System/wincirl.com

Detected by UnHackMe:

SVCH0ST.EXE
Default location: %SYSDIR%\SVCH0ST.EXE

Dropper information:
MD5: 514519e465f309f99bd455f7d0826485
File size: 138771 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images