SVCHQST.EXE – Backdoor Bifrose

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

SVCHQST.EXE – Backdoor Bifrose removal

FileMD5Virus Alias
SVCHQST.EXE ad2a46ebb7ac88e3b4218a90e98a2752 Backdoor Bifrose
SVCHQST.EXE ad2a46ebb7ac88e3b4218a90e98a2752 Trojan Generic
SVCHQST.EXE ad2a46ebb7ac88e3b4218a90e98a2752 Trojan CI
SVCHQST.EXE ad2a46ebb7ac88e3b4218a90e98a2752 Trojan DNSChanger
SVCHQST.EXE ad2a46ebb7ac88e3b4218a90e98a2752 Worm Autoit
SVCHQST.EXE ad2a46ebb7ac88e3b4218a90e98a2752 Trojan Agent

SVCHQST.EXE size: 334610 bytes
SVCHQST.EXE hash: AD2A46EBB7AC88E3B4218A90E98A2752

Created files:

%SysDir%\svchqst.exe
%TEMP%\zhyknzs

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\WinDC\Type: 10010000
HKLM\System\CurrentControlSet\Services\WinDC\Start: 02000000
HKLM\System\CurrentControlSet\Services\WinDC\DisplayName: Windows DNS Client
HKLM\System\CurrentControlSet\Services\WinDC\ImagePath: “%WinDir%\System32\svchqst.exe”

Detected by UnHackMe:

SVCHQST.EXE
Default location: %SYSDIR%\SVCHQST.EXE

Dropper information:
MD5: ad2a46ebb7ac88e3b4218a90e98a2752
File size: 334610 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images