SRVHOST.EXE – Trojan Small

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

SRVHOST.EXE – Trojan Small removal

FileMD5Virus Alias
SRVHOST.EXE 16a2b8f3afc1ba65e8819f98a985ed49 Trojan Small
SRVHOST.EXE 16a2b8f3afc1ba65e8819f98a985ed49 Trojan Generic
SRVHOST.EXE 16a2b8f3afc1ba65e8819f98a985ed49 Trojan Downloader

SRVHOST.EXE size: 8761 bytes
SRVHOST.EXE hash: 16A2B8F3AFC1BA65E8819F98A985ED49

Created files:

C:\windows\system32\host.ild
C:\windows\system32\srvhost.exe
%Common AppData%\Microsoft\Crypto\RSA\S-1-5-18\6d14e4b1d8ca773bab785d1be032546e_78de4566-a5cc-4192-bf8d-014e0d2bd235

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\srvhost\Type: 10010000
HKLM\System\CurrentControlSet\Services\srvhost\Start: 02000000
HKLM\System\CurrentControlSet\Services\srvhost\DisplayName: srvhost
HKLM\System\CurrentControlSet\Services\srvhost\ImagePath: c:\windows\System32\srvhost.exe

Detected by UnHackMe:

SRVHOST.EXE
Default location: %SYSDIR%\SRVHOST.EXE

Dropper information:
MD5: 16a2b8f3afc1ba65e8819f98a985ed49
File size: 8761 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images