SVCHOSTPATCHER.EXE – Trojan ZBot

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

SVCHOSTPATCHER.EXE – Trojan ZBot removal

File MD5 Virus Alias
SVCHOSTPATCHER.EXE c514eb741a771eb662e4376e660aea52 Trojan ZBot
SVCHOSTPATCHER.EXE c514eb741a771eb662e4376e660aea52 Trojan SuspiciousFile
SVCHOSTPATCHER.EXE c514eb741a771eb662e4376e660aea52 Trojan Generic
SVCHOSTPATCHER.EXE c514eb741a771eb662e4376e660aea52 Trojan Panda
SVCHOSTPATCHER.EXE c514eb741a771eb662e4376e660aea52 Worm AMN
SVCHOSTPATCHER.EXE c514eb741a771eb662e4376e660aea52 Trojan Agent

SVCHOSTPATCHER.EXE size: 135168 bytes
SVCHOSTPATCHER.EXE hash: C514EB741A771EB662E4376E660AEA52

Created files:

%SysDir%\34787.bi
%SysDir%\svchostpatcher.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\ProxyService\Type: 10000000
HKLM\System\CurrentControlSet\Services\ProxyService\Start: 02000000
HKLM\System\CurrentControlSet\Services\ProxyService\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\ProxyService\ImagePath: “%WinDir%\System32\svchostpatcher.exe” service

Detected by UnHackMe:

SVCHOSTPATCHER.EXE
Default location: %SYSDIR%\SVCHOSTPATCHER.EXE

Dropper information:
MD5: c514eb741a771eb662e4376e660aea52
File size: 135168 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images