SVCHOZT.EXE – Trojan OnLineGames

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

SVCHOZT.EXE – Trojan OnLineGames removal

FileMD5Virus Alias
SVCHOZT.EXE fef54fc397e484ec3809d11d40380e3e Trojan OnLineGames
SVCHOZT.EXE fef54fc397e484ec3809d11d40380e3e Suspicious File
SVCHOZT.EXE fef54fc397e484ec3809d11d40380e3e Trojan Generic
SVCHOZT.EXE fef54fc397e484ec3809d11d40380e3e Trojan Eldorado
SVCHOZT.EXE fef54fc397e484ec3809d11d40380e3e Trojan Graftor
SVCHOZT.EXE fef54fc397e484ec3809d11d40380e3e Trojan Agent

SVCHOZT.EXE size: 684032 bytes
SVCHOZT.EXE hash: FEF54FC397E484EC3809D11D40380E3E

Created files:

%UserProfile%\Start Menu\Programs\Startup\svchozt.exe
%SysDir%\PastRrfTY.sys

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\baby\Type: 01000000
HKLM\System\CurrentControlSet\Services\baby\Start: 03000000
HKLM\System\CurrentControlSet\Services\baby\DisplayName: baby
HKLM\System\CurrentControlSet\Services\baby\ImagePath: %WinDir%\System32\PastRrfTY.sys

Detected by UnHackMe:

SVCHOZT.EXE
Default location: %USERPROFILE%\START MENU\PROGRAMS\STARTUP\SVCHOZT.EXE

Dropper information:
MD5: f09d126956af952b89f76bbd343826e1
File size: 1474560 bytes

Leave a Reply