SYSHOST.EXE – Trojan ZBot

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

SYSHOST.EXE – Trojan ZBot removal

FileMD5Virus Alias
SYSHOST.EXE 00A8597A953A9C19B715CA40989FA5D9 Trojan ZBot
SYSHOST.EXE 00A8597A953A9C19B715CA40989FA5D9 Trojan SuspiciousFile
SYSHOST.EXE 00A8597A953A9C19B715CA40989FA5D9 Trojan Eldorado
SYSHOST.EXE 00A8597A953A9C19B715CA40989FA5D9 Fake Antivirus Winwebsec
SYSHOST.EXE 00A8597A953A9C19B715CA40989FA5D9 Trojan Lethic
SYSHOST.EXE 00A8597A953A9C19B715CA40989FA5D9 Trojan Agent

SYSHOST.EXE size: 76800 bytes
SYSHOST.EXE hash: 00A8597A953A9C19B715CA40989FA5D9

Created files:

%WinDir%\Installer\{89C602D0-B1A4-21F8-9229-F76172092608}\syshost.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\syshost32\Type: 10000000
HKLM\System\CurrentControlSet\Services\syshost32\Start: 02000000
HKLM\System\CurrentControlSet\Services\syshost32\ImagePath: “%WinDir%\Installer\{89C602D0-B1A4-21F8-9229-F76172092608}\syshost.exe” /service

Detected by UnHackMe:

SYSHOST.EXE
Default location: %WinDir%\INSTALLER\{89C602D0-B1A4-21F8-9229-F76172092608}\SYSHOST.EXE

Dropper information:
MD5: 00A8597A953A9C19B715CA40989FA5D9
File size: 76800 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images