KERNELSUS is Trojan Injector

April 18, 2012 by NightWatcher
Filed under: Malware 
: Solved!

Fix it immediately:

The file KERNELSUS is malware related.
You must delete the file KERNELSUS immediately!
Delete the file KERNELSUS without delay!
Kill the process KERNELSUS and remove KERNELSUS from the Windows startup.

Malware Analysis of KERNELSUS
Full path on a computer: %Program Files%Zernel SSystemKernelSus

Detected by UnHackMe:

KERNELSUS
Default location: %Program Files%Zernel SSystemKernelSus

Removal Results: Success
Number of reboot: 1

KERNELSUS is known as:

Trojan.Injector, Trojan.ADH

KERNELSUS hash:

  • MD5: 4bc2ea0f5ffa2af206c4e814843e6284
How to quickly detect KERNELSUS presence?

Registry:
  • HKLMSoftwareMicrosoftActive SetupInstalled Components{BA6A66C7-E988-1CC9-50E8-B9E3615CFE89}stubpath: “%Program Files%Zernel SSystemKernelSus s”
Folders:
  • %Program Files%Zernel SSystem
Files:
  • %Program Files%Zernel SSystemKernelSus
  • %Program Files%Zernel SSystemlogg.dat


Recommended: UnHackMe anti-rootkit and anti-malware

Premium software: RegRun Security Suite (Good choice for removal and protection)

Written by

Malware Hunter.

Tags: Injector, KERNELSUS, Trojan

Comments

Tell me what you're thinking...
and oh, if you want a pic to show with your comment, go get a gravatar!

You must be logged in to post a comment.