kgzgjkpcw.exe - Dangerous
kgzgjkpcw.exe
Manual removal instructions:
Antivirus Report of kgzgjkpcw.exe:
kgzgjkpcw.exe
Backdoor.Sdbot.T is a backdoor Trojan horse that is similar to Backdoor.Sdbot.S.
It allows an attacker to control an infected computer.
Copies itself as %System%\kgzgjkpcw.exe and %System%\zonealarm.exe.
Adds the value: "Winsock2 driver"="kgzgjkpcw.exe"
to the registry keys:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Adds the value: "Winsock2 driver"="ZONEALARM.EXE" (It is not valid file name of ZONEALARM antiviral program)
to the registry keys:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Attempts to end the following processes: Netstat.exe; Msconfig.exe; Regedit.exe
Uses its own IRC client to connect to a specified IRC channel and wait for the commands to perform different actions.
Use RegRun Startup Optimizer to automatically remove this trojan.
| kgzgjkpcw.exe | Malware |
| kgzgjkpcw.exe | Dangerous |
| kgzgjkpcw.exe | High Risk |
It allows an attacker to control an infected computer.
Copies itself as %System%\kgzgjkpcw.exe and %System%\zonealarm.exe.
Adds the value: "Winsock2 driver"="kgzgjkpcw.exe"
to the registry keys:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Adds the value: "Winsock2 driver"="ZONEALARM.EXE" (It is not valid file name of ZONEALARM antiviral program)
to the registry keys:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Attempts to end the following processes: Netstat.exe; Msconfig.exe; Regedit.exe
Uses its own IRC client to connect to a specified IRC channel and wait for the commands to perform different actions.
Use RegRun Startup Optimizer to automatically remove this trojan.
Dmitry Sokolov:
I created UnHackMe in 2006 to fix the problem that antivioruses did not fix: detecting rootkits.
Since that time I work every day to fix the issues that antiviruses cannot.
If your antivirus have not helped you solve the problem, you should try UnHackMe.
We are a small company and you can ask me directly, if you have any questions.