mssysinfo32.exe - Dangerous
mssysinfo32.exe
Manual removal instructions:
Antivirus Report of mssysinfo32.exe:
mssysinfo32.exe
MsSysInfo32.exe is a Trojan/Backdoor Backdoor.Verify.
MsSysInfo32.exe tries to terminate antiviral programs installed on a user computer.
MsSysInfo32.exe opens a back door on TCP port 1906 and 1907.
MsSysInfo32.exe spreads via open network shares.
Related files:
%System%\MsIdle32.exe
%System%\MsIdle32Hook.dll
%System%\MsSysInfo32.exe
C:\MsBootMgr.exe
Adds the value:
"MsIdle32.exe" = "C:\WINNT\system32\MsIdle32.exe"
"MsBootMgr.exe" = "C:\MsBootMgr.exe"
"Shell" = "C:\WINNT\system32\MsIdle32.exe"
to the Windows startup registry keys.
Removal:
Kill MsSysInfo32.exe process and remove MsSysInfo32.exe from Windows startup.
| mssysinfo32.exe | Malware |
| mssysinfo32.exe | Dangerous |
| mssysinfo32.exe | High Risk |
MsSysInfo32.exe tries to terminate antiviral programs installed on a user computer.
MsSysInfo32.exe opens a back door on TCP port 1906 and 1907.
MsSysInfo32.exe spreads via open network shares.
Related files:
%System%\MsIdle32.exe
%System%\MsIdle32Hook.dll
%System%\MsSysInfo32.exe
C:\MsBootMgr.exe
Adds the value:
"MsIdle32.exe" = "C:\WINNT\system32\MsIdle32.exe"
"MsBootMgr.exe" = "C:\MsBootMgr.exe"
"Shell" = "C:\WINNT\system32\MsIdle32.exe"
to the Windows startup registry keys.
Removal:
Kill MsSysInfo32.exe process and remove MsSysInfo32.exe from Windows startup.
Dmitry Sokolov:
I created UnHackMe in 2006 to fix the problem that antivioruses did not fix: detecting rootkits.
Since that time I work every day to fix the issues that antiviruses cannot.
If your antivirus have not helped you solve the problem, you should try UnHackMe.
We are a small company and you can ask me directly, if you have any questions.