sysbat.exe - Dangerous
sysbat.exe
Manual removal instructions:
Antivirus Report of sysbat.exe:
sysbat.exe
Backdoor.Palukka is a backdoor Trojan horse that can give a hacker access to the computer.
It is controlled by the hacker using IRC channels.
This particular backdoor Trojan provides a great deal of control over a compromised computer,
including file system access and the ability to use the compromised computer in a distributed Denial of Service attack.
When Backdoor.Palukka is run, it creates a copy of itself as \%Windows%\Sysbat.exe.
It may also add a value that refers to Sysbat.exe to one or more of the following registry keys to make sure this file is run on startup:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce
If the Trojan was run and a hacker executed files on the computer, it may be difficult to determine exactly what was done, even after the Trojan was removed.
| sysbat.exe | Malware |
| sysbat.exe | Dangerous |
| sysbat.exe | High Risk |
It is controlled by the hacker using IRC channels.
This particular backdoor Trojan provides a great deal of control over a compromised computer,
including file system access and the ability to use the compromised computer in a distributed Denial of Service attack.
When Backdoor.Palukka is run, it creates a copy of itself as \%Windows%\Sysbat.exe.
It may also add a value that refers to Sysbat.exe to one or more of the following registry keys to make sure this file is run on startup:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce
If the Trojan was run and a hacker executed files on the computer, it may be difficult to determine exactly what was done, even after the Trojan was removed.
Dmitry Sokolov:
I created UnHackMe in 2006 to fix the problem that antivioruses did not fix: detecting rootkits.
Since that time I work every day to fix the issues that antiviruses cannot.
If your antivirus have not helped you solve the problem, you should try UnHackMe.
We are a small company and you can ask me directly, if you have any questions.