Remove %SYSDIR%\DRIVERS\XBHI.SYS malware
%SYSDIR%\DRIVERS\XBHI.SYS Malware Removal Guide
Manual removal instructions:
Antivirus Report of %SYSDIR%\DRIVERS\XBHI.SYS:
%sysdir%\drivers\xbhi.sys
Full path on a computer: %SYSDIR%\DRIVERS\XBHI.SYS
Autostart registry keys:
HKLM\System\CurrentControlSet\services\xbhi\ImagePath: "system32\drivers\xbhi.sys"
Related Files:
%SYSDIR%\DRIVERS\ASS.SYS
%SYSDIR%\DRIVERS\XBHI.SYS
%SYSDIR%\MBLA.DLL
%SYSDIR%\MOTRPSS.DLL
%WINDIR%\TEMP\WER-51062-0.SYSDATA.XML
The file XBHI.SYS is malware related.
You must delete the file XBHI.SYS immediately!
Delete the file XBHI.SYS without delay!
Kill the process XBHI.SYS and remove XBHI.SYS from the Windows startup.
XBHI.SYS is related to: BehavesLike.Win32.BackdoorDTLsys.nh, XBHI.SYS.
Virustotal = 36/56
MD5 = 8DC4D858BD0C4EC8DDBFA7235CFE802A
File Size: 33792
File information:
CompanyName: Microsoft Corporation
FileVersion: 1, 0, 0, 1
LegalCopyright: Copyright 2009
%SYSDIR%\DRIVERS\XBHI.SYS | Malware |
%SYSDIR%\DRIVERS\XBHI.SYS | Dangerous |
%SYSDIR%\DRIVERS\XBHI.SYS | High Risk |
Autostart registry keys:
HKLM\System\CurrentControlSet\services\xbhi\ImagePath: "system32\drivers\xbhi.sys"
Related Files:
%SYSDIR%\DRIVERS\ASS.SYS
%SYSDIR%\DRIVERS\XBHI.SYS
%SYSDIR%\MBLA.DLL
%SYSDIR%\MOTRPSS.DLL
%WINDIR%\TEMP\WER-51062-0.SYSDATA.XML
The file XBHI.SYS is malware related.
You must delete the file XBHI.SYS immediately!
Delete the file XBHI.SYS without delay!
Kill the process XBHI.SYS and remove XBHI.SYS from the Windows startup.
XBHI.SYS is related to: BehavesLike.Win32.BackdoorDTLsys.nh, XBHI.SYS.
Virustotal = 36/56
MD5 = 8DC4D858BD0C4EC8DDBFA7235CFE802A
File Size: 33792
File information:
CompanyName: Microsoft Corporation
FileVersion: 1, 0, 0, 1
LegalCopyright: Copyright 2009
Dmitry Sokolov:
I created UnHackMe in 2006 to fix the problem that antivioruses did not fix: detecting rootkits.
Since that time I work every day to fix the issues that antiviruses cannot.
If your antivirus have not helped you solve the problem, you should try UnHackMe.
We are a small company and you can ask me directly, if you have any questions.