Esbot
Esbot is a dangerous and rapidly spreading Internet worm that infects PCs running Windows operating computer with unfixed security vulnerabilities. Esbot is designed to give the remote attacker full unauthorized access to a compromised computer. It attempts to infect vulnerable remote PCs with random addresses, disables essential Windows components and restricts access to shared disk drives. Esbot runs on every OS startup and secretly works in background.
File System Modifications
- The following files were created in the system:
# File Name 1 mousebm.exe
Registry Modifications
- The following newly produced Registry Values are:
HKEY..\..\..\..{RegistryKeys}HKEY_LOCAL_MACHINESOFTWAREMicrosoftOLEEnableDCOM=NHKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlLsaestrictanonymous=1
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.