HackTool:WinNT/Tcpz.B Description

HackTool:WinNT/Tcpz.B is a destructive Trojan infection which intrudes the computer system stealthily without the victim's consent and knowledge. HackTool:WinNT/Tcpz.B functions as a device driver which patches the Windows TCP/IP stack device driver so as to make changes to the concurrent TCP connection attempts limit. HackTool:WinNT/Tcpz.B patches the tcpip.sys code in memory. HackTool:WinNT/Tcpz.B propagates through hijacked websites using drive-by download techniques, as well as through peer to peer applications such as chat applications and file downloading services. HackTool:WinNT/Tcpz.B also propagates through bundled third-party downloads and suspicious email attachments. Remove HackTool:WinNT/Tcpz.B to protect your PC from harm it can make to your computer system.

Aliases: Possible_Virus [TrendMicro], Win32/Pupil.A [AVG], DeepScan:Generic.Banker.OT.433E674B [BitDefender], W32/Behav-Heuristic-064 [TheHacker], Heur.Pck.Themida [Comodo], Packed/Themida [VirusBuster], W32/Themida_Packed!Eldorado [F-Prot], TrojWare.Win32.Spy.Banker.Gen [Comodo], TR/Crypt.FKM.Gen [AntiVir], Mal/BankSpy-C [Sophos], PUA.Packed.ASPack [ClamAV], Packed.Win32.Klone!IK [Emsisoft], Dropper/Win32.OnlineGameHack [AhnLab-V3], Packed.Win32.Klone [Ikarus] and Gen:Variant.Boigy.2 [nProtect].

Infected with HackTool:WinNT/Tcpz.B? Scan Your PC for Free

Download SpyHunter’s Spyware Scanner
to Detect HackTool:WinNT/Tcpz.B

Security Doesn't Let You Download SpyHunter or Access the Internet?

Solutions: Your computer may have malware hiding in memory that prevents any program, including SpyHunter, from executing on your computer. Follow to download SpyHunter and gain access to the Internet:
  • Use an alternative browser. Malware may disable your browser. If you're using IE, for example, and having problems downloading SpyHunter, you should open Firefox, Chrome or Safari browser instead.
  • Use a removable media. Download SpyHunter on another clean computer, burn it to a USB flash drive, DVD/CD, or any preferred removable media, then install it on your infected computer and run SpyHunter's malware scanner.
  • Start Windows in Safe Mode. If you can not access your Window's desktop, reboot your computer in 'Safe Mode with Networking' and install SpyHunter in Safe Mode.
  • IE Users: Disable proxy server for Internet Explorer to browse the web with Internet Explorer or update your anti-spyware program. Malware modifies your Windows settings to use a proxy server to prevent you from browsing the web with IE.

If you still can't install SpyHunter? View other possible causes of installation issues.

Technical Information

File System Details

HackTool:WinNT/Tcpz.B creates the following file(s):
# File Name Size MD5 Detection Count
1 %WINDIR%\Help\taskcys.exe 3,319,808 1074a5c5a2f60d8762309dce6d5cd257 75
2 %WINDIR%\System32\drivers\trs.sys 7,680 6f03810fe2a6f644f920c58a606b0af5 70
3 C:\HOME\rEvents.dll 452,050 74f7c7baab9d663a50893a513cf5b868 50
4 %WINDIR%\system32\oz90560.dll 258,048 1f13a75b7f11085c3e6fc7ae91884e27 45
5 %WINDIR%\system32\drivers\krndv32.sys 11,624 d5343be74351070f1e425c6ad894c7e8 31
6 %LOCALAPPDATA%\thlxd.exe 598,016 0d7636e91e4ca1ac26aca9436ee71249 17
7 %ALLUSERSPROFILE%\QuestScan\questscan153.exe 26,112 54bb0dba85c4ae28e4bc800e09bc5327 10
8 %PROGRAMFILES%\NickWare CoreFaster Ultra\NWcfuTray.exe 178,176 fd52acf59611786175c22806e84bc3e1 5
9 %USERPROFILE%\M-1-95-7484-7337-8453\winsvc.exe 143,360 d943e935aa3209be7dd4a7de58310e20 3
10 %WINDIR%\system32\arking.exe 206,848 642c2409b99e92c9c8bb9bb9c722eba4 2
11 winlogon.exe N/A
12 questbrwsearch.dll N/A
13 GoogleUpdate.exe N/A
14 9y9u.sys N/A
15 Recycle.Bin.exe N/A
16 KeyGen.exe N/A
17 scanquery155.exe N/A

Site Disclaimer

Leave a Reply

IMPORTANT! To be able to proceed, you need to solve the following simple math.
Please leave these two fields as-is:
What is 4 + 11 ?