Rootkit.Win32.Agent.bhnc
Rootkit.Win32.Agent.bhnc is a dangerous rootkit parasite which uses malicious tricks to download nasty malware threats from the web. Rootkit.Win32.Agent.bhnc opens up firewalls and gathers confidential data such as personal financial information. Rootkit.Win32.Agent.bhnc also downloads additional components before the hackers gain the remote access to the affected computer. Rootkit.Win32.Agent.bhnc definitely is an identified security threat and needs to be removed Rootkit.Win32.Agent.bhnc immediately after detection.
File System Details
Rootkit.Win32.Agent.bhnc may create the following file(s):
| # | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|
| 1. | %Documents and Settings%\[UserName]\Start Menu\ Activate.lnk | |
| 2. | %Documents and Settings%\[UserName]\Start Menu\ Settings.lnk |
Registry Details
Rootkit.Win32.Agent.bhnc may create the following registry entry or registry entries:
HKEY_CURRENT_USER/Software\Microsoft\Windows\CurrentVersion\Run
HKEY_CURRENT_USER\Software\Classes\secfile
HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Winlogon 'Shell' = '%UserProfile%\Application Data\antispy.exe'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System 'DisableTaskMgr' = '1'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings 'WarnOnPostRedirect' = '0'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments 'SaveZoneInformation' = '1'
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.