home

taskhostsv.exe

Windows

The executable taskhostsv.exe, “Host Process for Windows Tasks” has been detected as malware by 6 anti-virus scanners.
Publisher:
Microsoft*  (Invalid match)

Product:
Windows

Description:
Host Process for Windows Tasks

Version:
1.00

MD5:
c2173b24f98a61303fdd8294f523d6db

SHA-1:
9df4e53749b3b68d4c650604ce758e9f9b9d5b5b

SHA-256:
15339455610b9c0e9bf66e127e0862814c4c07b2d4f1b39331445d0355bc7bad

Scanner detections:
6 / 68

Status:
Malware

Analysis date:
4/18/2024 2:24:32 AM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
TR/Spy.Gen
7.11.136.64

Dr.Web
BACKDOOR.Trojan
9.0.1.0260

Malwarebytes
Trojan.FakeMS
v2014.09.17.11

Qihoo 360 Security
HEUR/Malware.QVM03.Gen
1.0.0.1015

Quick Heal
(Suspicious) - DNAScan
9.14.12.00

Trend Micro House Call
TROJ_GEN.F47V0224
7.2.260

File size:
272 KB (278,528 bytes)

Product version:
1.00

Original file name:
taskhostsv.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Windows\System32\taskhostsv.exe

File PE Metadata
Compilation timestamp:
1/9/2014 11:16:39 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
6144:N8zTWG9gE+5qjXPjhjVFjAA7WyUwggP6EE6dzN:pGs4vyzyUf0fP

Entry address:
0x2AF0

Entry point:
68, 70, 36, 40, 00, E8, EE, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, A4, EC, 78, 2C, 77, 90, 1A, 45, A5, 39, 48, D0, 98, 01, BC, CC, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 63, 6B, 65, 74, 73, 2E, 74, 61, 73, 6B, 68, 6F, 73, 74, 73, 76, 00, 43, 6F, 75, 6E, 74, 00, 00, 00, 00, FF, CC, 31, 00, 08, 39, B2, AA, 54, 12, 23, 6D, 45, A2, 60, BC, 70, D5, 94, 01, 55, E7, 5A, 4C, 52, 3F, EB, 87, 49, 89, 26, DC, A6, 2C, 06, 40, C1, 3A, 4F, AD, 33, 99, 66, CF, 11, B7, 0C, 00...
 
[+]

Entropy:
5.8001

Developed / compiled with:
Microsoft Visual Basic v5.0

Code size:
260 KB (266,240 bytes)

Remove taskhostsv.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.