Solved! Use SVCHSOT.EXE (Backdoor Farfli) Removal Guide

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

SVCHSOT.EXE – Backdoor Farfli removal

File MD5 Virus Alias
SVCHSOT.EXE b935c17359604dc35b0e0851e22eecac Backdoor Farfli
SVCHSOT.EXE b935c17359604dc35b0e0851e22eecac Trojan SuspiciousFile
SVCHSOT.EXE b935c17359604dc35b0e0851e22eecac Trojan PcClient
SVCHSOT.EXE b935c17359604dc35b0e0851e22eecac Trojan Artemis
SVCHSOT.EXE b935c17359604dc35b0e0851e22eecac Trojan Generic
SVCHSOT.EXE b935c17359604dc35b0e0851e22eecac Trojan Eldorado

SVCHSOT.EXE size: 141824 bytes
SVCHSOT.EXE hash: B935C17359604DC35B0E0851E22EECAC

Created files:

%SysDir%\SBZHW.exe
%SysDir%\svchsot.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\Windows Test\Type: 10000000
HKLM\System\CurrentControlSet\Services\Windows Test\Start: 02000000
HKLM\System\CurrentControlSet\Services\Windows Test\DisplayName: Windows Test My Test Server
HKLM\System\CurrentControlSet\Services\Windows Test\ImagePath: %WinDir%\System32\svchsot.exe
HKLM\System\CurrentControlSet\Services\Windows Test\Description: This is Windows Test My Test Server.

Detected by UnHackMe:

SVCHSOT.EXE
Default location: %SYSDIR%\SVCHSOT.EXE

Dropper information:
MD5: b935c17359604dc35b0e0851e22eecac
File size: 141824 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images