I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.
XKJTKS.EXE – Backdoor Farfli removal
| File | MD5 | Virus Alias |
|---|---|---|
| XKJTKS.EXE | 6aec1bccf727bd5a690ffa6e69c50ccd | Backdoor Farfli |
| XKJTKS.EXE | 6aec1bccf727bd5a690ffa6e69c50ccd | Trojan XPACK |
| XKJTKS.EXE | 6aec1bccf727bd5a690ffa6e69c50ccd | Trojan Downloader |
| XKJTKS.EXE | 6aec1bccf727bd5a690ffa6e69c50ccd | Trojan ZBot |
| XKJTKS.EXE | 6aec1bccf727bd5a690ffa6e69c50ccd | Virus Sality |
| XKJTKS.EXE | 6aec1bccf727bd5a690ffa6e69c50ccd | Trojan Crypt |
XKJTKS.EXE size: 135168 bytes
XKJTKS.EXE hash: 6AEC1BCCF727BD5A690FFA6E69C50CCD
Created files:
%WinDir%\xkjtks.exe
Autostart registry keys:
HKLM\System\CurrentControlSet\Services\Pqrstu Wxyabcde Ghi\Type: 10010000
HKLM\System\CurrentControlSet\Services\Pqrstu Wxyabcde Ghi\Start: 02000000
HKLM\System\CurrentControlSet\Services\Pqrstu Wxyabcde Ghi\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\Pqrstu Wxyabcde Ghi\DisplayName: Pqrstu Wxyabcde Ghijklmn Pqrs
HKLM\System\CurrentControlSet\Services\Pqrstu Wxyabcde Ghi\ImagePath: %WinDir%\xkjtks.exe
HKLM\System\CurrentControlSet\Services\Pqrstu Wxyabcde Ghi\Description: Pqrstuvw Yabcdefgh Jklmnop Rstuvwxy Bcd
Detected by UnHackMe:
XKJTKS.EXE
Default location: %WinDir%\XKJTKS.EXE
Dropper information:
MD5: 6aec1bccf727bd5a690ffa6e69c50ccd
File size: 135168 bytes