Solved! Use ZCFHYQ.EXE (Backdoor Farfli) Removal Guide

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

ZCFHYQ.EXE – Backdoor Farfli removal

FileMD5Virus Alias
ZCFHYQ.EXE e4565f30052b048d04bfd9f9b110e3eb Backdoor Farfli
ZCFHYQ.EXE e4565f30052b048d04bfd9f9b110e3eb Trojan UnwantedProgram
ZCFHYQ.EXE e4565f30052b048d04bfd9f9b110e3eb Trojan SuspiciousFile
ZCFHYQ.EXE e4565f30052b048d04bfd9f9b110e3eb Trojan Artemis
ZCFHYQ.EXE e4565f30052b048d04bfd9f9b110e3eb Trojan Generic
ZCFHYQ.EXE e4565f30052b048d04bfd9f9b110e3eb Trojan Click

ZCFHYQ.EXE size: 143360 bytes
ZCFHYQ.EXE hash: E4565F30052B048D04BFD9F9B110E3EB

Created files:

%SysDir%\zcfhyq.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\DirectX jrq\Type: 10010000
HKLM\System\CurrentControlSet\Services\DirectX jrq\Start: 02000000
HKLM\System\CurrentControlSet\Services\DirectX jrq\DisplayName: DirectX Remover yta for Windows(R).
HKLM\System\CurrentControlSet\Services\DirectX jrq\ImagePath: %WinDir%\System32\zcfhyq.exe
HKLM\System\CurrentControlSet\Services\DirectX jrq\Description: Microsoft(R) DirectX mid for Windows(R).

Detected by UnHackMe:

ZCFHYQ.EXE
Default location: %SYSDIR%\ZCFHYQ.EXE

Dropper information:
MD5: e4565f30052b048d04bfd9f9b110e3eb
File size: 143360 bytes

Leave a Reply