I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free Download Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
FSBLSU.EXE – Backdoor Farfli removal
| File | MD5 | Virus Alias |
|---|---|---|
| FSBLSU.EXE | 236e7e7b253d7aa5d054bff2b5909f87 | Backdoor Farfli |
| FSBLSU.EXE | 236e7e7b253d7aa5d054bff2b5909f87 | Trojan Downloader |
| FSBLSU.EXE | 236e7e7b253d7aa5d054bff2b5909f87 | Rootkit TDSS |
| FSBLSU.EXE | 236e7e7b253d7aa5d054bff2b5909f87 | Trojan Agent |
| FSBLSU.EXE | 236e7e7b253d7aa5d054bff2b5909f87 | Trojan ADH |
FSBLSU.EXE size: 16875644 bytes
FSBLSU.EXE hash: 236E7E7B253D7AA5D054BFF2B5909F87
Created files:
%SysDir%\fsblsu.exe
Autostart registry keys:
HKLM\System\CurrentControlSet\Services\BITS\InitTime: 20140825
HKLM\System\CurrentControlSet\Services\BITS\Version: hsrOzPw=
HKLM\System\CurrentControlSet\Services\BITS\Group: uJmWnYmQiPw=
HKLM\System\CurrentControlSet\Services\Pqrstu Wxyabcde Ghi\Type: 10010000
HKLM\System\CurrentControlSet\Services\Pqrstu Wxyabcde Ghi\Start: 02000000
HKLM\System\CurrentControlSet\Services\Pqrstu Wxyabcde Ghi\DisplayName: Pqrstu Wxyabcde Ghijklmn Pqrs
HKLM\System\CurrentControlSet\Services\Pqrstu Wxyabcde Ghi\ImagePath: %WinDir%\System32\fsblsu.exe
HKLM\System\CurrentControlSet\Services\Pqrstu Wxyabcde Ghi\Description: Pqrstuvw Yabcdefgh Jklmnop Rstuvwxy Bcd
Detected by UnHackMe:
FSBLSU.EXE
Default location: %SYSDIR%\FSBLSU.EXE
Dropper information:
MD5: 0bb130c72e7389f4e77b82f7bd1c2737
File size: 98428 bytes