Loading ...|
|
Tweet |  More |
Backdoor.Hikit Description
Backdoor.Hikit is a Trojan that opens a backdoor on the infected machine. When Backdoor.Hikit is executed, it may drop several malevolent files. Backdoor.Hikit uses a non-trusted certificate for loading the driver. Backdoor.Hikit may also modify the Windows registry so that it can run automatically every time you start Windows. Backdoor.Hikit enables cybercriminals to obtain remote access and control over the affected computer in order to execute harmful activities.
Type: Backdoors
How Can You Detect Backdoor.Hikit?
Backdoor.Hikit Removal Details
Backdoor.Hikit has typically the following processes in memory:
- %System%\drivers\W7fw.sys
- %Temp%\w7fw.sys
Backdoor.Hikit creates the following files in the system:
- %Temp%\w7fw.inf
- %Temp%\w7fw.cat
- %Temp%\w7fw_m.inf
Backdoor.Hikit creates the following registry entries:
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Driver Signing\”Policy” = “00″
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Non-Driver Signing\”Policy” = “00″
- HKEY_LOCAL_MACHINE\Software\Microsoft\SystemCertificates\AuthRoot\Certificates\[HEXADECIMAL VALUE]\”Blob” = “[BINARY DATA]”
Important Article Disclaimer
This entry was last updated on 08/27/12 and posted on 08/27/12.
You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.
Backdoor.Hikit
Leave a Comment
Note: Abusive comments are not allowed. Please do not post comments regarding technical support issues. ESG customers that have issues with SpyHunter should open a customer support ticket.