• Home
  • About Us
    • Our Mission
    • Our Testing
    • Resources
    • Best Antivirus 2011
  • Recent News
    • Virus Removal Guides
    • Antivirus News
  • Installation Guide
  • Advanced Virus Removal
  • FAQ’s
  • Contact Us

Troj/BckDr-RJL Trojan Virus Infection Removal

Posted by ThreatDetector
/ January 4, 2012 / Posted in Uncategorized


Troj/BckDr-RJL Trojan Virus Infection Removal



The Troj/BckDr-RJL trojan virus is a dangerous trojan virus infection affecting computer users worldwide. It also goes by the name Troj/BckDr-RJL, Trojan:Win32/Dishigy.B and Trojan.Win32.Dishigy. This trojan was discovered on January 4th, 2012, by various trojan detection and prevention sources including Antivirus Help Center.


The Troj/BckDr-RJL trojan is extremely similar to other trojans in its method of operation. It can perform file system changes, memory modifications, registry value changes, and registry key changes. These types of trojan infections cause serious harm to your computer operating system as well as all files saved in your computer.


Trojans are also very popular for computer hackers due to their ability to install key loggers and other programs used for identity theft. A trojan can log the password to your online bank account and then forward it back to the trojan creator. The Troj/BckDr-RJL trojan virus may be capable of performing these malicious actions.


If you have been infected with Troj/BckDr-RJL, or any other trojan virus, it is highly recommended that you scan your computer and remove any infections that are found immediately.


  • 1. Start Virus Removal
  • 2. Retry The Download
  • 3. Advanced Removal Page
Our recommended virus removal program is called PC Tools Internet Security 2011. We have tested many different virus removal programs and after our testing we put our full 100% confidence with PC Tools for all trojan virus infections on your computer. PC Tools Internet Security 2011 will get rid of the virus on your computer!

Start Virus Removal Download

Did the download not start? Proceed to Step 2.
If you have tried to download the installation file and it will not start to download, keep clicking on the download link. Click on it at least 10 times until the download begins. If you continuously click and try to download the virus removal program, it will over-ride the infections attempt at stopping you.

Start Virus Removal Download

Still having trouble? Proceed to Step 3.
If you have tried both steps and it still hasn’t worked, please visit our Advanced Removal Page for advanced instructions and troubleshooting by clicking the button below.

Start Virus Removal Download

Modified System Files


Filename(s): %Windir%\keys.ini
File Size: 17 bytes
MD5: 0xB5013059E260E9FB7EB00D57B4FC7365
SHA-1: 0x3CE4A361F1674CB3A9BE22E474DE38E9969CFCDE
Alias: (not available)


Filename(s): %System%\drivers\svflooje.exe
File Size: 188,928 bytes
MD5: 0xB3DED173A95C9694D31AEA7AC0DCD85E
SHA-1: 0x86CFF037B4F386C21C0E7D6279A4D675A465E146
Alias: Troj/BckDr-RJL Trojan:Win32/Dishigy.B Trojan.Win32.Dishigy
Memory Modifications


Process Name: svflooje.exe
Process Filename: %System%\drivers\svflooje.exe
Main Module Size: 212,992 bytes


Process Name: Service Name
Process Filename: Display Name
Main Module Size: Status
: Service Filename


Process Name: svflooje
Process Filename: svflooje
Main Module Size: “Running”
: %System%\drivers\svflooje.exe


Process Name: svflooje.exe
Process Filename: %System%\drivers\svflooje.exe
Main Module Size: 212,992 bytes


Process Name: Service Name
Process Filename: Display Name
Main Module Size: Status
: Service Filename


Process Name: svflooje
Process Filename: svflooje
Main Module Size: “Running”
: %System%\drivers\svflooje.exe

Modified Registry Values
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SVFLOOJE000\Control]

*NewlyCreated* = 0×00000000

ActiveService = “svflooje”
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SVFLOOJE000]

Service = “svflooje”

Legacy = 0×00000001

ConfigFlags = 0×00000000

Class = “LegacyDriver”

ClassGUID = “{8ECC055D-047F-11D1-A537-0000F8753ED1}”

DeviceDesc = “svflooje”
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SVFLOOJE]

NextInstance = 0×00000001
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\svflooje\Enum]

0 = “Root\LEGACY_SVFLOOJE000″

Count = 0×00000001

NextInstance = 0×00000001
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\svflooje\Security]

Security = 01 00 14 80 90 00 00 00 9C 00 00 00 14 00 00 00 30 00 00 00 02 00 1C 00 01 00 00 00 02 80 14 00 FF 01 0F 00 01 01 00 00 00 00 00 01 00 00 00 00 02 00 60 00 04 00 00 00 00 00 14 00 FD 01 02 00 01 01 00 00 00 00 00 05 12 00 00 00 00 00 18 00 FF 01 0F 0
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\svflooje]

Type = 0×00000110

Start = 0×00000002

ErrorControl = 0×00000001

ImagePath = “%System%\drivers\svflooje.exe”

DisplayName = “svflooje”

ObjectName = “LocalSystem”
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SVFLOOJE000\Control]

*NewlyCreated* = 0×00000000

ActiveService = “svflooje”
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SVFLOOJE000]

Service = “svflooje”

Legacy = 0×00000001

ConfigFlags = 0×00000000

Class = “LegacyDriver”

ClassGUID = “{8ECC055D-047F-11D1-A537-0000F8753ED1}”

DeviceDesc = “svflooje”
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SVFLOOJE]

NextInstance = 0×00000001
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\svflooje\Enum]

0 = “Root\LEGACY_SVFLOOJE000″

Count = 0×00000001

NextInstance = 0×00000001
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\svflooje\Security]

Security = 01 00 14 80 90 00 00 00 9C 00 00 00 14 00 00 00 30 00 00 00 02 00 1C 00 01 00 00 00 02 80 14 00 FF 01 0F 00 01 01 00 00 00 00 00 01 00 00 00 00 02 00 60 00 04 00 00 00 00 00 14 00 FD 01 02 00 01 01 00 00 00 00 00 05 12 00 00 00 00 00 18 00 FF 01 0F 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\svflooje]

Type = 0×00000110

Start = 0×00000002

ErrorControl = 0×00000001

ImagePath = “%System%\drivers\svflooje.exe”

DisplayName = “svflooje”

ObjectName = “LocalSystem”



Leave a comment

Click here to cancel reply.

Virus Removal Guides

  • Security Sphere 2012
  • Computer Virus Infection alert! Thinkpoint virus removal available here!

Antivirus News

  • How to Install Windows 8 in VirtualBox
  • Computer Virus Infection alert! Thinkpoint virus removal available here!
  • 9-18-10 Who Will Have The Best Antivirus Software for 2011, Want to Know?

Help Center

  • Home
  • About Us
  • Our Testing
  • Trojan Virus Removal
  • Antivirus Installation

Resources

    Boot Into Safe Mode
  • Find Your Web Browser

PC Tools 2011

  • Download PC Tools
  • Trojan Virus Scan
  • Troubleshooting

Safe Site

  • McAfee Site Advisor
  • Google Safe Browsing
  • Webutation
Antivirus Help Center Search

Copyright © 2011 - Antivirus Help Center - All rights reserved. Terms & Conditions and Privacy Policy