WINHE804.EXE is Trojan Yoddos

Dmitry Sokolov recommends his nice removal tool: UnHackMe


UnHackMe quickly removes rootkits/malware/adware/browser hijack issues!

: Solved!
5 Stars (5 / 5)


Is the file WINHE804.EXE located on your computer? Then your computer is infected.
We do suggest you should remove WINHE804.EXE from your computer as soon as possible.
WINHE804.EXE is Trojan/Backdoor.
Kill the process WINHE804.EXE and remove WINHE804.EXE from the Windows startup.

Malware Analysis of WINHE804.EXE
Full path on a computer: %SysDir%\WinHe804.exe

Detected by UnHackMe:

WINHE804.EXE
Default location: %SysDir%\WinHe804.exe

Removal Results: Success
Number of reboot: 1

WINHE804.EXE is known as:

Trojan.Yoddos

WINHE804.EXE hash:

  • MD5: cd7bc2189edaa6a08893b40eea0a8f0e
The file tries to connect to the dangerous web site.
How to quickly detect WINHE804.EXE presence?

Registry:
  • HKLM\System\CurrentControlSet\Enum\Root\LEGACY_WIN804\0000\Service: “Win804″
  • HKLM\System\CurrentControlSet\Enum\Root\LEGACY_WIN804\0000\DeviceDesc: “Windows804″
  • HKLM\System\CurrentControlSet\Services\Win804\ImagePath: “%SysDir%\WinHe804.exe”
  • HKLM\System\CurrentControlSet\Services\Win804\DisplayName: “Windows804″
  • HKLM\System\CurrentControlSet\Services\Win804\Description: “Windows Help System for804″
Files:
  • %SysDir%\WinHe804.exe

UnHackMe removes malware invisible for your antivirus!

Free Download

UnHackMe is compatible with most antivirus software.
UnHackMe is 100% CLEAN, which means it does not contain any form of malware, including adware, spyware, viruses, trojans and backdoors. VirusTotal (0/56).
System Requirements: Windows 2000-Windows 8.1. UnHackMe uses minimum of computer resources.

Testimonials:

Simon:
UnHackMe is a success where others have failed. We have used the software for sometime. Thank you for a great product, which actually works and we believe in the developers.

Bob:
The UnHackMe is a real program, no spyware or phish and works great and is easy to use. Enjoy!

Leave a Reply