Solved! Use BLPHCAPRJ0EG9J.SCR (Rootkit TDSS) Removal Guide

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

BLPHCAPRJ0EG9J.SCR – Rootkit TDSS removal

File MD5 Virus Alias
BLPHCAPRJ0EG9J.SCR 7a534e60e0917b1eabb052379f7de01d Rootkit TDSS
BLPHCAPRJ0EG9J.SCR 7a534e60e0917b1eabb052379f7de01d Trojan (Suspicious File)
BLPHCAPRJ0EG9J.SCR 7a534e60e0917b1eabb052379f7de01d Trojan Generic
BLPHCAPRJ0EG9J.SCR 7a534e60e0917b1eabb052379f7de01d Trojan Click
BLPHCAPRJ0EG9J.SCR 7a534e60e0917b1eabb052379f7de01d Trojan DNAScan
BLPHCAPRJ0EG9J.SCR 7a534e60e0917b1eabb052379f7de01d Trojan FakeAV

BLPHCAPRJ0EG9J.SCR size: 118784 bytes
BLPHCAPRJ0EG9J.SCR hash: 7A534E60E0917B1EABB052379F7DE01D

Created files:

%SysDir%\blphcaprj0eg9j.scr
%SysDir%\lphcaprj0eg9j.exe
%Temp%\.tt5D.tmp.vbs

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\lphcaprj0eg9j: %WinDir%\System32\lphcaprj0eg9j.exe
HKCU\Control Panel\Desktop\SCRNSAVE.EXE: %WinDir%\System32\blphcaprj0eg9j.scr

Detected by UnHackMe:

BLPHCAPRJ0EG9J.SCR
Default location: %SYSDIR%\BLPHCAPRJ0EG9J.SCR

Dropper information:
MD5: d787f7d0e2797144b1fe55d9eb6fc790
File size: 186380 bytes

Leave a Reply