HOOK.DLL – Trojan FlyStudio

January 31, 2013

Alex NightWatcher

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

HOOK.DLL – Trojan FlyStudio removal

File	MD5	Virus Alias
HOOK.DLL	4659f476b80e067bceeaa8e821c3fab8	Trojan FlyStudio
HOOK.DLL	4659f476b80e067bceeaa8e821c3fab8	Suspicious File
HOOK.DLL	4659f476b80e067bceeaa8e821c3fab8	Trojan Generic
HOOK.DLL	4659f476b80e067bceeaa8e821c3fab8	Trojan AddUser
HOOK.DLL	4659f476b80e067bceeaa8e821c3fab8	Trojan Siggen
HOOK.DLL	4659f476b80e067bceeaa8e821c3fab8	Trojan Agent

HOOK.DLL size: 4096 bytes
HOOK.DLL hash: 4659F476B80E067BCEEAA8E821C3FAB8

Created files:

%TEMP%\UnicodeFile.bin
%TEMP%\fengye66.exe
%TEMP%\Hook.dll
%TEMP%\SkinH_EL.dll
%TEMP%\superec.ProcessMemory.sys

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\ialdnwxf\Type: 01000000
HKLM\System\CurrentControlSet\Services\ialdnwxf\Start: 03000000
HKLM\System\CurrentControlSet\Services\ialdnwxf\DisplayName: ialdnwxf
HKLM\System\CurrentControlSet\Services\ialdnwxf\ImagePath: %TEMP%\\superec.ProcessMemory.sys

Detected by UnHackMe:

HOOK.DLL
Default location: %TEMP%\HOOK.DLL

Dropper information:
MD5: 09aad2de6c331263ea7bf0e5939944b9
File size: 1380352 bytes

Leave a Reply Cancel reply

You must be logged in to post a comment.