I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free Download Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
1235200.DLL – Backdoor Farfli removal
| File | MD5 | Virus Alias |
|---|---|---|
| 1235200.DLL | dd85954acc570403cac45a93750a9e1b | Backdoor Farfli |
| 1235200.DLL | dd85954acc570403cac45a93750a9e1b | Trojan PcClient |
| 1235200.DLL | dd85954acc570403cac45a93750a9e1b | Trojan Eldorado |
| 1235200.DLL | dd85954acc570403cac45a93750a9e1b | Trojan Barys |
| 1235200.DLL | dd85954acc570403cac45a93750a9e1b | Backdoor PcClien |
| 1235200.DLL | dd85954acc570403cac45a93750a9e1b | Trojan Magania |
1235200.DLL size: 103936 bytes
1235200.DLL hash: DD85954ACC570403CAC45A93750A9E1B
Created files:
C:\1235200.dll
Autostart registry keys:
HKLM\System\CurrentControlSet\Services\Mqnela Nshfkyao Gjj\Type: 10010000
HKLM\System\CurrentControlSet\Services\Mqnela Nshfkyao Gjj\Start: 02000000
HKLM\System\CurrentControlSet\Services\Mqnela Nshfkyao Gjj\DisplayName: Ierugr Ybyvqcrn Bjlvvslx Mmkw
HKLM\System\CurrentControlSet\Services\Mqnela Nshfkyao Gjj\ImagePath: %SystemRoot%\System32\svchost.exe -k imgsvc
HKLM\System\CurrentControlSet\Services\RemoteAccess\RouterManagers\Ip\DLLPath: 43003A005C0031003200330035003200300030002E0064006C006C000000
Detected by UnHackMe:
1235200.DLL
Default location: C:\1235200.DLL
Dropper information:
MD5: 79537dde4f7007ad9bda4ac769797fe0
File size: 137216 bytes