Solved! Use 1235200.DLL (Backdoor Farfli) Removal Guide

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

1235200.DLL – Backdoor Farfli removal

File MD5 Virus Alias
1235200.DLL dd85954acc570403cac45a93750a9e1b Backdoor Farfli
1235200.DLL dd85954acc570403cac45a93750a9e1b Trojan PcClient
1235200.DLL dd85954acc570403cac45a93750a9e1b Trojan Eldorado
1235200.DLL dd85954acc570403cac45a93750a9e1b Trojan Barys
1235200.DLL dd85954acc570403cac45a93750a9e1b Backdoor PcClien
1235200.DLL dd85954acc570403cac45a93750a9e1b Trojan Magania

1235200.DLL size: 103936 bytes
1235200.DLL hash: DD85954ACC570403CAC45A93750A9E1B

Created files:

C:\1235200.dll

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\Mqnela Nshfkyao Gjj\Type: 10010000
HKLM\System\CurrentControlSet\Services\Mqnela Nshfkyao Gjj\Start: 02000000
HKLM\System\CurrentControlSet\Services\Mqnela Nshfkyao Gjj\DisplayName: Ierugr Ybyvqcrn Bjlvvslx Mmkw
HKLM\System\CurrentControlSet\Services\Mqnela Nshfkyao Gjj\ImagePath: %SystemRoot%\System32\svchost.exe -k imgsvc
HKLM\System\CurrentControlSet\Services\RemoteAccess\RouterManagers\Ip\DLLPath: 43003A005C0031003200330035003200300030002E0064006C006C000000

Detected by UnHackMe:

1235200.DLL
Default location: C:\1235200.DLL

Dropper information:
MD5: 79537dde4f7007ad9bda4ac769797fe0
File size: 137216 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images