2777100.DLL – Backdoor Farfli

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

2777100.DLL – Backdoor Farfli removal

FileMD5Virus Alias
2777100.DLL 5fb857acb4c5f0bf85f86c2e9f239f5c Backdoor Farfli
2777100.DLL 5fb857acb4c5f0bf85f86c2e9f239f5c Trojan DLOADER
2777100.DLL 5fb857acb4c5f0bf85f86c2e9f239f5c Trojan PcClient
2777100.DLL 5fb857acb4c5f0bf85f86c2e9f239f5c Trojan Eldorado
2777100.DLL 5fb857acb4c5f0bf85f86c2e9f239f5c Trojan Downloader
2777100.DLL 5fb857acb4c5f0bf85f86c2e9f239f5c Backdoor PcClien

2777100.DLL size: 103936 bytes
2777100.DLL hash: 5FB857ACB4C5F0BF85F86C2E9F239F5C

Created files:

C:\2777100.dll
C:\windows\system32\dllcache\ws2help.dll
C:\windows\system32\drivers\420a0a1f.sys
C:\windows\system32\drivers\xpV3001.sys
C:\windows\system32\ws2helpXP.dll
C:\windows\system32\wshtcpip.dll
C:\windows\Tasks\TespayServer.exe
C:\windows\temp\svohcst.exe
C:\windows\temp\temp1.exe
C:\windows\temp\temp2.exe
C:\windows\temp\temp3.exe
C:\windows\temp\temp4.exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\Download: C:\windows\temp\svohcst.exe
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit: %WinDir%\System32\userinit.exe,%WinDir%\Tasks\TespayServer.exe|X- |2?`?Detected by UnHackMe:

2777100.DLL
Default location: C:\2777100.DLL

Dropper information:
MD5: 288a5cc1a2c387f8f28969df45fc0d30
File size: 456720 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images