Backdoor PcClien – enofyv.dll – 1ad5a90bf8afbb62ce06aa0c8daca6f6

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

Backdoor PcClien
Also known as: Backdoor Bifrose, Fake Antivirus SecurityShield
SHA256: a9de8b406c8aaf44f379189184bf426e8e14df61a4a038450b446f23bab486b5
SHA1: d7c042ee295b4196f72ba0e724a216e07379df51
MD5: 1ad5a90bf8afbb62ce06aa0c8daca6f6
File size: 48128 bytes

Created files:

%Program Files Common%\Microsoft Shared\enofyv.dll – Backdoor PcClien
%Program Files Common%\Microsoft Shared\enofyv.exe – Backdoor PcClien
%Temp%\enofyv.dll – Backdoor PcClien
%Temp%\enofyvreg.dll – Backdoor PcClien

Backdoor PcClien created autostart registry keys:

HKLM\System\CurrentControlSet\Services\COMSysApp\Type: 10010000
HKLM\System\CurrentControlSet\Services\COMSysApp\Start: 02000000
HKLM\System\CurrentControlSet\Services\COMSysApp\ImagePath: 43003A005C00500072006F006700720061006D002000460069006C00650073005C0043006F006D006D006F006E002000460069006C00650073005C004D006900630072006F0073006F006600740020005300680061007200650064005C0065006E006F006600790076002E00650078006500200063006F006D007300790073006100700070000000

Leave a Reply