Solved! Use BEDFNF.SYS (Backdoor Koutodoor) Removal Guide

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

BEDFNF.SYS – Backdoor Koutodoor removal

FileMD5Virus Alias
BEDFNF.SYS 9085de6a6e42837a22b99ac5f63daf87 Backdoor Koutodoor
BEDFNF.SYS 9085de6a6e42837a22b99ac5f63daf87 Trojan XPACK
BEDFNF.SYS 9085de6a6e42837a22b99ac5f63daf87 Trojan Xema
BEDFNF.SYS 9085de6a6e42837a22b99ac5f63daf87 Trojan Eldorado
BEDFNF.SYS 9085de6a6e42837a22b99ac5f63daf87 Trojan Downloader
BEDFNF.SYS 9085de6a6e42837a22b99ac5f63daf87 Trojan Agent

BEDFNF.SYS size: 30144 bytes
BEDFNF.SYS hash: 9085DE6A6E42837A22B99AC5F63DAF87

Created files:

%SysDir%\drivers\bedfnf.sys
%SysDir%\OEplh.dll

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\lsly\Type: 01000000
HKLM\System\CurrentControlSet\Services\lsly\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\lsly\DisplayName: lsly
HKLM\System\CurrentControlSet\Services\lsly\ImagePath: %WinDir%\System32\drivers\bedfnf.sys

Detected by UnHackMe:

BEDFNF.SYS
Default location: %SYSDIR%\DRIVERS\BEDFNF.SYS

Dropper information:
MD5: 3a26c251a1f64d06eafbbee9885b0487
File size: 199168 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images