Solved! Use W_SERVER.DLL (Backdoor Prosti) Removal Guide

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

W_SERVER.DLL – Backdoor Prosti removal

File MD5 Virus Alias
W_SERVER.DLL b4c5f91ada217e40df9bc15714058369 Backdoor Prosti
W_SERVER.DLL b4c5f91ada217e40df9bc15714058369 Trojan, Suspicious File
W_SERVER.DLL b4c5f91ada217e40df9bc15714058369 Trojan Generic
W_SERVER.DLL b4c5f91ada217e40df9bc15714058369 Trojan Eldorado
W_SERVER.DLL b4c5f91ada217e40df9bc15714058369 Trojan Downloader
W_SERVER.DLL b4c5f91ada217e40df9bc15714058369 Trojan Agent

W_SERVER.DLL size: 130560 bytes
W_SERVER.DLL hash: B4C5F91ADA217E40DF9BC15714058369

Created files:

%SysDir%\W_Server.dll
%SysDir%\W_Server.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\Wtyue_Service\Type: 10010000
HKLM\System\CurrentControlSet\Services\Wtyue_Service\Start: 02000000
HKLM\System\CurrentControlSet\Services\Wtyue_Service\DisplayName: Wtyue_Service
HKLM\System\CurrentControlSet\Services\Wtyue_Service\ImagePath: %WinDir%\System32\W_Server.exe
HKLM\System\CurrentControlSet\Services\Wtyue_Service\Description: 57007400790075006500B700FE00CE00F100B600CB000000

Detected by UnHackMe:

W_SERVER.DLL
Default location: %SYSDIR%\W_SERVER.DLL

Dropper information:
MD5: 377474c295328309021adbb1a387756b
File size: 184320 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images