I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free Download Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
MSFTP.DLL – Trojan Downloader removal
| File | MD5 | Virus Alias |
|---|---|---|
| MSFTP.DLL | 11bf9bea80add82f873e4c31b9d28d2e | Trojan Downloader |
| MSFTP.DLL | 11bf9bea80add82f873e4c31b9d28d2e | Trojan DLOADER |
| MSFTP.DLL | 11bf9bea80add82f873e4c31b9d28d2e | Trojan Generic |
| MSFTP.DLL | 11bf9bea80add82f873e4c31b9d28d2e | Trojan Eldorado |
| MSFTP.DLL | 11bf9bea80add82f873e4c31b9d28d2e | Trojan Agent |
| MSFTP.DLL | 11bf9bea80add82f873e4c31b9d28d2e | Trojan Small |
MSFTP.DLL size: 5120 bytes
MSFTP.DLL hash: 11BF9BEA80ADD82F873E4C31B9D28D2E
Created files:
%SysDir%\drivers\spool.exe
%SysDir%\msftp.dll
%Local AppData%\cftmon.exe
%Temp%\1293.tmp.lst
%Temp%\2AD5.tmp.lst
%Temp%\4C5E.tmp.lst
%UserProfile%\msftp.dll
Autostart registry keys:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\autoload: %Local AppData%\cftmon.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\ntuser: %WinDir%\System32\drivers\spool.exe
HKLM\System\CurrentControlSet\Services\Schedule\ImagePath: 43003A005C00570049004E0044004F00570053005C00730079007300740065006D00330032005C0064007200690076006500720073005C00730070006F006F006C002E006500780065000000
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\autoload: %Local AppData%\cftmon.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\ntuser: %WinDir%\System32\drivers\spool.exe
Detected by UnHackMe:
MSFTP.DLL
Default location: %SYSDIR%\MSFTP.DLL
Dropper information:
MD5: 3b6c1696515d74ec0575d3aa7b473488
File size: 106470 bytes