Trojan ADH – kplh86.dll – 0c92269abd185f1cc9218d0906f49a44

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Trojan ADH
Also known as: Trojan CI, Trojan Kryptik
SHA256: aba05e8d1d1bb3577a154b8f3b2fb6218e93616d31c335f249674c216e070f69
SHA1: d9c5b83b49649f60eea0c58f7eed16b49bacb116
MD5: 0c92269abd185f1cc9218d0906f49a44
File size: 216160 bytes

Created files:

%AppData%\Remote\kplh86.dll – Trojan ADH

Trojan ADH created autostart registry keys:

HKLM\Software\Microsoft\Active Setup\Installed Components\{4D3FCFFB-CF11-433D-8C30-591D29A8B2FB} : W3C Inc.
HKLM\Software\Microsoft\Active Setup\Installed Components\{4D3FCFFB-CF11-433D-8C30-591D29A8B2FB}\Locale: EN
HKLM\Software\Microsoft\Active Setup\Installed Components\{4D3FCFFB-CF11-433D-8C30-591D29A8B2FB}\StubPath: rundll32.exe “%AppData%\Remote\kplh86.dll”, UnregisterDll
HKLM\Software\Microsoft\Active Setup\Installed Components\{4D3FCFFB-CF11-433D-8C30-591D29A8B2FB}\IsInstalled: 01000000
HKLM\Software\Microsoft\Active Setup\Installed Components\{4D3FCFFB-CF11-433D-8C30-591D29A8B2FB}\Version: 4,3,6,3

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images