Skip to main content

UnHackMe

Newest viruses and malware

Trojan Delf – explorer.exe – 736dcd60f15788103cbadf91861c77e6

August 25, 2012

Alex NightWatcher

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Trojan Delf
Also known as: Trojan Eldorado, Trojan Generic
SHA256: 3ebcd44c0866cdb27df4a9c1640e50c4d169b6051c23fc3825828edfdd5deb64
SHA1: 60d689235d9e46e574eafd497643349fcb8849b7
MD5: 736dcd60f15788103cbadf91861c77e6
File size: 678912 bytes

Created files:

%SysDir%\config\explorer.exe – Trojan Delf

Trojan Delf created autostart registry keys:

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\UserInit: %WinDir%\System32\userinit.exe,%WinDir%\System32\config\explorer.exe
HKLM\System\CurrentControlSet\Services\wscsvc\Start: 04000000
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\Operating System: %WinDir%\System32\config\explorer.exe

EXPLORER++.EXE Trojan.Delf

About Alex NightWatcher

Malware Hunter

View all posts by Alex NightWatcher →

Forgot password?

Please put in your email: Send me my password!

This blog post
All blog posts

Subscribe to this blog post's comments through...

RSS Icon RSS Feed

Subscribe via email

Subscribe to this blog's comments through...

RSS Icon RSS Feed

Subscribe via email

Follow the discussion

Comments

Logging you in...

Login to IntenseDebate

Or create an account

Username or Email:

Password:

Cancel Login

WordPress.com

Username or Email:

Password:

Lost your password?

Cancel Login

Dashboard | Edit profile | Logout

Logged in as

Disable comments for this page

Login or signup now to comment.

There are no comments posted yet. Be the first one!

Post a new comment

Comment as a Guest, or login:

Login to IntenseDebate
Login to WordPress.com

Name

Email

Website (optional)

Displayed next to your comments.

Not displayed publicly.

If you have a website, link to it here.

Posting anonymously.

Tweet this comment

Submit Comment

Subscribe to

Comments by IntenseDebate

Reply as a Guest, or login:

Login to IntenseDebate
Login to WordPress.com

Name

Email

Website (optional)

Displayed next to your comments.

Not displayed publicly.

If you have a website, link to it here.

Posting anonymously.

Tweet this comment

Cancel Submit Comment

Subscribe to

Loading IntenseDebate Comments...

Leave a Reply Cancel reply

You must be logged in to post a comment.

Post navigation

Trojan ZBot – eqexd.exe – 38cbb8e3b99a0832daebd471219c762d

Trojan ZBot – jeuwyl.exe – 2538515fb1e8be5d0aa65f34c3c6e767

Recent Questions

Answered: Idt opens mutiple tabs of any browser automatically
Answered: emsax.co.in has not been removed
Answered: Web Pages close or redirect. mail switches inbox to spam
Answered: lootsearchgood.com
Answered: regasm.exe problem - returning!
Answered: r.v2i8b.com infected chrome
Answered: shorcut virus from pendrive
Answered: apertura e la chiusura del carrello del masterizzatore.
Answered: Bivos.xyz is still sending motifications, even after fixing
Answered: pogieing virus not found by UnHackMe

Wildcat Cyber Patrol

How to Turn On or Off Periodic Scanning with Microsoft Defender Antivirus in Windows 10?
How to set or remove Windows Defender exclusions for process?
Remove THESUPERSAMPLES.COM virus (Removal Guide)
Remove THEREWARDLOCKER.COM virus (Removal Guide)
Remove TENSOCOIN.COM virus (Removal Guide)
Remove SWAPROTOCOL.XYZ virus (Removal Guide)
Remove SHUSSAUSACH.COM virus (Removal Guide)
Remove PLIADSOLUTIONS.AZUREWEBSITES.NET virus (Removal Guide)
Remove MECHABIPTOUTH.COM virus (Removal Guide)
Remove LUSSEENGOUCKO.COM virus (Removal Guide)
Remove HIGHLEVELNETWORK.CO.IN virus (Removal Guide)
Remove FOXBREEZE.INFO virus (Removal Guide)
Remove 1WIVFO.LIFE virus (Removal Guide)
Microsoft Apologizes for Wrongly Removing Popular VSCode Extensions
Remove Z.TORRENT24.TOP virus (Removal Guide)
Remove WOOGEEWOON.NET virus (Removal Guide)
Remove PUSHSUBNOW.TOP virus (Removal Guide)
Remove NEWSANDADS.TOP virus (Removal Guide)
Remove ENESCHROTIOUS.CO.IN virus (Removal Guide)
Remove AUTAILORTOMSAUR.COM virus (Removal Guide)
Remove ATENTHERELERO.ORG virus (Removal Guide)
Facebook Warns of Actively Exploited FreeType 2 Vulnerability
Remove WWW.TOPWEALTHINFO.COM virus (Removal Guide)
Remove VFIREWALL.PRO virus (Removal Guide)
Remove LIAISON-RAPIDE.COM virus (Removal Guide)
Remove FRONTLEADS.TOP virus (Removal Guide)
Remove BOSHOOGNAIN.COM virus (Removal Guide)
How to set or remove Windows Defender exclusions for folders?
Remove TERRIFICTC.NET virus (Removal Guide)
Remove ADW9.COM virus (Removal Guide)

Recent Posts

Remove THESUPERSAMPLES.COM virus (Removal Guide)
Remove THEREWARDLOCKER.COM virus (Removal Guide)
Remove TENSOCOIN.COM virus (Removal Guide)
Remove SWAPROTOCOL.XYZ virus (Removal Guide)
Remove SHUSSAUSACH.COM virus (Removal Guide)
Remove PLIADSOLUTIONS.AZUREWEBSITES.NET virus (Removal Guide)
Remove MECHABIPTOUTH.COM virus (Removal Guide)
Remove LUSSEENGOUCKO.COM virus (Removal Guide)
Remove INSMARTAIR.COM virus (Removal Guide)
Remove HIGHLEVELNETWORK.CO.IN virus (Removal Guide)
Remove FOXBREEZE.INFO virus (Removal Guide)
Remove 1WIVFO.LIFE virus (Removal Guide)
Remove Z.TORRENT24.TOP virus (Removal Guide)
Remove WOOGEEWOON.NET virus (Removal Guide)
Remove PUSHSUBNOW.TOP virus (Removal Guide)
Remove NEWSANDADS.TOP virus (Removal Guide)
Remove ENESCHROTIOUS.CO.IN virus (Removal Guide)
Remove AUTHENTI-CAPTURE-HUB.COM virus (Removal Guide)
Remove AUTAILORTOMSAUR.COM virus (Removal Guide)
Remove ATENTHERELERO.ORG virus (Removal Guide)
Remove WWW.TOPWEALTHINFO.COM virus (Removal Guide)
Remove VFIREWALL.PRO virus (Removal Guide)
Remove PIZOOTOPHACS.CO.IN virus (Removal Guide)
Remove LIAISON-RAPIDE.COM virus (Removal Guide)
Remove FRONTLEADS.TOP virus (Removal Guide)
Remove BOSHOOGNAIN.COM virus (Removal Guide)
Remove TERRIFICTC.NET virus (Removal Guide)
Remove ADW9.COM virus (Removal Guide)
Remove 123SPEEDYCDN.COM virus (Removal Guide)
Remove STAITSOARDACMOA.NET virus (Removal Guide)

Search for:

Privacy Policy Terms and Conditions

Thank you for theme by IdeaBox Credits: Thank you to www.icons8.com for Icons and Images