CTFMON.EXE – Worm Vobfus

Worm No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

CTFMON.EXE – Worm Vobfus removal

File MD5 Virus Alias
CTFMON.EXE 255c527ce706b188f2537082cda8a281 Worm Vobfus
CTFMON.EXE 255c527ce706b188f2537082cda8a281 Trojan SuspiciousFile
CTFMON.EXE 255c527ce706b188f2537082cda8a281 Trojan Hllw
CTFMON.EXE 255c527ce706b188f2537082cda8a281 Trojan Krap
CTFMON.EXE 255c527ce706b188f2537082cda8a281 Trojan Agent

CTFMON.EXE size: 46592 bytes
CTFMON.EXE hash: 255C527CE706B188F2537082CDA8A281

Created files:

C:\Recycled\CTFMON.EXE
C:\Recycled\SMSS.EXE
C:\Recycled\SPOOLSV.EXE
C:\Recycled\SVCHOST.EXE

Autostart registry keys:

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit: C:\recycled\SVCHOST.exe,
HKCU\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell: Explorer.exe “C:\recycled\SVCHOST.exe”

Detected by UnHackMe:

CTFMON.EXE
Default location: C:\RECYCLED\CTFMON.EXE

Dropper information:
MD5: 0e947329d9c3b9973e46c56c504f540e
File size: 46592 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images