How to remove newtrf.dll
newtrf.dll
The module newtrf.dll has been detected as Worm.Ramnit
File Details
| Product Name: | Nero - Burning Rom |
| Company Name: | Ahead Software AG Karlsbad Germany Phone: ++49-7248-911-800 Fax: ++49-7248-911-888 e-mail: info@nero.com |
| MD5: | 8a1ca2aeb8f93b1944d920da690efd58 |
| Size: | 1 MB |
| First Published: | 2017-12-22 12:07:01 (7 years ago) |
| Latest Published: | 2017-12-22 12:07:09 (7 years ago) |
| Status: | Worm.Ramnit (on last analysis) | |
| Analysis Date: | 2017-12-22 12:07:09 (7 years ago) |
Common Places:
| %temp%\5a93fdf5.tmp |
Geography:
| 100.0% |
OS Version:
| Windows 7 | 100.0% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x22000000 |
| Entry Address: | 0x0003f000 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 151552 | cf5354a587f934053f3009c8855a2940 |
| .rdata | 45056 | 956e2bc3026ebfea6643ebf867e39b97 |
| .data | 32768 | 53a3775b806e5ce4d68229024876d387 |
| .rsrc | 4096 | 023eab99c006033e739662fbb8fd2607 |
| .reloc | 16384 | c1041b6d55182e7362893f27bbf8f3e9 |
| .text | 880640 | 43d560d766cc38162cb7cfb756e82ecf |
More information:
Download GridinSoft
Anti-Malware - Removal tool for newtrf.dll
