Softpedia >Windows >Antivirus >Removal Tools >  Resolve for CoreFloo-D
Resolve for CoreFloo-D icon

Resolve for CoreFloo-D

2.0/5 6
Certified 100% CLEAN Freeware   

A tool that removes CoreFloo-D trojan. #Antivirus protection  #Trojan protection  #Trojan remover  #CoreFloo-D  #Trojan  #Remove  

Description

Free Download

Resolve for CoreFloo-D screenshot

Resolve is the name for a set of small, downloadable Sophos utilities designed to remove and undo the changes made by certain viruses, Trojans and worms. They terminate any virus processes and reset any registry keys that the virus changed. Existing infections can be cleaned up quickly and easily, both on individual workstations and over networks with large numbers of computers.

Troj/CoreFloo-D is a backdoor Trojan which allows a remote intruder to access and control the computer from a remote location.

The Trojan arrives as an executable with a random filename consisting of 7 characters A-Z with an EXE extension.

When the installation executable is run on Windows 95, 98 or ME it drops a DLL to the Windows System folder with a filename consisting of 7 random characters A-Z with a DLL extension.

When the installation executable is run on Windows NT, 2000 or XP it drops the DLL as an ADS stream associated with the Windows System folder (typically System32). The new ADS stream will also have a random 7 character name with an extension of DLL.

The installation executable then launches the DLL component which adds its pathname to the following registry entry, so that it is run automatically each time Windows is started:

HKLMSoftwareMicrosoftWindowsCurrentVersionRunOnce = rundll32 %SYSTEM% .dll,Init 1

HKLMSoftwareMicrosoftWindowsCurrentVersionRun = rundll32 %SYSTEM% ,Init 1

The DLL component injects itself into the EXPLORER process making it invisible in the Task Manager process list.

The DLL queries a hosts from a list in the Trojan body in order to receive parameters for further processing usinf HTTP POST request and a CGI script on the remote host. The HTTP response contains various parameters for the backdoor built into the DLL such as listening ports and other information.

Troj/CoreFloo-D also has anti-delete functionality which restarts viral processes that have been terminated and resets the above registry entries if they are removed.

Troj/CoreFloo-D can be removed from Windows computers automatically with the following Resolve tools:

CORFDGUI is a disinfector for standalone Windows computers. To use it you have to do the following: ■ Open CORFDGUI.com file from your desktop after downloading it. ■ Click on the Start Scan Button. ■ Wait for the process to complete.

CORFDSFX.EXE is a self-extracting archive containing CORFDCLI, a Resolve command line disinfector for use on Windows networks.

Resolve for CoreFloo-D 1.05

 add to watchlist add to download basket send us an update REPORT
  runs on:
Windows All
  file size:
77 KB
  filename:
corfdgui.com
  3 screenshots:
Resolve for CoreFloo-D - screenshot #1Resolve for CoreFloo-D - screenshot #2Resolve for CoreFloo-D - screenshot #3
  main category:
Antivirus
  developer:
  visit homepage

paint.net

Packed with an array of options and an intuitive interface, this application enables you to create professional-looking photographs
paint.net

Zoom Client

The official desktop client for Zoom, the popular video conferencing and collaboration tool used by millions of people worldwide
Zoom Client

calibre

Effortlessly keep your e-book library thoroughly organized with the help of the numerous features offered by this efficient and capable manager
calibre

ShareX

Capture your screen, create GIFs, and record videos through this versatile solution that includes various other amenities: an OCR scanner, image uploader, URL shortener, and much more
ShareX

Bitdefender Antivirus Free

Feather-light and free antivirus solution from renowned developer that keeps the PC protected at all times from malware without requiring user configuration
Bitdefender Antivirus Free

Microsoft Teams

Effortlessly chat, collaborate on projects, and transfer files within a business-like environment by employing this Microsoft-vetted application
Microsoft Teams

4k Video Downloader

Export your favorite YouTube videos and playlists with this intuitive, lightweight program, built to facilitate downloading clips from the popular website
4k Video Downloader

7-Zip

An intuitive application with a very good compression ratio that can help you not only create and extract archives, but also test them for errors
7-Zip

Windows Sandbox Launcher

Set up the Windows Sandbox parameters to your specific requirements, with this dedicated launcher that features advanced parametrization
Windows Sandbox Launcher

IrfanView

With support for a long list of plugins, this minimalistic utility helps you view images, as well as edit and convert them using a built-in batch mode
IrfanView

% discount
7-Zip
  • 7-Zip
  • Windows Sandbox Launcher
  • IrfanView
  • paint.net
  • Zoom Client
  • calibre
  • ShareX
  • Bitdefender Antivirus Free
  • Microsoft Teams
  • 4k Video Downloader
TRY
essentials
User Comments
This enables Disqus, Inc. to process some of your data. Disqus privacy policy