SDT56218.EXE – Unknown

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

SDT56218.EXE – Unknown removal

SDT56218.EXE size: 5049 bytes
SDT56218.EXE hash: 7EC86F80D038DEEA46D7C42EDDC4611E

Created files:

C:\misc.sys
%SysDir%\actmov.exe
%TEMP%\Bindok.exe
%TEMP%\IXP000.TMP\nod1.exe
%TEMP%\IXP000.TMP\SDT56218.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\ReStoreSdtSvc\Type: 01000000
HKLM\System\CurrentControlSet\Services\ReStoreSdtSvc\Start: 03000000
HKLM\System\CurrentControlSet\Services\ReStoreSdtSvc\DisplayName: ReStoreSdtSvc
HKLM\System\CurrentControlSet\Services\ReStoreSdtSvc\ImagePath: C:\misc.sys
HKLM\System\CurrentControlSet\Services\Windowsactmov\Type: 10010000
HKLM\System\CurrentControlSet\Services\Windowsactmov\Start: 02000000
HKLM\System\CurrentControlSet\Services\Windowsactmov\DisplayName: Performance Logs and Ale
HKLM\System\CurrentControlSet\Services\Windowsactmov\ImagePath: %WinDir%\System32\actmov.exe

Detected by UnHackMe:

SDT56218.EXE
Default location: %TEMP%\IXP000.TMP\SDT56218.EXE

Dropper information:
MD5: 16216c8dbd358031dbdee98fb1960c68
File size: 1272124 bytes

Leave a Reply