IGFSFDFSD3SDA2SS.EXE – Trojan SuspiciousFile

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

IGFSFDFSD3SDA2SS.EXE – Trojan SuspiciousFile removal

FileMD5Virus Alias
IGFSFDFSD3SDA2SS.EXE 13512ccab6706c4e7b4a261764bba7c6 Trojan SuspiciousFile
IGFSFDFSD3SDA2SS.EXE 13512ccab6706c4e7b4a261764bba7c6 Backdoor RBot

IGFSFDFSD3SDA2SS.EXE size: 1171456 bytes
IGFSFDFSD3SDA2SS.EXE hash: 13512CCAB6706C4E7B4A261764BBA7C6

Created files:

%SysDir%\igfsfdfsd3sda2ss.exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\MicroSoft Visual SP01: igfsfdfsd3sda2ss.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\MicroSoft Visual SP01: igfsfdfsd3sda2ss.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices\MicroSoft Visual SP01: igfsfdfsd3sda2ss.exe
HKLM\System\CurrentControlSet\Services\srboty1.Microsoft.com\Type: 20000000
HKLM\System\CurrentControlSet\Services\srboty1.Microsoft.com\Start: 02000000
HKLM\System\CurrentControlSet\Services\srboty1.Microsoft.com\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\srboty1.Microsoft.com\DisplayName: MicroSoft Visual SP01
HKLM\System\CurrentControlSet\Services\srboty1.Microsoft.com\ImagePath: “%WinDir%\System32\igfsfdfsd3sda2ss.exe” -netsvcs
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\MicroSoft Visual SP01: igfsfdfsd3sda2ss.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce\MicroSoft Visual SP01: igfsfdfsd3sda2ss.exe

Detected by UnHackMe:

IGFSFDFSD3SDA2SS.EXE
Default location: %SYSDIR%\IGFSFDFSD3SDA2SS.EXE

Dropper information:
MD5: 13512ccab6706c4e7b4a261764bba7c6
File size: 1171456 bytes

Leave a Reply