IGXDFDFDS.COM – Backdoor RBot

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

IGXDFDFDS.COM – Backdoor RBot removal

FileMD5Virus Alias
IGXDFDFDS.COM 5b484187db28a28425e4b65b945a79dd Backdoor RBot
IGXDFDFDS.COM 5b484187db28a28425e4b65b945a79dd Trojan Crypt

IGXDFDFDS.COM size: 565248 bytes
IGXDFDFDS.COM hash: 5B484187DB28A28425E4B65B945A79DD

Created files:

%SysDir%\igxdfdfds.com

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\MicroSoft Visual SP: igxdfdfds.com
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\MicroSoft Visual SP: igxdfdfds.com
HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices\MicroSoft Visual SP: igxdfdfds.com
HKLM\System\CurrentControlSet\Services\dasdaMicrosoft.com\Type: 20000000
HKLM\System\CurrentControlSet\Services\dasdaMicrosoft.com\Start: 02000000
HKLM\System\CurrentControlSet\Services\dasdaMicrosoft.com\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\dasdaMicrosoft.com\DisplayName: MicroSoft Visual SP
HKLM\System\CurrentControlSet\Services\dasdaMicrosoft.com\ImagePath: “%WinDir%\System32\igxdfdfds.com” -netsvcs
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\MicroSoft Visual SP: igxdfdfds.com
HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce\MicroSoft Visual SP: igxdfdfds.com

Detected by UnHackMe:

IGXDFDFDS.COM
Default location: %SYSDIR%\IGXDFDFDS.COM

Dropper information:
MD5: 5b484187db28a28425e4b65b945a79dd
File size: 565248 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images