I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free Download Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
CFTMON.EXE – Trojan Downloader removal
| File | MD5 | Virus Alias |
|---|---|---|
| CFTMON.EXE | 66f2c937a3e88447817c4206d85263be | Trojan Downloader |
| CFTMON.EXE | 66f2c937a3e88447817c4206d85263be | Trojan Adload |
| CFTMON.EXE | 66f2c937a3e88447817c4206d85263be | Trojan Agent |
| CFTMON.EXE | 66f2c937a3e88447817c4206d85263be | Trojan Small |
| CFTMON.EXE | 66f2c937a3e88447817c4206d85263be | Trojan ZBot |
| CFTMON.EXE | 66f2c937a3e88447817c4206d85263be | Trojan Crypt |
CFTMON.EXE size: 528296 bytes
CFTMON.EXE hash: 66F2C937A3E88447817C4206D85263BE
Created files:
%UserProfile%\cftmon.exe
%SysDir%\drivers\spools.exe
Autostart registry keys:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\ntuser: %WinDir%\System32\drivers\spools.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\autoload: %WinDir%\System32\config\Systemprofile\cftmon.exe
HKLM\System\CurrentControlSet\Services\Schedule\ImagePath: 43003A005C00570049004E0044004F00570053005C00730079007300740065006D00330032005C0064007200690076006500720073005C00730070006F006F006C0073002E006500780065000000
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\ntuser: %WinDir%\System32\drivers\spools.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\autoload: %WinDir%\System32\config\Systemprofile\cftmon.exe
Detected by UnHackMe:
CFTMON.EXE
Default location: %USERPROFILE%\CFTMON.EXE
Dropper information:
MD5: 0878c6f85d8e34691d0f9343ef5eebcb
File size: 516882 bytes
Logging you in...
Loading IntenseDebate Comments...