I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free Download Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
Trojan Graftor
Also known as: Trojan Generic, Trojan Siggen
SHA256: be47deba8b7f02d842a155c7e7e85a5eadddebfc59bef40c18f7f29e5f842614
SHA1: 521dbaf17b6ae0f2b191a732d54457984b3deed8
MD5: 281858269b7216b619f1b1917364e7c7
File size: 114176 bytes
Created files:
%SysDir%\09547BC7.sys – Trojan Graftor
%SysDir%\1343177A.sys – Trojan Graftor
%SysDir%\6B2A5157.sys – Trojan Graftor
%Temp%\62453f83.bat – Trojan Graftor
Trojan Graftor created autostart registry keys:
HKLM\System\CurrentControlSet\Control\Keyboard Layouts\E0010409\Layout File: KBDUS.DLL
HKLM\System\CurrentControlSet\Control\Keyboard Layouts\E0010409\Layout Text: 46B62BE1
HKLM\System\CurrentControlSet\Services\09547BC7\Type: 01000000
HKLM\System\CurrentControlSet\Services\09547BC7\Start: 02000000
HKLM\System\CurrentControlSet\Services\09547BC7\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\09547BC7\DisplayName: 09547BC7
HKLM\System\CurrentControlSet\Services\09547BC7\ImagePath: %WinDir%\System32\09547BC7.sys
HKLM\System\CurrentControlSet\Services\1343177A\Type: 01000000
HKLM\System\CurrentControlSet\Services\1343177A\ImagePath: 730079007300740065006D00330032005C00310033003400330031003700370041002E007300790073000000
HKLM\System\CurrentControlSet\Services\1343177A\Group: 42006100730065000000
HKLM\System\CurrentControlSet\Services\6B2A5157\Type: 01000000
HKLM\System\CurrentControlSet\Services\6B2A5157\Start: 02000000
HKLM\System\CurrentControlSet\Services\6B2A5157\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\6B2A5157\DisplayName: 6B2A5157
HKLM\System\CurrentControlSet\Services\6B2A5157\ImagePath: %WinDir%\System32\6B2A5157.sys
HKLM\System\CurrentControlSet\Services\bits\SBIE_StartTicks: 46CD1F00