I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free Download Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
Trojan Graftor
Also known as: Trojan Agent, Trojan Generic
SHA256: b32cf71e325ceaa8982e6ebed33f95894f2591397e08404368fbaa6dce1095e3
SHA1: 5ecefefe4bbfc040927e827ab81c10caf5d10f90
MD5: f72e3d86b8f4f97d103ff1b7f87213f2
File size: 54272 bytes
Created files:
%SysDir%\587C4C07.sys – Trojan Graftor
%SysDir%\664E26AB.sys – Trojan Graftor
%SysDir%\771213A5.sys – Trojan Graftor
%Temp%\2ce46215.bat – Trojan Graftor
Trojan Graftor created autostart registry keys:
HKLM\System\CurrentControlSet\Control\Keyboard Layouts\E0010409\Layout File: KBDUS.DLL
HKLM\System\CurrentControlSet\Control\Keyboard Layouts\E0010409\Layout Text: 62F36E5B
HKLM\System\CurrentControlSet\Services\587C4C07\Type: 01000000
HKLM\System\CurrentControlSet\Services\587C4C07\Start: 02000000
HKLM\System\CurrentControlSet\Services\587C4C07\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\587C4C07\DisplayName: 587C4C07
HKLM\System\CurrentControlSet\Services\587C4C07\ImagePath: %WinDir%\System32\587C4C07.sys
HKLM\System\CurrentControlSet\Services\664E26AB\Start: 03000000
HKLM\System\CurrentControlSet\Services\664E26AB\Type: 01000000
HKLM\System\CurrentControlSet\Services\664E26AB\ImagePath: 730079007300740065006D00330032005C00360036003400450032003600410042002E007300790073000000
HKLM\System\CurrentControlSet\Services\771213A5\Type: 01000000
HKLM\System\CurrentControlSet\Services\771213A5\Start: 02000000
HKLM\System\CurrentControlSet\Services\771213A5\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\771213A5\DisplayName: 771213A5
HKLM\System\CurrentControlSet\Services\771213A5\ImagePath: %WinDir%\System32\771213A5.sys
HKLM\System\CurrentControlSet\Services\bits\SBIE_StartTicks: A4C54200