Trojan Graftor – fastcureu.exe – 1b5f3f11fc1cf92f614a7f61caa9c6e9

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Trojan Graftor
Also known as: Trojan FakeAV, Fake Antivirus SecurityTool
SHA256: cb4c01eb5cdceb65ef69535bbd2cca243eb9812c391f62d3bf35ab5675fd416a
SHA1: 3c321389a2b599cc35e009800ca11a50672a0a13
MD5: 1b5f3f11fc1cf92f614a7f61caa9c6e9
File size: 197208 bytes

Created files:

%Program Files%\fastcure\fastcureu.exe – Trojan Graftor
%WinDir%\wsetuserdata.exe – Trojan Graftor

Trojan Graftor created autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\fastcure main: %Program Files%\fastcure\fastcureu.exe /8L
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\fastcurestart.exe: %Program Files%\fastcure\fastcurestart.exe
HKLM\System\CurrentControlSet\Services\fastcure Update Service\Type: 20000000
HKLM\System\CurrentControlSet\Services\fastcure Update Service\Start: 02000000
HKLM\System\CurrentControlSet\Services\fastcure Update Service\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\fastcure Update Service\DisplayName: fastcure Support Service
HKLM\System\CurrentControlSet\Services\fastcure Update Service\ImagePath: “%WinDir%\wsetuserdata.exe” /update

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images