IEXT.FNR – Worm Autorun

Worm No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

IEXT.FNR – Worm Autorun removal

FileMD5Virus Alias
IEXT.FNR f91cfe6df71fbbbe56ddf70247ab9b49 Worm Autorun
IEXT.FNR f91cfe6df71fbbbe56ddf70247ab9b49 Trojan Agent

IEXT.FNR size: 221184 bytes
IEXT.FNR hash: F91CFE6DF71FBBBE56DDF70247AB9B49

Created files:

%Temporary Internet Files%\Content.IE5\1HVEIEYW\background_gradient[1]
%Temporary Internet Files%\Content.IE5\1HVEIEYW\dnserrordiagoff_webOC[1]
%Temporary Internet Files%\Content.IE5\8OZFYSFM\ErrorPageTemplate[1]
%Temporary Internet Files%\Content.IE5\8OZFYSFM\info_48[1]
%Temporary Internet Files%\Content.IE5\9ZXDM8KN\httpErrorPagesScripts[1]
%Temporary Internet Files%\Content.IE5\M3TXLF4P\bullet[1]
%Temporary Internet Files%\Content.IE5\M3TXLF4P\errorPageStrings[1]
%TEMP%\E_N4\iext.fnr
%TEMP%\E_N4\krnln.fnr

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\ialdnwxf\Type: 01000000
HKLM\System\CurrentControlSet\Services\ialdnwxf\Start: 03000000
HKLM\System\CurrentControlSet\Services\ialdnwxf\DisplayName: ialdnwxf
HKLM\System\CurrentControlSet\Services\ialdnwxf\ImagePath: \superec.ProcessMemory.sys

Detected by UnHackMe:

IEXT.FNR
Default location: %TEMP%\E_N4\IEXT.FNR

Dropper information:
MD5: 10cd3ef2440d08e54e4e99f0e52b2d97
File size: 834540 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images