Loading ...|
|
Tweet |  More |
Win32/Agent.SFM Description
Win32/Agent.SFM is a Trojan that targets credentials used to log into websites designed by cybercriminals. Win32/Agent.SFM does not send a lot of information on recent activities on the compromised machine, but is picky in transferring the gathered data. While being run, Win32/Agent.SFM drops and executes infected files on the corrupted PC from a remote server and/or the web. Win32/Agent.SFM also modifies the Windows Registry by creating Registry entries. Win32/Agent.SFM collects confidential information and various data linked to the infected computer system.
Type: Trojans
How Can You Detect Win32/Agent.SFM?
Win32/Agent.SFM Removal Details
Win32/Agent.SFM has typically the following processes in memory:
- %RANDOM CHARACTERS1%.dll
- %Temp%\flash_player_update.exe
Win32/Agent.SFM creates the following files in the system:
- %Commonappdata%\ur
- %Commonappdata%\ur%RANDOM CHARACTERS2%
- %CommonAppData%\cf
Win32/Agent.SFM creates the following registry entries:
- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
Important Article Disclaimer
This entry was last updated on 08/31/12 and posted on 08/31/12.
You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.
Win32/Agent.SFM
Leave a Comment
Note: Abusive comments are not allowed. Please do not post comments regarding technical support issues. ESG customers that have issues with SpyHunter should open a customer support ticket.