The file ABCD.EXE is a computer worm.
The worm ABCD.EXE is a self-replicating malicious program,
which uses a computer network to send copies of itself to other computers.
You must fix the ABCD.EXE problem as soon as possible!
Delete the file ABCD.EXE from all infected computers in your network.
Set up your network firewall against ABCD.EXE intervention.
Malware Analysis of ABCD.EXE
Full path on a computer: C:\RECYCLER\abcd.exe
Detected by UnHackMe:
Item Name: igfxtray
Author:
Related File: c:\recycler\abcd.exe dbgenum
Type: Auto Services
Item Name: abcd.exe
Author: Unknown
Related File: C:\RECYCLER\ABCD.EXE
Type: Running Processes
Removal Results: Success
Number of reboot: 1
ABCD.EXE is known as:
Worm.Recycler, Trojan.DownLoader2, Trojan.Autorun
ABCD.EXE hash:
- MD5: ccb6387918c4ec254eeeb2a0db669ae8

- HKLM\System\CurrentControlSet\Services\igfxtray\ImagePath: “c:\recycler\abcd.exe dbgenum”
- HKLM\System\CurrentControlSet\Services\igfxtray\DisplayName: “igfxtray”

- C:\RECYCLER\cache
- %SysDir%\Usermf
- %SysDir%\Usermf\userm

- C:\RECYCLER\abcd.exe
- %SysDir%\Usermf\userm\abc.xls
- %SysDir%\Usermf\userm\Allinone.bat
- %SysDir%\Usermf\userm\download_and_execute.exe
- %SysDir%\Usermf\userm\s_wine_flu.bat
- %SysDir%\Usermf\userm\s_wine_flu.vbs
- %SysDir%\???????
I use UnHackMe for cleaning ads and viruses from my friend's computers, because it is extremely fast and effective.
STEP 1: Download UnHackMe for free
UnHackMe removes Adware/Spyware/Unwanted Programs/Browser Hijackers/Search Redirectors from your PC easily.
UnHackMe is compatible with most antivirus software.
UnHackMe is 100% CLEAN, which means it does not contain any form of malware, including adware, spyware, viruses, trojans and backdoors. VirusTotal (0/56).
System Requirements: Windows 2000-Windows 8.1/10 32 or 64-bit. UnHackMe uses minimum of computer resources.
STEP 2: Double click on UnHackMe_setup.exe
You will see a confirmation screen with verified publisher: Greatis Software.
Once UnHackMe has installed the first Scan will start automatically

STEP 3: Carefully review the detected threats!
Click Remove button or False Positive.Enjoy!