Solved! Use HRA8.DLL (Backdoor Nitol) Removal Guide

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

HRA8.DLL – Backdoor Nitol removal

File MD5 Virus Alias
HRA8.DLL 05d0b0308ab0011d9ab3af16240ae9ce Backdoor Nitol
HRA8.DLL 05d0b0308ab0011d9ab3af16240ae9ce Trojan Generic
HRA8.DLL 05d0b0308ab0011d9ab3af16240ae9ce Virus Part
HRA8.DLL 05d0b0308ab0011d9ab3af16240ae9ce Trojan Graftor
HRA8.DLL 05d0b0308ab0011d9ab3af16240ae9ce Trojan Agent
HRA8.DLL 05d0b0308ab0011d9ab3af16240ae9ce Trojan Scar

HRA8.DLL size: 9216 bytes
HRA8.DLL hash: 05D0B0308AB0011D9AB3AF16240AE9CE

Created files:

%SysDir%\hra8.dll
%SysDir%\vmhvmo.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\Defghi Klmnopqr Tuv\Type: 10000000
HKLM\System\CurrentControlSet\Services\Defghi Klmnopqr Tuv\Start: 02000000
HKLM\System\CurrentControlSet\Services\Defghi Klmnopqr Tuv\DisplayName: Defghi Klmnopqr Tuvwxyab Defg
HKLM\System\CurrentControlSet\Services\Defghi Klmnopqr Tuv\ImagePath: %WinDir%\System32\vmhvmo.exe
HKLM\System\CurrentControlSet\Services\Defghi Klmnopqr Tuv\Description: Defghijk Mnopqrstu Wxyabcd Fghijklm Opq

Detected by UnHackMe:

HRA8.DLL
Default location: %SYSDIR%\HRA8.DLL

Dropper information:
MD5: bca321fb75761e034f82afbf0c3fb6e1
File size: 31744 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images