Solved! Use 8BF491C5AAA.EXE (Rootkit SpyEye) Removal Guide

Rootkits No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

8BF491C5AAA.EXE – Rootkit SpyEye removal

File MD5 Virus Alias
8BF491C5AAA.EXE 1314556bb94247a50e228a782511994d Rootkit SpyEye
8BF491C5AAA.EXE 1314556bb94247a50e228a782511994d Trojan Win32-Spy
8BF491C5AAA.EXE 1314556bb94247a50e228a782511994d Trojan SuspiciousFile
8BF491C5AAA.EXE 1314556bb94247a50e228a782511994d Trojan Generic
8BF491C5AAA.EXE 1314556bb94247a50e228a782511994d Trojan Eldorado
8BF491C5AAA.EXE 1314556bb94247a50e228a782511994d Trojan Agent

8BF491C5AAA.EXE size: 306176 bytes
8BF491C5AAA.EXE hash: 1314556BB94247A50E228A782511994D

Created files:

C:\newdnswatch\066757443233BFF
C:\newdnswatch\8BF491C5AAA.exe
%Temp%\QE414.exe

Autostart registry keys:

HKCU\Software\Microsoft\Windows\CurrentVersion\RUN\5Z3U4G4IWCXEZEXDZDW: C:\newdnswatch\8BF491C5AAA.exe /q

Detected by UnHackMe:

8BF491C5AAA.EXE
Default location: C:\NEWDNSWATCH\8BF491C5AAA.EXE

Dropper information:
MD5: 1314556bb94247a50e228a782511994d
File size: 306176 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images