SQPUHKIR.EXE – Trojan Kazy

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

SQPUHKIR.EXE – Trojan Kazy removal

FileMD5Virus Alias
SQPUHKIR.EXE 08e8185395883a13c168e6f2971e5e21 Trojan Kazy
SQPUHKIR.EXE 08e8185395883a13c168e6f2971e5e21 Trojan CI
SQPUHKIR.EXE 08e8185395883a13c168e6f2971e5e21 Worm AMN
SQPUHKIR.EXE 08e8185395883a13c168e6f2971e5e21 Trojan Agent
SQPUHKIR.EXE 08e8185395883a13c168e6f2971e5e21 Trojan Kryptik
SQPUHKIR.EXE 08e8185395883a13c168e6f2971e5e21 Trojan ADH

SQPUHKIR.EXE size: 95152 bytes

Created files:

%Local AppData%\sfdnuiwu\birafigl.exe
%SysDir%\config\systemprofile\Start Menu\Programs\Startup\birafigl.exe
%TEMP%\sqpuhkir.exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit: %WinDir%\System32\userinit.exe,,%WinDir%\System32\config\Systemprofile\Local Settings\Application Data\sfdnuiwu\birafigl.exe
HKLM\System\CurrentControlSet\Services\wscsvc\Start: 04000000
HKLM\System\CurrentControlSet\Services\wuauserv\Start: 04000000
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\BirAfigl: %WinDir%\System32\config\Systemprofile\Local Settings\Application Data\sfdnuiwu\birafigl.exe

Detected by UnHackMe:

SQPUHKIR.EXE
Default location: %TEMP%\SQPUHKIR.EXE

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images