CKOQ.OPD – Backdoor SubSeven

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

CKOQ.OPD – Backdoor SubSeven removal

FileMD5Virus Alias
CKOQ.OPD 07c252e1d856013575cda719b8057123 Backdoor SubSeven
CKOQ.OPD 07c252e1d856013575cda719b8057123 Trojan Generic
CKOQ.OPD 07c252e1d856013575cda719b8057123 Worm Autorun
CKOQ.OPD 07c252e1d856013575cda719b8057123 Trojan Agent
CKOQ.OPD 07c252e1d856013575cda719b8057123 Trojan Swisyn

CKOQ.OPD size: 90624 bytes
CKOQ.OPD hash: 07C252E1D856013575CDA719B8057123

Created files:

%SysDir%\ajid.msm
%SysDir%\ckoq.opd
%SysDir%\drivers\etc\services
%SysDir%\fmtch.aui
%SysDir%\fxdbax.ocl
%SysDir%\llsotero.rqj
%SysDir%\lnvgpdj.exe
%SysDir%\lqybxuxo.oaj
%SysDir%\nkghydev.jyc
%SysDir%\qnrgbpy.oga
%SysDir%\rwyc.cnl
%SysDir%\srv32.exe

Autostart registry keys:

HKLM\Software\Microsoft\Active Setup\Installed Components\lnvgpdj\StubPath: %WinDir%\System32\lnvgpdj.exe

Detected by UnHackMe:

CKOQ.OPD
Default location: %SYSDIR%\CKOQ.OPD

Dropper information:
MD5: 1289cb9081b3188951ad7a023f352fc0
File size: 869007 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images