Solved! Use GEI33.DLL (Backdoor Nitol) Removal Guide

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

GEI33.DLL – Backdoor Nitol removal

FileMD5Virus Alias
GEI33.DLL de61de242b5500304af17e4661100ea5 Backdoor Nitol
GEI33.DLL de61de242b5500304af17e4661100ea5 Trojan Generic
GEI33.DLL de61de242b5500304af17e4661100ea5 Trojan Graftor
GEI33.DLL de61de242b5500304af17e4661100ea5 Trojan OnLineGames
GEI33.DLL de61de242b5500304af17e4661100ea5 Trojan Agent
GEI33.DLL de61de242b5500304af17e4661100ea5 Trojan Scar

GEI33.DLL size: 12288 bytes
GEI33.DLL hash: DE61DE242B5500304AF17E4661100EA5

Created files:

%SysDir%\gei33.dll
%SysDir%\iqckqi.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\aspneasdassejx\Type: 10000000
HKLM\System\CurrentControlSet\Services\aspneasdassejx\Start: 02000000
HKLM\System\CurrentControlSet\Services\aspneasdassejx\DisplayName: ASP.NET asdaasdn Coordinator Service
HKLM\System\CurrentControlSet\Services\aspneasdassejx\ImagePath: %WinDir%\System32\iqckqi.exe
HKLM\System\CurrentControlSet\Services\aspneasdassejx\Description: Provides suppasdafaso-processigb Transaction Coordinator Service.

Detected by UnHackMe:

GEI33.DLL
Default location: %SYSDIR%\GEI33.DLL

Dropper information:
MD5: 58f249ac2688296ca9022184f8e59f38
File size: 87040 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images