Solved! Use HRA33.DLL (Backdoor Nitol) Removal Guide

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

HRA33.DLL – Backdoor Nitol removal

File MD5 Virus Alias
HRA33.DLL 7147ff24579a477a1a34696926e573f1 Backdoor Nitol
HRA33.DLL 7147ff24579a477a1a34696926e573f1 Trojan Downloader
HRA33.DLL 7147ff24579a477a1a34696926e573f1 Worm AMN
HRA33.DLL 7147ff24579a477a1a34696926e573f1 Trojan Agent
HRA33.DLL 7147ff24579a477a1a34696926e573f1 Trojan FakeAV
HRA33.DLL 7147ff24579a477a1a34696926e573f1 Trojan Scar

HRA33.DLL size: 7680 bytes
HRA33.DLL hash: 7147FF24579A477A1A34696926E573F1

Created files:

%SysDir%\hra33.dll
%SysDir%\rernea.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\Distribuwco\Type: 10000000
HKLM\System\CurrentControlSet\Services\Distribuwco\Start: 02000000
HKLM\System\CurrentControlSet\Services\Distribuwco\DisplayName: Distribuvns Transaction Coordinator Service
HKLM\System\CurrentControlSet\Services\Distribuwco\ImagePath: %WinDir%\System32\rernea.exe
HKLM\System\CurrentControlSet\Services\Distribuwco\Description: Distribuuou Transaction Coordinator Service.

Detected by UnHackMe:

HRA33.DLL
Default location: %SYSDIR%\HRA33.DLL

Dropper information:
MD5: 065906c6e4fed50dd61608cccd401b09
File size: 47616 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images