Solved! Use MQOKQE.EXE (Backdoor Nitol) Removal Guide

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

MQOKQE.EXE – Backdoor Nitol removal

FileMD5Virus Alias
MQOKQE.EXE 113f44208c19d5506940c8ca0cf38239 Backdoor Nitol
MQOKQE.EXE 113f44208c19d5506940c8ca0cf38239 Trojan SuspiciousFile
MQOKQE.EXE 113f44208c19d5506940c8ca0cf38239 Trojan XPACK
MQOKQE.EXE 113f44208c19d5506940c8ca0cf38239 Trojan PAM
MQOKQE.EXE 113f44208c19d5506940c8ca0cf38239 Trojan Crypt
MQOKQE.EXE 113f44208c19d5506940c8ca0cf38239 Backdoor Farfli

MQOKQE.EXE size: 19968 bytes
MQOKQE.EXE hash: 113F44208C19D5506940C8CA0CF38239

Created files:

%WinDir%\mqokqe.exe
%SysDir%\hra33.dll

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\Gh0i0jk0l N0op0qr0stu0 Wx0y\Type: 10010000
HKLM\System\CurrentControlSet\Services\Gh0i0jk0l N0op0qr0stu0 Wx0y\Start: 02000000
HKLM\System\CurrentControlSet\Services\Gh0i0jk0l N0op0qr0stu0 Wx0y\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\Gh0i0jk0l N0op0qr0stu0 Wx0y\DisplayName: Gh0ijk0l N0op0q0rs0tu Wx0ya0b0cde G0hij
HKLM\System\CurrentControlSet\Services\Gh0i0jk0l N0op0qr0stu0 Wx0y\ImagePath: %WinDir%\mqokqe.exe
HKLM\System\CurrentControlSet\Services\Gh0i0jk0l N0op0qr0stu0 Wx0y\Description: Gh0ij0kl0m0n P0qr0stuv0wx A0bc0de0fg I0jk0lmn0op R0st

Detected by UnHackMe:

MQOKQE.EXE
Default location: %WinDir%\MQOKQE.EXE

Dropper information:
MD5: 113f44208c19d5506940c8ca0cf38239
File size: 19968 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images