I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free Download Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
RNMEQTTE.DLL – Backdoor Farfli removal
| File | MD5 | Virus Alias |
|---|---|---|
| RNMEQTTE.DLL | 29a3ef9c1b4b883a80e29ac6ac7ab6c7 | Backdoor Farfli |
| RNMEQTTE.DLL | 29a3ef9c1b4b883a80e29ac6ac7ab6c7 | Trojan Generic |
| RNMEQTTE.DLL | 29a3ef9c1b4b883a80e29ac6ac7ab6c7 | Trojan Eldorado |
| RNMEQTTE.DLL | 29a3ef9c1b4b883a80e29ac6ac7ab6c7 | Trojan Downloader |
| RNMEQTTE.DLL | 29a3ef9c1b4b883a80e29ac6ac7ab6c7 | Trojan Magania |
| RNMEQTTE.DLL | 29a3ef9c1b4b883a80e29ac6ac7ab6c7 | Trojan Agent |
RNMEQTTE.DLL size: 19185664 bytes
RNMEQTTE.DLL hash: 29A3EF9C1B4B883A80E29AC6AC7AB6C7
Created files:
C:\windows\system32\drivers\gui.sys
C:\windows\system32\Rnmeqtte.dll
C:\windows\temp2687100.dll
Autostart registry keys:
HKLM\System\CurrentControlSet\Services\McAfee Network Agent\Type: 10010000
HKLM\System\CurrentControlSet\Services\McAfee Network Agent\Start: 02000000
HKLM\System\CurrentControlSet\Services\McAfee Network Agent\DisplayName: McAfee Network Agent
HKLM\System\CurrentControlSet\Services\McAfee Network Agent\ImagePath: %SystemRoot%\System32\svchost.exe -k imgsvc
Detected by UnHackMe:
RNMEQTTE.DLL
Default location: %SYSDIR%\RNMEQTTE.DLL
Dropper information:
MD5: 2d354f129cda59fcddf0d30d97db18cf
File size: 163840 bytes