ZQBXQE.EXE – Backdoor Nitol

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

ZQBXQE.EXE – Backdoor Nitol removal

FileMD5Virus Alias
ZQBXQE.EXE 20715f1b2f7f75ded5a2ea43348a1210 Backdoor Nitol
ZQBXQE.EXE 20715f1b2f7f75ded5a2ea43348a1210 Trojan Eldorado
ZQBXQE.EXE 20715f1b2f7f75ded5a2ea43348a1210 Backdoor RBot
ZQBXQE.EXE 20715f1b2f7f75ded5a2ea43348a1210 Trojan Downloader
ZQBXQE.EXE 20715f1b2f7f75ded5a2ea43348a1210 Trojan CI
ZQBXQE.EXE 20715f1b2f7f75ded5a2ea43348a1210 Worm AMN

ZQBXQE.EXE size: 19459 bytes

Created files:

%SysDir%\gei33.dll
%SysDir%\zqbxqe.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\netscvre\Type: 10000000
HKLM\System\CurrentControlSet\Services\netscvre\Start: 02000000
HKLM\System\CurrentControlSet\Services\netscvre\DisplayName: NT LM Security Support Providers
HKLM\System\CurrentControlSet\Services\netscvre\ImagePath: %WinDir%\System32\zqbxqe.exe
HKLM\System\CurrentControlSet\Services\netscvre\Description: NT LM Security Support Providers

Detected by UnHackMe:

ZQBXQE.EXE
Default location: %SYSDIR%\ZQBXQE.EXE

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images