QXSQBXGP.EXE – Virus CeeInject

Virus No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

QXSQBXGP.EXE – Virus CeeInject removal

FileMD5Virus Alias
QXSQBXGP.EXE 7a3dc0564dcc8dc091c9afb2203a98f5 Virus CeeInject
QXSQBXGP.EXE 7a3dc0564dcc8dc091c9afb2203a98f5 Trojan SuspiciousFile
QXSQBXGP.EXE 7a3dc0564dcc8dc091c9afb2203a98f5 Trojan XPACK
QXSQBXGP.EXE 7a3dc0564dcc8dc091c9afb2203a98f5 Trojan Generic
QXSQBXGP.EXE 7a3dc0564dcc8dc091c9afb2203a98f5 Trojan Downloader
QXSQBXGP.EXE 7a3dc0564dcc8dc091c9afb2203a98f5 Trojan ZBot

QXSQBXGP.EXE size: 118585 bytes
QXSQBXGP.EXE hash: 7A3DC0564DCC8DC091C9AFB2203A98F5

Created files:

%Program Files Common%\qxsQbxgp.exe
%Local AppData%\Microsoft\BovXdYyO.exe
%SysDir%\config\systemprofile\Start Menu\Programs\Startup\sdmmVYnN.exe
%TEMP%\OLCjeUbW.exe
%AppData%\Microsoft\Crypto\RSA\S-1-5-21-515967899-854245398-1708537768-1003\655a7350831c302c746f72e92c1ab924_78de4566-a5cc-4192-bf8d-014e0d2bd235

Autostart registry keys:

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit: %WinDir%\System32\userinit.exe,,%Program Files Common%\qxsQbxgp.exe
HKLM\System\CurrentControlSet\Services\wscsvc\Start: 04000000
HKLM\System\CurrentControlSet\Services\wuauserv\Start: 04000000
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\AkjsDDLS: %WinDir%\System32\config\Systemprofile\Local Settings\Application Data\Microsoft\BovXdYyO.exe

Detected by UnHackMe:

QXSQBXGP.EXE
Default location: %PROGRAM FILES COMMON%\QXSQBXGP.EXE

Dropper information:
MD5: 7a3dc0564dcc8dc091c9afb2203a98f5
File size: 118585 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images