The program PIBMYRPIMQAQ.EXE is used for hidden penetration into PC and its remote administration.
UnHackMe is recommended as a reliable program for solving the problem with PIBMYRPIMQAQ.EXE.
Download for free: http://www.unhackme.com
Malware Analysis of PIBMYRPIMQAQ.EXE
Full path on a computer: %Profile%\pibmyrpimqaq.exe
Detected by UnHackMe:
PIBMYRPIMQAQ.EXE
Default location: %Profile%\pibmyrpimqaq.exe
Removal Results: Success
Number of reboot: 1
PIBMYRPIMQAQ.EXE is known as:
Backdoor.Pushdo.b, Downloader.a.c2x, Virus, New or modified Patched, W32.Inject.AIOT, Mal_DLDER, Trojan.Inject.IA, Trojan.Wigon.2ViUZd+YYyE, Trojan.Agent.Gen-Viruter, Trojan.DownLoader6.62576, Mal.Emogen-Y, Backdoor.Pushdo.a, Hack.Pushdo.b.(kcloud), TrojanDownloader.Cutwail.BS, Backdoor.A.Pushdo.37376, Backdoor.Pushdo, Patched, Win32.Wigon.PB, Trojan-Dropper.Agent, W32.Pushdo.B.tr.bdr, unknown virus Win32.DH{AyAiJQ8}
PIBMYRPIMQAQ.EXE hash:
- MD5: c8bd5c8703b7c83be967e49b0ad8deff
The file is used for downloading and installing other malware, Trojans, viruses by the commands received from the Command Center.
How to quickly detect PIBMYRPIMQAQ.EXE presence?
![]( "Registry")
Registry:
![]( "Files")
Files:
Registry:- HKCU\Software\Microsoft\Windows\CurrentVersion\Run\pibmyrpimqaq: “%Profile%\pibmyrpimqaq.exe”
Files:- %Appdata%\Microsoft\CryptnetUrlCache\Content\135BD6A358680A7BF1CCEC7C0172393D
- %Appdata%\Microsoft\CryptnetUrlCache\Content\77EDE1350D6A4830F58081495812F0B6
- %Appdata%\Microsoft\CryptnetUrlCache\MetaData\135BD6A358680A7BF1CCEC7C0172393D
- %Appdata%\Microsoft\CryptnetUrlCache\MetaData\77EDE1350D6A4830F58081495812F0B6
- %Profile%\pibmyrpimqaq.exe