The MSIL/Kryptik.QME file is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.
What MSIL/Kryptik.QME virus can do?
- Creates RWX memory
- The binary likely contains encrypted or compressed data.
How to determine MSIL/Kryptik.QME?
General:
Operating System: Windows 7 / 8 / 8.1 / 10 Virus Name: malicious.8dfaa2
File Info:
Name: oyoyobabyprotected.exe
Size: 493568
Type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5: d32a8b9ac929389eb0814d3240f1536a
SHA1: 04598628dfaa2c9d67aaf4f862b246da71eca4cd
SH256: cd15357149112d08a074f8621968509f22bf8cf48dd679a93b916e5cddc192dc
Version Info:
[No Data]
MSIL/Kryptik.QME also known as:
| ALYac | Trojan.Agent.HawkEye |
| APEX | Malicious |
| AVG | Win32:RATX-gen [Trj] |
| Acronis | suspicious |
| Ad-Aware | Gen:Variant.MSILPerseus.200939 |
| AegisLab | Trojan.MSIL.Disfa.4!c |
| AhnLab-V3 | Malware/Win32.RL_Generic.C3545815 |
| Alibaba | Trojan:Win32/Starter.ali2000005 |
| Arcabit | Trojan.MSILPerseus.D310EB |
| Avast | Win32:RATX-gen [Trj] |
| Avira | TR/AD.HawkEyeKeylogger.tbxxr |
| BitDefender | Gen:Variant.MSILPerseus.200939 |
| BitDefenderTheta | Gen:NN.ZemsilF.32250.Em0@auiSkFl |
| CAT-QuickHeal | Trojan.MSIL |
| Comodo | Malware@#23lyif7e07v2e |
| CrowdStrike | win/malicious_confidence_100% (W) |
| Cybereason | malicious.8dfaa2 |
| Cylance | Unsafe |
| Cyren | W32/Trojan.BXZH-0244 |
| DrWeb | Trojan.Packed2.41837 |
| ESET-NOD32 | a variant of MSIL/Kryptik.QME |
| Endgame | malicious (moderate confidence) |
| F-Secure | Trojan.TR/AD.HawkEyeKeylogger.tbxxr |
| FireEye | Generic.mg.d32a8b9ac929389e |
| Fortinet | MSIL/Kryptik.QME!tr |
| GData | Gen:Variant.MSILPerseus.200939 |
| Ikarus | Trojan.MSIL.Crypt |
| Invincea | heuristic |
| Jiangmin | Trojan.Generic.ehfvl |
| K7AntiVirus | Trojan ( 700000121 ) |
| K7GW | Trojan ( 700000121 ) |
| Kaspersky | HEUR:Trojan.MSIL.Disfa.gen |
| MAX | malware (ai score=89) |
| Malwarebytes | Trojan.Crypt.MSIL |
| MaxSecure | Trojan.Malware.73686406.susgen |
| McAfee | RDN/Generic.dx |
| McAfee-GW-Edition | BehavesLike.Win32.Generic.gc |
| MicroWorld-eScan | Gen:Variant.MSILPerseus.200939 |
| Paloalto | generic.ml |
| Panda | Trj/CI.A |
| Qihoo-360 | Win32/Trojan.593 |
| Rising | Trojan.Kryptik!8.8 (TFE:C:t1aidM5xDSV) |
| SentinelOne | DFI – Suspicious PE |
| Sophos | Troj/MSIL-NCH |
| Symantec | Trojan Horse |
| Trapmine | suspicious.low.ml.score |
| TrendMicro | TROJ_GEN.R002C0WK619 |
| TrendMicro-HouseCall | TROJ_GEN.R002C0WK619 |
| VBA32 | TScope.Trojan.MSIL |
| VIPRE | Trojan.Win32.Generic!BT |
| Zillya | Trojan.Kryptik.Win32.1826672 |
| ZoneAlarm | HEUR:Trojan.MSIL.Disfa.gen |
How to remove MSIL/Kryptik.QME?
- Download and install GridinSoft Anti-Malware.
- Open GridinSoft Anti-Malware and perform a “Standard scan“.
- “Move to quarantine” all items.
- Open “Tools” tab – Press “Reset Browser Settings“.
- Select proper browser and options – Click “Reset”.
- Restart your computer.
Leave a Comment