Oqo.exe Win32:Malob-EL [Cryp]

Computer started acting strange, so noticed something called Oqo.exe and Osefea.exe running and taking up processor and network bandwidth.
Computer was running current MSSE and scan didn’t find anything.(or prevent anything…)

Installed and ran Avast, which I run on other machines and has worked well in the past, and it found a bunch of Win32:Malob-EL [Cryp] and deleted them on boot scan, but Oqo.exe and Osefea.exe keep popping up.

Any ideas?

Hi JD,

Welcome to the forum,

According to Prevx information that Oqo.exe is associated with the malware group such as : Cloaked Malware and Malicious Malware.
This could be not easy to remove them, since they are run in packages or sometime is encrypted also register on Dynamic Library Link of Microsoft.

This is required :

  1. Turn off your system restore
  2. Please do running a boot-time scan with avast antivirus
  3. Additional tools, you may download MalwareBytes
  4. Just installed on your system and then update your database
  5. Run scan on your system

cheers,