I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.
SYSTEM.EXE – Backdoor Nitol removal
| File | MD5 | Virus Alias |
|---|---|---|
| SYSTEM.EXE | 758337db88f77a912bec5d3f9984efeb | Backdoor Nitol |
| SYSTEM.EXE | 758337db88f77a912bec5d3f9984efeb | Trojan Artemis |
| SYSTEM.EXE | 758337db88f77a912bec5d3f9984efeb | Trojan Generic |
| SYSTEM.EXE | 758337db88f77a912bec5d3f9984efeb | Trojan Eldorado |
| SYSTEM.EXE | 758337db88f77a912bec5d3f9984efeb | Trojan Downloader |
| SYSTEM.EXE | 758337db88f77a912bec5d3f9984efeb | Trojan Agent |
SYSTEM.EXE size: 28672 bytes
SYSTEM.EXE hash: 758337DB88F77A912BEC5D3F9984EFEB
Created files:
%WinDir%\System.exe
Autostart registry keys:
HKLM\System\CurrentControlSet\Services\Jklmno Qrstuvwx Abc\Type: 10010000
HKLM\System\CurrentControlSet\Services\Jklmno Qrstuvwx Abc\Start: 02000000
HKLM\System\CurrentControlSet\Services\Jklmno Qrstuvwx Abc\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\Jklmno Qrstuvwx Abc\DisplayName: Jklmnopq Stuvwxyab Defghij Lmnopqrs Uvw
HKLM\System\CurrentControlSet\Services\Jklmno Qrstuvwx Abc\ImagePath: %WinDir%\System.exe
HKLM\System\CurrentControlSet\Services\Jklmno Qrstuvwx Abc\Description: Jklmno Qrstuvwx Abcdefgh Jklm
Detected by UnHackMe:
SYSTEM.EXE
Default location: %WinDir%\SYSTEM.EXE
Dropper information:
MD5: 758337db88f77a912bec5d3f9984efeb
File size: 28672 bytes