Solved! Use VUDRUE.EXE (Backdoor Nitol) Removal Guide

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

VUDRUE.EXE – Backdoor Nitol removal

File MD5 Virus Alias
VUDRUE.EXE a740d9736deeeb0e4c54db389b0dfa09 Backdoor Nitol
VUDRUE.EXE a740d9736deeeb0e4c54db389b0dfa09 Trojan Eldorado
VUDRUE.EXE a740d9736deeeb0e4c54db389b0dfa09 Trojan Downloader
VUDRUE.EXE a740d9736deeeb0e4c54db389b0dfa09 Virus Part
VUDRUE.EXE a740d9736deeeb0e4c54db389b0dfa09 Trojan Graftor
VUDRUE.EXE a740d9736deeeb0e4c54db389b0dfa09 Trojan Agent

VUDRUE.EXE size: 24576 bytes
VUDRUE.EXE hash: A740D9736DEEEB0E4C54DB389B0DFA09

Created files:

%SysDir%\vudrue.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\Nationalfrd\Type: 10000000
HKLM\System\CurrentControlSet\Services\Nationalfrd\Start: 02000000
HKLM\System\CurrentControlSet\Services\Nationalfrd\DisplayName: Nationalmlq Instruments Domain Service
HKLM\System\CurrentControlSet\Services\Nationalfrd\ImagePath: %WinDir%\System32\vudrue.exe
HKLM\System\CurrentControlSet\Services\Nationalfrd\Description: Providesssr a domain server for NI security.

Detected by UnHackMe:

VUDRUE.EXE
Default location: %SYSDIR%\VUDRUE.EXE

Dropper information:
MD5: a740d9736deeeb0e4c54db389b0dfa09
File size: 24576 bytes

Leave a Reply