Solved! Use CKGCKW.EXE (Backdoor Nitol) Removal Guide

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

CKGCKW.EXE – Backdoor Nitol removal

FileMD5Virus Alias
CKGCKW.EXE dd2ae092f990851bd8cdda6c63a524f9 Backdoor Nitol
CKGCKW.EXE dd2ae092f990851bd8cdda6c63a524f9 Trojan SuspiciousFile
CKGCKW.EXE dd2ae092f990851bd8cdda6c63a524f9 Trojan Artemis
CKGCKW.EXE dd2ae092f990851bd8cdda6c63a524f9 Trojan Generic
CKGCKW.EXE dd2ae092f990851bd8cdda6c63a524f9 Backdoor Farfli

CKGCKW.EXE size: 19968 bytes
CKGCKW.EXE hash: DD2AE092F990851BD8CDDA6C63A524F9

Created files:

%WinDir%\ckgckw.exe
%SysDir%\hra33.dll

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\Stuvwx Abcdefgh Jkl\Type: 10010000
HKLM\System\CurrentControlSet\Services\Stuvwx Abcdefgh Jkl\Start: 02000000
HKLM\System\CurrentControlSet\Services\Stuvwx Abcdefgh Jkl\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\Stuvwx Abcdefgh Jkl\DisplayName: Stuvwx Abcdefgh Jklmnopq Stuv
HKLM\System\CurrentControlSet\Services\Stuvwx Abcdefgh Jkl\ImagePath: %WinDir%\ckgckw.exe
HKLM\System\CurrentControlSet\Services\Stuvwx Abcdefgh Jkl\Description: Stuvwxya Cdefghijk Mnopqrs Uvwxyabc Efg

Detected by UnHackMe:

CKGCKW.EXE
Default location: %WinDir%\CKGCKW.EXE

Dropper information:
MD5: dd2ae092f990851bd8cdda6c63a524f9
File size: 19968 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images