Solved! Use AISWEQ.EXE (Backdoor Nitol) Removal Guide

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

AISWEQ.EXE – Backdoor Nitol removal

FileMD5Virus Alias
AISWEQ.EXE 55a9d5047224ffa32f3817dafa87f1e8 Backdoor Nitol
AISWEQ.EXE 55a9d5047224ffa32f3817dafa87f1e8 Trojan UnwantedProgram
AISWEQ.EXE 55a9d5047224ffa32f3817dafa87f1e8 Trojan SuspiciousFile
AISWEQ.EXE 55a9d5047224ffa32f3817dafa87f1e8 Trojan Generic
AISWEQ.EXE 55a9d5047224ffa32f3817dafa87f1e8 Trojan Eldorado
AISWEQ.EXE 55a9d5047224ffa32f3817dafa87f1e8 Trojan CI

AISWEQ.EXE size: 27648 bytes
AISWEQ.EXE hash: 55A9D5047224FFA32F3817DAFA87F1E8

Created files:

%SysDir%\aisweq.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\Natio\Type: 10000000
HKLM\System\CurrentControlSet\Services\Natio\Start: 02000000
HKLM\System\CurrentControlSet\Services\Natio\DisplayName: Domain
HKLM\System\CurrentControlSet\Services\Natio\ImagePath: %WinDir%\System32\aisweq.exe
HKLM\System\CurrentControlSet\Services\Natio\Description: security.

Detected by UnHackMe:

AISWEQ.EXE
Default location: %SYSDIR%\AISWEQ.EXE

Dropper information:
MD5: 55a9d5047224ffa32f3817dafa87f1e8
File size: 27648 bytes

Leave a Reply