Solved! Use PKDVOO.EXE (Backdoor Nitol) Removal Guide

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

PKDVOO.EXE – Backdoor Nitol removal

FileMD5Virus Alias
PKDVOO.EXE 4dcec1034096880ebe26e0bb56a80321 Backdoor Nitol
PKDVOO.EXE 4dcec1034096880ebe26e0bb56a80321 Trojan SuspiciousFile
PKDVOO.EXE 4dcec1034096880ebe26e0bb56a80321 Trojan Artemis
PKDVOO.EXE 4dcec1034096880ebe26e0bb56a80321 Trojan Hllw
PKDVOO.EXE 4dcec1034096880ebe26e0bb56a80321 Virus Part
PKDVOO.EXE 4dcec1034096880ebe26e0bb56a80321 Worm Autorun

PKDVOO.EXE size: 56320 bytes
PKDVOO.EXE hash: 4DCEC1034096880EBE26E0BB56A80321

Created files:

%SysDir%\pkdvoo.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\201511yav\Type: 10000000
HKLM\System\CurrentControlSet\Services\201511yav\Start: 02000000
HKLM\System\CurrentControlSet\Services\201511yav\DisplayName: Nationalvxa Instruments DDOS Service
HKLM\System\CurrentControlSet\Services\201511yav\ImagePath: %WinDir%\System32\pkdvoo.exe
HKLM\System\CurrentControlSet\Services\201511yav\Description: Providesjlu a domain server for DDOS RESERCH.

Detected by UnHackMe:

PKDVOO.EXE
Default location: %SYSDIR%\PKDVOO.EXE

Dropper information:
MD5: 4dcec1034096880ebe26e0bb56a80321
File size: 56320 bytes

Leave a Reply