Solved! Use DUZJUC.EXE (Backdoor Nitol) Removal Guide

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

DUZJUC.EXE – Backdoor Nitol removal

FileMD5Virus Alias
DUZJUC.EXE c5d375ae3c9329880c8d2506435f8236 Backdoor Nitol
DUZJUC.EXE c5d375ae3c9329880c8d2506435f8236 Trojan (Suspicious File)
DUZJUC.EXE c5d375ae3c9329880c8d2506435f8236 Trojan XPACK
DUZJUC.EXE c5d375ae3c9329880c8d2506435f8236 Trojan Generic
DUZJUC.EXE c5d375ae3c9329880c8d2506435f8236 Trojan MLW
DUZJUC.EXE c5d375ae3c9329880c8d2506435f8236 Trojan Downloader

DUZJUC.EXE size: 137324 bytes
DUZJUC.EXE hash: C5D375AE3C9329880C8D2506435F8236

Created files:

%SysDir%\duzjuc.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\XieZulku\Type: 10000000
HKLM\System\CurrentControlSet\Services\XieZulku\Start: 02000000
HKLM\System\CurrentControlSet\Services\XieZulku\DisplayName: Nationalusc Instruments DDOS Service
HKLM\System\CurrentControlSet\Services\XieZulku\ImagePath: %WinDir%\System32\duzjuc.exe
HKLM\System\CurrentControlSet\Services\XieZulku\Description: Providesyix a domain server for DDOS RESERCH.

Detected by UnHackMe:

DUZJUC.EXE
Default location: %SYSDIR%\DUZJUC.EXE

Dropper information:
MD5: c5d375ae3c9329880c8d2506435f8236
File size: 137324 bytes

Leave a Reply