Solved! Use NMBHMA.EXE (Backdoor Nitol) Removal Guide

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

NMBHMA.EXE – Backdoor Nitol removal

FileMD5Virus Alias
NMBHMA.EXE d7557159165000bd9134072e5114f1a7 Backdoor Nitol
NMBHMA.EXE d7557159165000bd9134072e5114f1a7 Trojan DLOADER
NMBHMA.EXE d7557159165000bd9134072e5114f1a7 Trojan Artemis
NMBHMA.EXE d7557159165000bd9134072e5114f1a7 Trojan MLW
NMBHMA.EXE d7557159165000bd9134072e5114f1a7 Trojan Eldorado
NMBHMA.EXE d7557159165000bd9134072e5114f1a7 Trojan Downloader

NMBHMA.EXE size: 109604 bytes
NMBHMA.EXE hash: D7557159165000BD9134072E5114F1A7

Created files:

%SysDir%\nmbhma.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\Nationaltlw\Type: 10000000
HKLM\System\CurrentControlSet\Services\Nationaltlw\Start: 02000000
HKLM\System\CurrentControlSet\Services\Nationaltlw\DisplayName: Nationalgcp Instruments Domain Service
HKLM\System\CurrentControlSet\Services\Nationaltlw\ImagePath: %WinDir%\System32\nmbhma.exe

Detected by UnHackMe:

NMBHMA.EXE
Default location: %SYSDIR%\NMBHMA.EXE

Dropper information:
MD5: d7557159165000bd9134072e5114f1a7
File size: 109604 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images