HKNDGC.EXE – Backdoor Nitol

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

HKNDGC.EXE – Backdoor Nitol removal

FileMD5Virus Alias
HKNDGC.EXE e22ed9c409e4e6b3c0d73b21d12b4756 Backdoor Nitol
HKNDGC.EXE e22ed9c409e4e6b3c0d73b21d12b4756 Trojan Artemis
HKNDGC.EXE e22ed9c409e4e6b3c0d73b21d12b4756 Trojan Generic
HKNDGC.EXE e22ed9c409e4e6b3c0d73b21d12b4756 Trojan Eldorado
HKNDGC.EXE e22ed9c409e4e6b3c0d73b21d12b4756 Trojan Downloader
HKNDGC.EXE e22ed9c409e4e6b3c0d73b21d12b4756 Trojan Graftor

HKNDGC.EXE size: 49664 bytes
HKNDGC.EXE hash: E22ED9C409E4E6B3C0D73B21D12B4756

Created files:

%SysDir%\gei33.dll
%SysDir%\hkndgc.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\netscvre\Type: 10000000
HKLM\System\CurrentControlSet\Services\netscvre\Start: 02000000
HKLM\System\CurrentControlSet\Services\netscvre\DisplayName: NT LM Security Support Providers
HKLM\System\CurrentControlSet\Services\netscvre\ImagePath: %WinDir%\System32\hkndgc.exe
HKLM\System\CurrentControlSet\Services\netscvre\Description: NT LM Security Support Providers

Detected by UnHackMe:

HKNDGC.EXE
Default location: %SYSDIR%\HKNDGC.EXE

Dropper information:
MD5: e22ed9c409e4e6b3c0d73b21d12b4756
File size: 49664 bytes

Leave a Reply