JINPIY.EXE – Backdoor Nitol

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

JINPIY.EXE – Backdoor Nitol removal

FileMD5Virus Alias
JINPIY.EXE d7b8d5b8fa5ebb2ee28258362d61f3e2 Backdoor Nitol
JINPIY.EXE d7b8d5b8fa5ebb2ee28258362d61f3e2 Trojan Downloader
JINPIY.EXE d7b8d5b8fa5ebb2ee28258362d61f3e2 Trojan DNAScan
JINPIY.EXE d7b8d5b8fa5ebb2ee28258362d61f3e2 Trojan CI
JINPIY.EXE d7b8d5b8fa5ebb2ee28258362d61f3e2 Worm AMN
JINPIY.EXE d7b8d5b8fa5ebb2ee28258362d61f3e2 Trojan Agent

JINPIY.EXE size: 55296 bytes

Created files:

%SysDir%\gei33.dll
%SysDir%\jinpiy.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\netscvre\Type: 10000000
HKLM\System\CurrentControlSet\Services\netscvre\Start: 02000000
HKLM\System\CurrentControlSet\Services\netscvre\DisplayName: NT LM Security Support Providers
HKLM\System\CurrentControlSet\Services\netscvre\ImagePath: %WinDir%\System32\jinpiy.exe
HKLM\System\CurrentControlSet\Services\netscvre\Description: NT LM Security Support Providers

Detected by UnHackMe:

JINPIY.EXE
Default location: %SYSDIR%\JINPIY.EXE

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images