Solved! Use LGLPCW.EXE (Backdoor Nitol) Removal Guide

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

LGLPCW.EXE – Backdoor Nitol removal

File MD5 Virus Alias
LGLPCW.EXE 78932621b46582d9389227747d492f74 Backdoor Nitol
LGLPCW.EXE 78932621b46582d9389227747d492f74 Trojan SuspiciousFile
LGLPCW.EXE 78932621b46582d9389227747d492f74 Trojan Eldorado
LGLPCW.EXE 78932621b46582d9389227747d492f74 Trojan Downloader
LGLPCW.EXE 78932621b46582d9389227747d492f74 Trojan Agent
LGLPCW.EXE 78932621b46582d9389227747d492f74 Backdoor Farfli

LGLPCW.EXE size: 56832 bytes
LGLPCW.EXE hash: 78932621B46582D9389227747D492F74

Created files:

%SysDir%\lglpcw.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\DSLserveramu\Type: 10000000
HKLM\System\CurrentControlSet\Services\DSLserveramu\Start: 02000000
HKLM\System\CurrentControlSet\Services\DSLserveramu\DisplayName: DCOM Servercld Process Launcher.
HKLM\System\CurrentControlSet\Services\DSLserveramu\ImagePath: %WinDir%\System32\lglpcw.exe
HKLM\System\CurrentControlSet\Services\DSLserveramu\Description: DCOM Serverboh Process Launcher..

Detected by UnHackMe:

LGLPCW.EXE
Default location: %SYSDIR%\LGLPCW.EXE

Dropper information:
MD5: 78932621b46582d9389227747d492f74
File size: 56832 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images