SVCHEST.EXE – Backdoor Nitol

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

SVCHEST.EXE – Backdoor Nitol removal

FileMD5Virus Alias
SVCHEST.EXE 3ed1af3b3e23405945248bd5b88e0ccb Backdoor Nitol
SVCHEST.EXE 3ed1af3b3e23405945248bd5b88e0ccb Trojan BadReputation
SVCHEST.EXE 3ed1af3b3e23405945248bd5b88e0ccb Trojan SuspiciousFile
SVCHEST.EXE 3ed1af3b3e23405945248bd5b88e0ccb Trojan Artemis
SVCHEST.EXE 3ed1af3b3e23405945248bd5b88e0ccb Trojan Generic
SVCHEST.EXE 3ed1af3b3e23405945248bd5b88e0ccb Trojan Eldorado

SVCHEST.EXE size: 22016 bytes
SVCHEST.EXE hash: 3ED1AF3B3E23405945248BD5B88E0CCB

Created files:

%SysDir%\svchest.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\Windows Test My Test svchose 4.0Windows Test My Test svchose 4.0\Type: 10000000
HKLM\System\CurrentControlSet\Services\Windows Test My Test svchose 4.0Windows Test My Test svchose 4.0\Start: 02000000
HKLM\System\CurrentControlSet\Services\Windows Test My Test svchose 4.0Windows Test My Test svchose 4.0\DisplayName: Windows Test My Test svchose 4.0
HKLM\System\CurrentControlSet\Services\Windows Test My Test svchose 4.0Windows Test My Test svchose 4.0\ImagePath: %WinDir%\System32\svchest.exe

Detected by UnHackMe:

SVCHEST.EXE
Default location: %SYSDIR%\SVCHEST.EXE

Dropper information:
MD5: 3ed1af3b3e23405945248bd5b88e0ccb
File size: 22016 bytes

Leave a Reply