VQVPMK.EXE – Backdoor Nitol

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

VQVPMK.EXE – Backdoor Nitol removal

FileMD5Virus Alias
VQVPMK.EXE 751b501bd95f2cb5d1bb95b044c59e63 Backdoor Nitol
VQVPMK.EXE 751b501bd95f2cb5d1bb95b044c59e63 Trojan Generic
VQVPMK.EXE 751b501bd95f2cb5d1bb95b044c59e63 Trojan Eldorado
VQVPMK.EXE 751b501bd95f2cb5d1bb95b044c59e63 Backdoor RBot
VQVPMK.EXE 751b501bd95f2cb5d1bb95b044c59e63 Trojan Downloader
VQVPMK.EXE 751b501bd95f2cb5d1bb95b044c59e63 Trojan Agent

VQVPMK.EXE size: 34304 bytes
VQVPMK.EXE hash: 751B501BD95F2CB5D1BB95B044C59E63

Created files:

%SysDir%\vqvpmk.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\Nationaldvv\Type: 10000000
HKLM\System\CurrentControlSet\Services\Nationaldvv\Start: 02000000
HKLM\System\CurrentControlSet\Services\Nationaldvv\DisplayName: Nationalaum Instruments Domain Service
HKLM\System\CurrentControlSet\Services\Nationaldvv\ImagePath: %WinDir%\System32\vqvpmk.exe
HKLM\System\CurrentControlSet\Services\Nationaldvv\Description: Providesirn a domain server for NI security.

Detected by UnHackMe:

VQVPMK.EXE
Default location: %SYSDIR%\VQVPMK.EXE

Dropper information:
MD5: 751b501bd95f2cb5d1bb95b044c59e63
File size: 34304 bytes

Leave a Reply