I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free Download Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
XWDFSU.EXE – Backdoor Nitol removal
| File | MD5 | Virus Alias |
|---|---|---|
| XWDFSU.EXE | a0ead738be12651816b2d02ff16591ae | Backdoor Nitol |
| XWDFSU.EXE | a0ead738be12651816b2d02ff16591ae | Suspicious File |
| XWDFSU.EXE | a0ead738be12651816b2d02ff16591ae | Trojan Artemis |
| XWDFSU.EXE | a0ead738be12651816b2d02ff16591ae | Trojan Downloader |
| XWDFSU.EXE | a0ead738be12651816b2d02ff16591ae | Trojan Agent |
| XWDFSU.EXE | a0ead738be12651816b2d02ff16591ae | Trojan Small |
XWDFSU.EXE size: 36352 bytes
XWDFSU.EXE hash: A0EAD738BE12651816B2D02FF16591AE
Created files:
%SysDir%\xwdfsu.exe
Autostart registry keys:
HKLM\System\CurrentControlSet\Services\Nationalreo\Type: 10010000
HKLM\System\CurrentControlSet\Services\Nationalreo\Start: 02000000
HKLM\System\CurrentControlSet\Services\Nationalreo\DisplayName: Nationalntm Instruments Domain Service
HKLM\System\CurrentControlSet\Services\Nationalreo\ImagePath: %WinDir%\System32\xwdfsu.exe
Detected by UnHackMe:
XWDFSU.EXE
Default location: %SYSDIR%\XWDFSU.EXE
Dropper information:
MD5: a0ead738be12651816b2d02ff16591ae
File size: 36352 bytes