The system file VT101.EXE is infected with a virus. We recommend you to replace the VT101.EXE file with its backup copy.
Malware Analysis of VT101.EXE
Full path on a computer: %SysDir%\VT101.EXE
Detected by UnHackMe:
Item Name: VT100 Emulator
Author: Unknown
Related File: %SYSDIR%\VT101.EXE
Type: Registry Run
Removal Results: Success
Number of reboot: 1
VT101.EXE is known as:
Virus.Virut.hpeg, W32.Virut.CF, Virut.HL, Win32.Virut.17408, PE_VIRUX.R, Win32:Vitro, Virus.Virut.ce, Trojan.Agent.Gen-Autorun[Swisyn], Virus.Virut.CE, Virut.56, Virus.Virut.ce.5 (v), W32.Scribble-B, Win32.Virut.bt, Virut.oo.368640, Virut.AM, Win32.Virut.F, Virus.Virut.14, Malware.Virut, Win32.Virut.NBP, Virut.dy, Virus.Virut, W32.Virut.CE, Win32.Virut, W32.Sality.AO
VT101.EXE hash:
- MD5: 8faa8dadb03f5aac788e560d783008a0
The file is used for downloading and installing other malware, Trojans, viruses by the commands received from the Command Center.
How to quickly detect VT101.EXE presence?
![]( "Registry")
Registry:
![]( "Folders")
Folders:
![]( "Files")
Files:
Registry:- HKLM\Software\Microsoft\Windows\CurrentVersion\Run\VT100 Emulator: “%SysDir%\VT101.EXE”
Folders:- %Temp%\Cookies
- %Temp%\History
- %Temp%\History\History.IE5
- %Temp%\Temporary Internet Files
- %Temp%\Temporary Internet Files\Content.IE5
- %Temp%\Temporary Internet Files\Content.IE5\LZ4EIYWL
- %Temp%\Temporary Internet Files\Content.IE5\NWVTGR9J
- %Temp%\Temporary Internet Files\Content.IE5\W6A498R2
- %Temp%\Temporary Internet Files\Content.IE5\Z409RQX0
Files:- %Temp%\Cookies\index.dat
- %Temp%\History\History.IE5\desktop.ini
- %Temp%\History\History.IE5\index.dat
- %Temp%\Temporary Internet Files\Content.IE5\desktop.ini
- %Temp%\Temporary Internet Files\Content.IE5\index.dat
- %Temp%\Temporary Internet Files\Content.IE5\LZ4EIYWL\desktop.ini
- %Temp%\Temporary Internet Files\Content.IE5\NWVTGR9J\desktop.ini
- %Temp%\Temporary Internet Files\Content.IE5\W6A498R2\desktop.ini
- %Temp%\Temporary Internet Files\Content.IE5\Z409RQX0\desktop.ini
- %SysDir%\VT101.EXE