Solved! Use IBM00002.DLL (Trojan Sinowal) Removal Guide

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

IBM00002.DLL – Trojan Sinowal removal

File MD5 Virus Alias
IBM00002.DLL 7b74b36a80ec88c5773513678a543a8c Trojan Sinowal
IBM00002.DLL 7b74b36a80ec88c5773513678a543a8c Trojan Downloader
IBM00002.DLL 7b74b36a80ec88c5773513678a543a8c Trojan OnLineGames
IBM00002.DLL 7b74b36a80ec88c5773513678a543a8c Trojan Agent

IBM00002.DLL size: 62464 bytes
IBM00002.DLL hash: 7B74B36A80EC88C5773513678A543A8C

Created files:

%Program Files Common%\Microsoft Shared\Web Folders\ibm00001.dll
%Program Files Common%\Microsoft Shared\Web Folders\ibm00001.exe
%Program Files Common%\Microsoft Shared\Web Folders\ibm00002.dll
%Program Files Common%\Microsoft Shared\Web Folders\ibm00003.exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows NT\CurrentVersion\WinLogon\shell: explorer.exe “%Program Files Common%\Microsoft Shared\Web Folders\ibm00001.exe”
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\shell: “%Program Files Common%\Microsoft Shared\Web Folders\ibm00001.exe”

Detected by UnHackMe:

IBM00002.DLL
Default location: %PROGRAM FILES COMMON%\MICROSOFT SHARED\WEB FOLDERS\IBM00002.DLL

Dropper information:
MD5: 033ea9b29300d8616514c090906ad1c3
File size: 151040 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images