SETTING.EXE – Trojan Artemis

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

SETTING.EXE – Trojan Artemis removal

FileMD5Virus Alias
SETTING.EXE e30c69e32f0a9921fcbb98c4b49c0a41 Trojan Artemis
SETTING.EXE e30c69e32f0a9921fcbb98c4b49c0a41 Trojan Generic
SETTING.EXE e30c69e32f0a9921fcbb98c4b49c0a41 Trojan Graftor
SETTING.EXE e30c69e32f0a9921fcbb98c4b49c0a41 Trojan ADH
SETTING.EXE e30c69e32f0a9921fcbb98c4b49c0a41 Trojan StartPage

SETTING.EXE size: 258696 bytes
SETTING.EXE hash: E30C69E32F0A9921FCBB98C4B49C0A41

Created files:

%AppData%\baidu\hao123-ar\%APPDATA%\baidu\hao123-ar\hao123.1.0.0.1106.exe
%AppData%\baidu\hao123-ar\hao123inst.exe
%AppData%\baidu\hao123-ar\Setting.exe

Autostart registry keys:

HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce\hao123Setting: “%WinDir%\System32\config\Systemprofile\Application Data\baidu\hao123-ar\Setting.exe”

Detected by UnHackMe:

SETTING.EXE
Default location: %APPDATA%\BAIDU\HAO123-AR\SETTING.EXE

Dropper information:
MD5: 095e6f78fc6ac6ab2065f2423a36c028
File size: 401808 bytes

Leave a Reply