I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free Download Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
JIETU.EXE – Unclassified Malware removal
JIETU.EXE size: 697720 bytes
JIETU.EXE hash: EE7EBE971900CA4C54BAF4A72F4409AC
Created files:
%AppData%\xnuu.com\guanji.exe
%AppData%\xnuu.com\hunxiang\Mmutil32.dll
%AppData%\xnuu.com\hunxiang\UnicodeFile.bin
%AppData%\xnuu.com\hunxiang\UnicodeFile_1.bin
%AppData%\xnuu.com\jietu.exe
%AppData%\xnuu.com\skin\adamant.she
%AppData%\xnuu.com\skin\aero.she
%AppData%\xnuu.com\skin\china.she
%AppData%\xnuu.com\skin\dogmax.she
%AppData%\xnuu.com\skin\QQ2009.she
%AppData%\xnuu.com\skin\Skin.dll
%AppData%\xnuu.com\sound\UnicodeFile.bin
%AppData%\xnuu.com\sound\UnicodeFile_1.bin
%AppData%\xnuu.com\sound\UnicodeFile_2.bin
%AppData%\xnuu.com\sound\UnicodeFile_3.bin
%AppData%\xnuu.com\sound\UnicodeFile_4.bin
%AppData%\xnuu.com\sound\UnicodeFile_5.bin
%AppData%\xnuu.com\sound\UnicodeFile_6.bin
%AppData%\xnuu.com\sound\UnicodeFile_7.bin
%AppData%\xnuu.com\sound\UnicodeFile_8.bin
%AppData%\xnuu.com\sound\UnicodeFile_9.bin
%AppData%\xnuu.com\sound\UnicodeFile_10.bin
%AppData%\xnuu.com\sound\UnicodeFile_11.bin
%AppData%\xnuu.com\sound\UnicodeFile_12.bin
%AppData%\xnuu.com\sound\UnicodeFile_13.bin
%AppData%\xnuu.com\sound\UnicodeFile_14.bin
%AppData%\xnuu.com\sound\UnicodeFile_15.bin
%AppData%\xnuu.com\sound\UnicodeFile_16.bin
%AppData%\xnuu.com\sound\UnicodeFile_17.bin
%AppData%\xnuu.com\sound\UnicodeFile_18.bin
%AppData%\xnuu.com\sound\UnicodeFile_19.bin
%AppData%\xnuu.com\sound\UnicodeFile_20.bin
%AppData%\xnuu.com\sound\UnicodeFile_21.bin
%AppData%\xnuu.com\sound\UnicodeFile_22.bin
%AppData%\xnuu.com\sound\UnicodeFile_23.bin
%AppData%\xnuu.com\sound\UnicodeFile_24.bin
%SysDir%\drivers\etc\hosts
%TEMP%\~GM71.exe
Detected by UnHackMe:
JIETU.EXE
Default location: %APPDATA%\XNUU.COM\JIETU.EXE
Dropper information:
MD5: ab19e07c5aa5a2bdebec2d7ac6e29d8c
File size: 3164425 bytes