Solved! Use CALIVESERVICE.EXE (Trojan Artemis) Removal Guide

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

CALIVESERVICE.EXE – Trojan Artemis removal

FileMD5Virus Alias
CALIVESERVICE.EXE aa199a1cd4cd49f824d0c52312e07f71 Trojan Artemis
CALIVESERVICE.EXE aa199a1cd4cd49f824d0c52312e07f71 Trojan SuspiciousFile
CALIVESERVICE.EXE aa199a1cd4cd49f824d0c52312e07f71 Trojan Generic
CALIVESERVICE.EXE aa199a1cd4cd49f824d0c52312e07f71 Adware Prevention
CALIVESERVICE.EXE aa199a1cd4cd49f824d0c52312e07f71 Backdoor RBot
CALIVESERVICE.EXE aa199a1cd4cd49f824d0c52312e07f71 Trojan CI

CALIVESERVICE.EXE size: 90112 bytes
CALIVESERVICE.EXE hash: AA199A1CD4CD49F824D0C52312E07F71

Created files:

%SysDir%\CAliveService.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\CWindows Test My Test 1.0\Type: 10000000
HKLM\System\CurrentControlSet\Services\CWindows Test My Test 1.0\Start: 02000000
HKLM\System\CurrentControlSet\Services\CWindows Test My Test 1.0\DisplayName: CWindows Test My Test Server 1.0
HKLM\System\CurrentControlSet\Services\CWindows Test My Test 1.0\ImagePath: %WinDir%\System32\CAliveService.exe
HKLM\System\CurrentControlSet\Services\CWindows Test My Test 1.0\Description: CThis is Windows Test My Test Server 1.0

Detected by UnHackMe:

CALIVESERVICE.EXE
Default location: %SYSDIR%\CALIVESERVICE.EXE

Dropper information:
MD5: aa199a1cd4cd49f824d0c52312e07f71
File size: 90112 bytes

Leave a Reply