I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free Download Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
IBSETUP.EXE – Trojan Artemis removal
| File | MD5 | Virus Alias |
|---|---|---|
| IBSETUP.EXE | b63da0483f327a0d80376debf90e7f8d | Trojan Artemis |
| IBSETUP.EXE | b63da0483f327a0d80376debf90e7f8d | Trojan Click |
| IBSETUP.EXE | b63da0483f327a0d80376debf90e7f8d | Trojan Downloader |
| IBSETUP.EXE | b63da0483f327a0d80376debf90e7f8d | Trojan Siggen |
| IBSETUP.EXE | b63da0483f327a0d80376debf90e7f8d | Trojan Agent |
IBSETUP.EXE size: 995375 bytes
IBSETUP.EXE hash: B63DA0483F327A0D80376DEBF90E7F8D
Created files:
%Program Files%\Instant Buzz\IBBar.dll
%Program Files%\Instant Buzz\IBDaemon.exe
%Program Files%\Instant Buzz\IBMH.dll
%Program Files%\Instant Buzz\IBSetup.exe
Autostart registry keys:
HKLM\Software\Classes\CLSID\{7475D3FD-5D85-49DB-8B9B-6968467B2D80}\InprocServer32 : C:\PROGRA~1\INSTAN~1\IBBar.dll
HKLM\Software\Classes\CLSID\{B8D60EBB-5565-4392-957B-7164BA087AD4}\InprocServer32 : C:\PROGRA~1\INSTAN~1\IBBar.dll
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\Instant Buzz Daemon: %Program Files%\Instant Buzz\IBDaemon.exe
HKLM\System\CurrentControlSet\Services\mchInjDrv\Type: 01000000
HKLM\System\CurrentControlSet\Services\mchInjDrv\Start: 04000000
HKLM\System\CurrentControlSet\Services\mchInjDrv\ImagePath: \??\%TEMP%\mc2BE.tmp
HKLM\System\CurrentControlSet\Services\mchInjDrv\DeleteFlag: 01000000
Detected by UnHackMe:
IBSETUP.EXE
Default location: %PROGRAM FILES%\INSTANT BUZZ\IBSETUP.EXE
Dropper information:
MD5: b63da0483f327a0d80376debf90e7f8d
File size: 995375 bytes