a variant of Win32/Baidu.H potentially unwanted

malware No Comments

Dmitry Sokolov recommends UnHackMe!

UnHackMe is a powerful tool against malware.

UnHackMe quickly removes rootkits/malware/adware/browser hijack issues!

: Solved! 5 Stars (5 / 5)

a variant of Win32/Baidu.H potentially unwanted also known as W32.HfsAdware.9CF6, Adware ( 004eb2591 ).

Malware Analysis of a variant of Win32/Baidu.H potentially unwanted – SIJYG.DLL

Created files:

%Temp%\bdt\7780130a0c503730ea2cf18b01922d56.bdt
%Temp%\bdt\aa55e5e7f8d09a95bdb9ad417bab49fd.bdt
%Temp%\sijyg\sijyg.dll
%Programs%\??.lnk
%Profile%\AppData\Local\Baidu\BaiduClient\2.2.0.1452\atl100.dll

Autostart registry keys:

HKCU\Software\Microsoft\Windows\CurrentVersion\Run\BaiduClient: “”%Profile%\AppData\Local\Baidu\BaiduClient\2.2.0.1452\Baidu.exe” -noclient”

Detected by UnHackMe:

SIJYG.DLL
Default location: %TEMP%\SIJYG\SIJYG.DLL

Dropper hash(md5): d4901a94f74bafb71ce5185e4ad8618d

Written by 

Malware Hunter.

UnHackMe removes malware invisible for your antivirus!

Free Download

4
UnHackMe is compatible with most antivirus software.
UnHackMe is 100% CLEAN, which means it does not contain any form of malware, including adware, spyware, viruses, trojans and backdoors. VirusTotal (0/56).
System Requirements: Windows 2000-Windows 8.1/10. UnHackMe uses minimum of computer resources.

Tatva WordPress theme by IdeaBox

WordPress SEO fine-tune by Meta SEO Pack from Poradnik Webmastera