Dmitry Sokolov recommends UnHackMe!
UnHackMe is a powerful tool against malware.UnHackMe quickly removes rootkits/malware/adware/browser hijack issues!
Artemis!FC4B9F3ADA0E also known as PUA.MSIL.NewPlayer.A, Generic PUA OD (PUA), a variant of MSIL/NewPlayer.A potentially unwanted.
Malware Analysis of Artemis!FC4B9F3ADA0E – NVPUPDATER.EXE
Created files:
%Program Files%\NewPlayer\NewVideoPlayerUpdaterService.InstallLog
%Program Files%\NewPlayer\NewVideoPlayerUpdaterService.InstallState
%Program Files%\NewPlayer\NVPUpdater.exe
%Program Files%\NewPlayer\PhotoLoader.dll
%Program Files%\NewPlayer\policy.2.0.taglib-sharp.config
Autostart registry keys:
HKLM\Software\Classes\Applications\NewVideoPlayer.exe\shell\Play\command\: “”%Program Files%\NewPlayer\NewVideoPlayer.exe” /m “%1″”
HKLM\Software\Classes\Applications\NewVideoPlayer.exe\SupportedTypes\.mp3: “”
HKLM\Software\Classes\Applications\NewVideoPlayer.exe\SupportedTypes\.aac: “”
HKLM\Software\Classes\Applications\NewVideoPlayer.exe\SupportedTypes\.wav: “”
HKLM\Software\Classes\Applications\NewVideoPlayer.exe\SupportedTypes\.aif: “”
HKLM\Software\Classes\Applications\NewVideoPlayer.exe\SupportedTypes\.wma: “”
HKLM\Software\Classes\Applications\NewVideoPlayer.exe\SupportedTypes\.mp4: “”
HKLM\Software\Classes\Applications\NewVideoPlayer.exe\SupportedTypes\.avi: “”
HKLM\Software\Classes\Applications\NewVideoPlayer.exe\SupportedTypes\.mpg: “”
HKLM\Software\Classes\Applications\NewVideoPlayer.exe\SupportedTypes\.mpeg: “”
HKLM\Software\Classes\Applications\NewVideoPlayer.exe\SupportedTypes\.3gp: “”
HKLM\Software\Classes\Applications\NewVideoPlayer.exe\SupportedTypes\.mov: “”
HKLM\Software\Classes\Applications\NewVideoPlayer.exe\SupportedTypes\.wmv: “”
HKLM\Software\Classes\Applications\NewVideoPlayer.exe\SupportedTypes\.divx: “”
HKLM\Software\Classes\Applications\NewVideoPlayer.exe\SupportedTypes\.mkv: “”
HKLM\Software\Classes\Applications\NewVideoPlayer.exe\SupportedTypes\.flv: “”
HKLM\Software\Classes\Applications\NewVideoPlayer.exe\: “”
HKLM\Software\Classes\Applications\NewVideoPlayer.exe\FriendlyAppName: “NewPlayer”
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\NewPlayer\DisplayName: “NewPlayer”
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\NewPlayer\UninstallString: “%Program Files%\NewPlayer\uninstall.exe”
HKLM\System\CurrentControlSet\Services\NewVideoPlayerUpdaterService\ImagePath: “”%Program Files%\NewPlayer\NewVideoPlayerUpdaterService.exe””
HKLM\System\CurrentControlSet\Services\NewVideoPlayerUpdaterService\DisplayName: “NewVideoPlayer Updater Service”
Detected by UnHackMe:
NVPUPDATER.EXE
Default location: %PROGRAM FILES%\NEWPLAYER\NVPUPDATER.EXE
Dropper hash(md5): 6ff11ca0d77607884cf86ef0ee7070ce
UnHackMe
removes malware invisible for your antivirus!
UnHackMe is 100% CLEAN, which means it does not contain any form of malware, including adware, spyware, viruses, trojans and backdoors. VirusTotal (0/56).
System Requirements: Windows 2000-Windows 8.1/10. UnHackMe uses minimum of computer resources.