Home / Spyware Encyclopedia / IM.Buddy << Back

Recommendation to Automatically remove IM.Buddy


Our products can remove IM.Buddy and thousands of other Virus and Spyware automatically and instantly.

IM.Buddy Details


  • Category IM
  • Discovered 3/30/2009 9:51:11 AM
  • Modified 3/18/2020 3:42:09 PM
  • Threat Level High
  • Category Description
    A threat that is capable to cause Denial-Of-Service attacks against other instant messenger client systems.

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
xhrmy.exe 180224 1.0.0.1e58e15f7301e37924ba29d5a20a4c058 
Trojan-Dropper.Win32.Small.ajy.dll 86016  ffeb6b16e52a1a6cd8b3b94ae26d84c4 
hlinstaller3.exe 104784  ff1e2f1eedd5a15c432b898b1f27fe76 
Trojan-Dropper.Win32.Small.aj.exe 41984  ff15a3db1e7ef189c876db28de4cf1ef 
xstyles.exe 41984  ff15a3db1e7ef189c876db28de4cf1ef 
Trojan-Dropper.Win32.Small.ain.exe 37629  fed106c73dd4879f179a83c9cedd3670 
Trojan-Dropper.Win32.Small.ak.exe 103936  f97e1b8d58c27b936dd9fe98794a48b9 
tvm_b535.exe 17920  f24f6cb00e81c5a4cea93e5efa510336 
Trojan-Dropper.Win32.Small.aji.exe 305152  eab451dc9819018238da09762b23d582 
Trojan-Dropper.Win32.Small.aju.exe 6144  e3fe6de733b5756178beb5ee237f7945 

The following Registry Entries were created:
..\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\"{7384C70C-B2E3-4618-A8FD-5772857D084A}"
..\Software\Microsoft\Windows\CurrentVersion\RunOnce\\"NvXplDeamon"\"xstyles.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"NvXplDeamon"\"xstyles.exe"
..\Software\Classes\Clsid\{7384C70C-B2E3-4618-A8FD-5772857D084A}\(Default)
..\Software\Microsoft\Windows\CurrentVersion\Run\\"xhrmy"\"%WIN%\Xhrmy.exe"
..\Software\Microsoft\Windows\CurrentVersion\RunServices\\"msadmin"\"%win.sys32%\jdbgmrg.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"msadmin"\"%win.sys32%\jdbgmrg.exe"
..\Software\xhrmy\(Default)
..\Software\Classes\html.mm.1\(Default)
..\Software\Classes\html.mm\(Default)

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware


Useful Links

Copyright © 2022 Max Secure Software. All rights reserved.