Saturday, November 29, 2008

Adware.TVelocity Adware

Removing Adware.TVelocity
Categories: Adware,BHO,Hijacker
Adware are programs that facilitate delivery for advertising content
to the user and in some cases gather information from the user's computer,
including information related to Internet browser usage or other computer habits
The BHO (Browser Helper Object) waits for the user to post personal information to a monitored website.
As this information is entered by the user, it is captured by the BHO and sent back to the attacker.
A desktop hijacker replaces the desktop wallpaper with advertising
for products and services on the desktop.
Adware.TVelocity Also known as:

[McAfee]Adware-TVelocity;
[Panda]Spyware/TVMedia
Visible Symptoms:
Files in system folders:
[%APPDATA%]\tvmknwrd.dll
[%PROFILE_TEMP%]\temp.fr????\Tvm.exe
[%PROFILE_TEMP%]\Tvm.upd
[%PROFILE_TEMP%]\tvmupdater.exe
[%WINDOWS%]\addyc.dll
[%WINDOWS%]\addyu.dll
[%WINDOWS%]\cmuninstall.bat
[%WINDOWS%]\msknwrd.dll
[%PROFILE%]\recent\tv_media_display.20.zip.lnk
[%PROFILE%]\recent\tv_media_display.9.zip.lnk
[%PROFILE%]\recent\tv_media_display.zip.lnk
[%PROFILE%]\recent\tv_media_display_1.1.1.zip.lnk
[%PROFILE%]\recent\tv_media_display_1.1.zip.lnk
[%PROFILE%]\recent\tv_media_display_1.2.zip.lnk
[%PROFILE%]\recent\tv_media_display_1.3.zip.lnk
[%PROFILE%]\recent\tv_media_display_1.4.zip.lnk
[%PROFILE%]\recent\tv_media_display_1.zip.lnk
[%PROFILE%]\recent\tv_media_display_2.zip.lnk
[%PROFILE_TEMP%]\tvm_b5.exe
[%PROFILE_TEMP%]\~acetemp\tv media display.1\tv media display.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display.12\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.12\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.13\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.13\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.14\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.14\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.15\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.15\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.17\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display.17\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.17\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.2\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.2\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.5\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display.5\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.5\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.8\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display.8\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.8\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1.3\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1.3\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1.3\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1.4\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1.4\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1.4\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1\tvmknwrd.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1\tvmlg.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_2\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display_2\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_2\tvmcore.dll
[%WINDOWS%]\downloaded program files\memorymeter.dll
[%WINDOWS%]\downloaded program files\memorymeter.inf
[%WINDOWS%]\tvmd.exe
[%WINDOWS%]\tvtmd.exe
[%APPDATA%]\tvmknwrd.dll
[%PROFILE_TEMP%]\temp.fr????\Tvm.exe
[%PROFILE_TEMP%]\Tvm.upd
[%PROFILE_TEMP%]\tvmupdater.exe
[%WINDOWS%]\addyc.dll
[%WINDOWS%]\addyu.dll
[%WINDOWS%]\cmuninstall.bat
[%WINDOWS%]\msknwrd.dll
[%PROFILE%]\recent\tv_media_display.20.zip.lnk
[%PROFILE%]\recent\tv_media_display.9.zip.lnk
[%PROFILE%]\recent\tv_media_display.zip.lnk
[%PROFILE%]\recent\tv_media_display_1.1.1.zip.lnk
[%PROFILE%]\recent\tv_media_display_1.1.zip.lnk
[%PROFILE%]\recent\tv_media_display_1.2.zip.lnk
[%PROFILE%]\recent\tv_media_display_1.3.zip.lnk
[%PROFILE%]\recent\tv_media_display_1.4.zip.lnk
[%PROFILE%]\recent\tv_media_display_1.zip.lnk
[%PROFILE%]\recent\tv_media_display_2.zip.lnk
[%PROFILE_TEMP%]\tvm_b5.exe
[%PROFILE_TEMP%]\~acetemp\tv media display.1\tv media display.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display.12\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.12\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.13\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.13\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.14\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.14\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.15\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.15\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.17\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display.17\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.17\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.2\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.2\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.5\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display.5\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.5\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.8\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display.8\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.8\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1.3\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1.3\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1.3\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1.4\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1.4\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1.4\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1\tvmknwrd.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1\tvmlg.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_2\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display_2\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_2\tvmcore.dll
[%WINDOWS%]\downloaded program files\memorymeter.dll
[%WINDOWS%]\downloaded program files\memorymeter.inf
[%WINDOWS%]\tvmd.exe
[%WINDOWS%]\tvtmd.exe

How to detect Adware.TVelocity:

Files:
[%APPDATA%]\tvmknwrd.dll
[%PROFILE_TEMP%]\temp.fr????\Tvm.exe
[%PROFILE_TEMP%]\Tvm.upd
[%PROFILE_TEMP%]\tvmupdater.exe
[%WINDOWS%]\addyc.dll
[%WINDOWS%]\addyu.dll
[%WINDOWS%]\cmuninstall.bat
[%WINDOWS%]\msknwrd.dll
[%PROFILE%]\recent\tv_media_display.20.zip.lnk
[%PROFILE%]\recent\tv_media_display.9.zip.lnk
[%PROFILE%]\recent\tv_media_display.zip.lnk
[%PROFILE%]\recent\tv_media_display_1.1.1.zip.lnk
[%PROFILE%]\recent\tv_media_display_1.1.zip.lnk
[%PROFILE%]\recent\tv_media_display_1.2.zip.lnk
[%PROFILE%]\recent\tv_media_display_1.3.zip.lnk
[%PROFILE%]\recent\tv_media_display_1.4.zip.lnk
[%PROFILE%]\recent\tv_media_display_1.zip.lnk
[%PROFILE%]\recent\tv_media_display_2.zip.lnk
[%PROFILE_TEMP%]\tvm_b5.exe
[%PROFILE_TEMP%]\~acetemp\tv media display.1\tv media display.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display.12\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.12\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.13\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.13\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.14\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.14\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.15\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.15\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.17\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display.17\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.17\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.2\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.2\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.5\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display.5\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.5\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.8\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display.8\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.8\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1.3\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1.3\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1.3\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1.4\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1.4\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1.4\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1\tvmknwrd.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1\tvmlg.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_2\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display_2\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_2\tvmcore.dll
[%WINDOWS%]\downloaded program files\memorymeter.dll
[%WINDOWS%]\downloaded program files\memorymeter.inf
[%WINDOWS%]\tvmd.exe
[%WINDOWS%]\tvtmd.exe
[%APPDATA%]\tvmknwrd.dll
[%PROFILE_TEMP%]\temp.fr????\Tvm.exe
[%PROFILE_TEMP%]\Tvm.upd
[%PROFILE_TEMP%]\tvmupdater.exe
[%WINDOWS%]\addyc.dll
[%WINDOWS%]\addyu.dll
[%WINDOWS%]\cmuninstall.bat
[%WINDOWS%]\msknwrd.dll
[%PROFILE%]\recent\tv_media_display.20.zip.lnk
[%PROFILE%]\recent\tv_media_display.9.zip.lnk
[%PROFILE%]\recent\tv_media_display.zip.lnk
[%PROFILE%]\recent\tv_media_display_1.1.1.zip.lnk
[%PROFILE%]\recent\tv_media_display_1.1.zip.lnk
[%PROFILE%]\recent\tv_media_display_1.2.zip.lnk
[%PROFILE%]\recent\tv_media_display_1.3.zip.lnk
[%PROFILE%]\recent\tv_media_display_1.4.zip.lnk
[%PROFILE%]\recent\tv_media_display_1.zip.lnk
[%PROFILE%]\recent\tv_media_display_2.zip.lnk
[%PROFILE_TEMP%]\tvm_b5.exe
[%PROFILE_TEMP%]\~acetemp\tv media display.1\tv media display.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display.12\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.12\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.13\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.13\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.14\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.14\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.15\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.15\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.17\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display.17\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.17\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.2\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.2\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.5\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display.5\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.5\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.8\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display.8\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display.8\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1.3\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1.3\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1.3\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1.4\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1.4\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1.4\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1\tvmcore.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1\tvmknwrd.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_1\tvmlg.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_2\tvm.exe
[%PROFILE_TEMP%]\~acetemp\tv_media_display_2\tvmbho.dll
[%PROFILE_TEMP%]\~acetemp\tv_media_display_2\tvmcore.dll
[%WINDOWS%]\downloaded program files\memorymeter.dll
[%WINDOWS%]\downloaded program files\memorymeter.inf
[%WINDOWS%]\tvmd.exe
[%WINDOWS%]\tvtmd.exe

Folders:
[%PROGRAM_FILES%]\memorymeter
[%PROGRAM_FILES%]\tv media

Registry Keys:
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\tv media
HKEY_CLASSES_ROOT\clsid\{20ec3d2d-33c1-4c9d-bc37-c2d500688da2}
HKEY_CLASSES_ROOT\clsid\{707e6f76-9ffb-4920-a976-ea101271bc25}
HKEY_CLASSES_ROOT\clsid\{afdbb6d0-6b96-419c-8bc6-ff0b99368c0b}
HKEY_CLASSES_ROOT\htmlfile\clsid\config
HKEY_CLASSES_ROOT\htmlfile\clsid\guid
HKEY_CLASSES_ROOT\typelib\{afdbb6d0-6b96-419c-8bc6-ff0b99368c0b}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\memorymeter
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\msmgt
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\tvmd
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\tvtmd

Registry Values:
HKEY_CURRENT_USER\software\microsoft\internet explorer\urlsearchhooks
HKEY_CURRENT_USER\software\microsoft\internet explorer\urlsearchhooks
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\urlsearchhooks
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_CLASSES_ROOT\htmlfile\clsid
HKEY_CLASSES_ROOT\htmlfile\clsid
HKEY_CURRENT_USER\software\microsoft\internet explorer\media
HKEY_CURRENT_USER\software\microsoft\internet explorer\media
HKEY_CURRENT_USER\software\microsoft\internet explorer\urlsearchhooks
HKEY_CURRENT_USER\software\microsoft\msnmessenger\perpassportsettings\1262293243\groupstate
HKEY_CURRENT_USER\software\microsoft\msnmessenger\perpassportsettings\1262293243\groupstate
HKEY_CURRENT_USER\software\microsoft\msnmessenger\perpassportsettings\1262293243\groupstate
HKEY_CURRENT_USER\software\microsoft\msnmessenger\perpassportsettings\1262293243\groupstate
HKEY_CURRENT_USER\software\microsoft\msnmessenger\perpassportsettings\1262293243\groupstate
HKEY_CURRENT_USER\software\microsoft\msnmessenger\perpassportsettings\1262293243\groupstate
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\streams\158
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\runonce
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runonce
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall

Removing Adware.TVelocity:

You can download trial version of "Exterminate-It" antivirus software here, to check your computer instantly.

Or buy it to remove ALL viruses from your computer.

Also Be Aware of the Following Threats:
Kaitex Trojan Removal instruction
Su.ribbed Trojan Information
TFactory Downloader Removal instruction

Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)