Friday, December 5, 2008

Protocol Hijacker Hijacker

Removing Protocol Hijacker
Categories: Hijacker
Hijackers are software programs that modify users' default browser home page,
search settings, error page settings, or desktop wallpaper without adequate notice, disclosure,
or user consent.
Visible Symptoms:
Files in system folders:
[%PROGRAM_FILES%]\COMMONNAME\TOOLBAR\cnbabe.dll
[%PROGRAM_FILES%]\Crawler\Toolbar\ctbr.dll
[%PROGRAM_FILES%]\ICOO Loader\addons\icoou.dll
[%PROGRAM_FILES%]\rxtoolbar\sfcont.dll
[%PROGRAM_FILES%]\Toolbar\toolbar.dll
[%SYSTEM%]\lmf32v.dll
[%WINDOWS%]\ftpsconfig.dll
[%PROGRAM_FILES%]\COMMONNAME\TOOLBAR\cnbabe.dll
[%PROGRAM_FILES%]\Crawler\Toolbar\ctbr.dll
[%PROGRAM_FILES%]\ICOO Loader\addons\icoou.dll
[%PROGRAM_FILES%]\rxtoolbar\sfcont.dll
[%PROGRAM_FILES%]\Toolbar\toolbar.dll
[%SYSTEM%]\lmf32v.dll
[%WINDOWS%]\ftpsconfig.dll

How to detect Protocol Hijacker:

Files:
[%PROGRAM_FILES%]\COMMONNAME\TOOLBAR\cnbabe.dll
[%PROGRAM_FILES%]\Crawler\Toolbar\ctbr.dll
[%PROGRAM_FILES%]\ICOO Loader\addons\icoou.dll
[%PROGRAM_FILES%]\rxtoolbar\sfcont.dll
[%PROGRAM_FILES%]\Toolbar\toolbar.dll
[%SYSTEM%]\lmf32v.dll
[%WINDOWS%]\ftpsconfig.dll
[%PROGRAM_FILES%]\COMMONNAME\TOOLBAR\cnbabe.dll
[%PROGRAM_FILES%]\Crawler\Toolbar\ctbr.dll
[%PROGRAM_FILES%]\ICOO Loader\addons\icoou.dll
[%PROGRAM_FILES%]\rxtoolbar\sfcont.dll
[%PROGRAM_FILES%]\Toolbar\toolbar.dll
[%SYSTEM%]\lmf32v.dll
[%WINDOWS%]\ftpsconfig.dll

Registry Keys:
HKEY_CLASSES_ROOT\CLSID\{0EB00690-8FA1-11D3-96C7-829E3EA50C29}
HKEY_CLASSES_ROOT\clsid\{2ab289ae-4b90-4281-b2ae-1f4bb034b647}
HKEY_CLASSES_ROOT\CLSID\{4A8DADD4-5A25-4d41-8599-CB7458766220}
HKEY_CLASSES_ROOT\CLSID\{4D25FB7A-8902-4291-960E-9ADA051CFBBF}
HKEY_CLASSES_ROOT\CLSID\{86FE362E-74FA-4f71-8B69-B94D28880628}
HKEY_CLASSES_ROOT\CLSID\{9346A6BB-1ED0-4174-AFB4-13CD4EC0AA40}
HKEY_CLASSES_ROOT\CLSID\{994D478A-45D0-4DB4-AE77-288B1E346E99}
HKEY_CLASSES_ROOT\clsid\{da28e0db-229c-4003-827e-96ae15ad90fb}
HKEY_CLASSES_ROOT\CLSID\{DFAA31C8-A356-4313-9D95-5EDAB46C5070}
HKEY_CLASSES_ROOT\CLSID\{FF76A5DA-6158-4439-99FF-EDC1B3FE100C}
HKEY_CLASSES_ROOT\PROTOCOLS\Filter\text\html
HKEY_CLASSES_ROOT\PROTOCOLS\Handler\cn
HKEY_CLASSES_ROOT\protocols\handler\icoo
HKEY_CLASSES_ROOT\PROTOCOLS\Handler\tbr
HKEY_CLASSES_ROOT\PROTOCOLS\Handler\tpro

Removing Protocol Hijacker:

You can download trial version of "Exterminate-It" antivirus software here, to check your computer instantly.

Or buy it to remove ALL viruses from your computer.

Also Be Aware of the Following Threats:
Remove Digital.Upload Backdoor

Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)