Categories: Adware,BHO,Hijacker,Hacker Tool
Adware are programs that facilitate delivery for advertising content
to the user and in some cases gather information from the user's computer,
including information related to Internet browser usage or other computer habits
The BHO (Browser Helper Object) waits for the user to post personal information to a monitored website.
As this information is entered by the user, it is captured by the BHO and sent back to the attacker.
When the default home page is hijacked, the browser opens to the web page set by the hijacker
instead of the user's designated home page. In some cases, the hijacker may block users from
restoring their desired home page.
Hacker Tools are designed to penetrate remote computers
in order to use them as zombies or to download other malicious programs to computer.
Visible Symptoms:
Files in system folders:
[%PROGRAM_FILES%]\SB\SMART-~1\BHO010~1.DLL
[%PROGRAM_FILES%]\SB\SMART-~1\BHO.0.1.0.155.dll
[%PROFILE_TEMP%]\iybd.5.exe
[%PROFILE_TEMP%]\logo.ico
[%PROFILE_TEMP%]\regme.exe
[%PROFILE_TEMP%]\system.htm
[%PROFILE_TEMP%]\ybd.dll
[%PROFILE_TEMP%]\ybdversion.5
[%PROGRAM_FILES%]\SB\SMART-~1\BHO010~1.DLL
[%PROGRAM_FILES%]\SB\SMART-~1\BHO.0.1.0.155.dll
[%PROFILE_TEMP%]\iybd.5.exe
[%PROFILE_TEMP%]\logo.ico
[%PROFILE_TEMP%]\regme.exe
[%PROFILE_TEMP%]\system.htm
[%PROFILE_TEMP%]\ybd.dll
[%PROFILE_TEMP%]\ybdversion.5 How to detect SmartBrowser:
Files:
[%PROGRAM_FILES%]\SB\SMART-~1\BHO010~1.DLL
[%PROGRAM_FILES%]\SB\SMART-~1\BHO.0.1.0.155.dll
[%PROFILE_TEMP%]\iybd.5.exe
[%PROFILE_TEMP%]\logo.ico
[%PROFILE_TEMP%]\regme.exe
[%PROFILE_TEMP%]\system.htm
[%PROFILE_TEMP%]\ybd.dll
[%PROFILE_TEMP%]\ybdversion.5
[%PROGRAM_FILES%]\SB\SMART-~1\BHO010~1.DLL
[%PROGRAM_FILES%]\SB\SMART-~1\BHO.0.1.0.155.dll
[%PROFILE_TEMP%]\iybd.5.exe
[%PROFILE_TEMP%]\logo.ico
[%PROFILE_TEMP%]\regme.exe
[%PROFILE_TEMP%]\system.htm
[%PROFILE_TEMP%]\ybd.dll
[%PROFILE_TEMP%]\ybdversion.5
Folders:
[%PROGRAM_FILES%]\sb\smart-~1
[%PROGRAM_FILES%]\sb\smart-browser\bho010~1.dll
Registry Keys:
HKEY_CLASSES_ROOT\BHO.iBHO
HKEY_CLASSES_ROOT\CLSID\{00000185-C745-43D2-44F1-01A1C789C738}
HKEY_CLASSES_ROOT\Interface\{00000183-C745-43D2-44F1-01A1C789C738}
HKEY_CLASSES_ROOT\TypeLib\{00000182-C745-43D2-44F1-01A1C789C738}
HKEY_LOCAL_MACHINE\software\classes\clsid\{00000185-c745-43d2-44f1-01a1c789c738}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00000185-C745-43D2-44F1-01A1C789C738}
HKEY_CLASSES_ROOT\bho.ibho
HKEY_CLASSES_ROOT\clsid\{00000185-c745-43d2-44f1-01a1c789c738}
HKEY_CLASSES_ROOT\interface\{00000183-b716-11d3-92f3-00d0b709a7d8}
HKEY_CLASSES_ROOT\interface\{00000183-c745-43d2-44f1-01a1c789c738}
HKEY_CLASSES_ROOT\software\microsoft\windows\currentversion\explorer\browser helper objects\{00000185-c745-43d2-44f1-01a1c789c738}
HKEY_CLASSES_ROOT\typelib\{00000182-b716-11d3-92f3-00d0b709a7d8}
HKEY_CLASSES_ROOT\typelib\{00000182-c745-43d2-44f1-01a1c789c738}
HKEY_CURRENT_USER\software\system\lastversion
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{00000185-c745-43d2-44f1-01a1c789c738}
Removing SmartBrowser:
You can download trial version of "Exterminate-It" antivirus software here, to check your computer instantly.
Or buy it to remove ALL viruses from your computer.Also Be Aware of the Following Threats:
Turkojan.Yard?m? Backdoor Removal
Remove VBS.Regidel Trojan
Sheep.Goat.14K Backdoor Information
TopLeftBlack Trojan Information
No comments:
Post a Comment