Saturday, November 1, 2008

OpinionBar BHO

Removing OpinionBar
Categories: BHO,Toolbar
As this information is entered by the user, it is captured by the BHO (Browser Helper Object) and
sent back to the attacker.
Typically, keyloggers of this type will send the stolen information back to the attacker via email
or HTTP POST, which can appear suspicious.Toolbar presents itself as a helpful add-on for Internet Explorer but it is a real pest.
It replaces your start page, continuosly open a number of pop up windows and so on.

Visible Symptoms:
Files in system folders:
[%SYSTEM%]\myiemonitor.dll
[%WINDOWS%]\system\myiemonitor.dll
[%SYSTEM%]\myiemonitor.dll
[%WINDOWS%]\system\myiemonitor.dll

How to detect OpinionBar:

Files:
[%SYSTEM%]\myiemonitor.dll
[%WINDOWS%]\system\myiemonitor.dll
[%SYSTEM%]\myiemonitor.dll
[%WINDOWS%]\system\myiemonitor.dll

Registry Keys:
HKEY_CLASSES_ROOT\CLSID\{6607C683-AE7C-11D4-ACD7-0050DAC291A2}
HKEY_LOCAL_MACHINE\software\classes\clsid\{6607c683-ae7c-11d4-acd7-0050dac291a2}
HKEY_CLASSES_ROOT\clsid\{6607c683-ae7c-11d4-acd7-0050dac291a2}
HKEY_CLASSES_ROOT\software\microsoft\windows\currentversion\explorer\browser helper objects\{6607c683-ae7c-11d4-acd7-0050dac291a2}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{6607c683-ae7c-11d4-acd7-0050dac291a2}

Removing OpinionBar:

You can download trial version of "Exterminate-It" antivirus software here, to check your computer instantly.

Or buy it to remove ALL viruses from your computer.

Also Be Aware of the Following Threats:
Removing GhostKeyLogger Spyware
ZeroVir Downloader Symptoms
Satiloler Trojan Symptoms
Removing DittoSideBar Adware
CSearch BHO Removal instruction

IconAds Adware

Removing IconAds
Categories: Adware
Adware are programs that facilitate delivery for advertising content
to the user and in some cases gather information from the user's computer,
including information related to Internet browser usage or other computer habits

IconAds Also known as:

[Kaspersky]AdWare.Win32.EZula.cc;
[Other]Adware-BitLocker,Spyware.SafteSurfing

Visible Symptoms:
Files in system folders:
[%PROFILE_TEMP%]\nodeipprocStp.exe
[%SYSTEM%]\nse7F.dll
[%SYSTEM%]\uninstIcn.exe
[%WINDOWS%]\justin_bundle.exe
[%PROFILE_TEMP%]\nodeipprocStp.exe
[%SYSTEM%]\nse7F.dll
[%SYSTEM%]\uninstIcn.exe
[%WINDOWS%]\justin_bundle.exe

How to detect IconAds:

Files:
[%PROFILE_TEMP%]\nodeipprocStp.exe
[%SYSTEM%]\nse7F.dll
[%SYSTEM%]\uninstIcn.exe
[%WINDOWS%]\justin_bundle.exe
[%PROFILE_TEMP%]\nodeipprocStp.exe
[%SYSTEM%]\nse7F.dll
[%SYSTEM%]\uninstIcn.exe
[%WINDOWS%]\justin_bundle.exe

Registry Keys:
HKEY_CLASSES_ROOT\typelib\{c845ac9a-70a6-491c-9106-d34a360e1f58}

Removing IconAds:

You can download trial version of "Exterminate-It" antivirus software here, to check your computer instantly.

Or buy it to remove ALL viruses from your computer.

Also Be Aware of the Following Threats:
Galorion Trojan Information
Wussoe Trojan Removal
Removing Surila Trojan
Small.B Trojan Cleaner
SubSearch Adware Information

Becower Trojan

Removing Becower
Categories: Trojan
This loose category includes a variety of Trojans that damage victim machines or
threaten data integrity, or impair the functioning of the victim machine.

Multi-purpose Trojans are also included in this group, as some virus writers
create multi-functional Trojans rather than Trojan packs.

Becower Also known as:

[Kaspersky]Trojan-Spy.Win32.Sters.ag,Trojan-Spy.Win32.Sters.ao;
[McAfee]Spy-Agent.bh.dll,PWS-Snap;
[Other]Win32/Becower.G,Infostealer,Win32/Becower.F,TrojanSpy:Win32/Sters,TSPY_STERS.AO,Dimpy.win32VBsy

How to detect Becower:

Registry Keys:
HKEY_CLASSES_ROOT\ib15_27.cbrowserhelper
HKEY_CLASSES_ROOT\clsid\{1e6ce4cd-161b-4847-b8bf-e2ef72299d69}
HKEY_CLASSES_ROOT\interface\{8da33762-bbdc-4b80-9094-999cfbba8bd9}
HKEY_CLASSES_ROOT\interface\{cbc44498-2149-4879-b0e2-880609e306ab}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{1e6ce4cd-161b-4847-b8bf-e2ef72299d69}

Removing Becower:

You can download trial version of "Exterminate-It" antivirus software here, to check your computer instantly.

Or buy it to remove ALL viruses from your computer.

Also Be Aware of the Following Threats:
Spabot.x Trojan Information
Remove Win32.Tibs.br Trojan
Zlob.Fam.Protection Tools Trojan Symptoms
Transponder Malware Information
NetControl.build Backdoor Information