Adware.MyWebSearch.az
|
Description:
|
Adware
|
|
Risk Level:
|
Critical
|
|
Date of First Occurence:
|
Monday, April 14, 2008
|
|
Software Developer:
|
(unknown)
|
|
Brief Info:
|
Adware
Software that is displaying pop-up/pop-under windows containing advertisements when the primary user interface is not visible or displayed advertisements are not related to the product.
|
|
Removal:
|
This threat can be removed using "Spyware
Terminator"
|
SCAN & REMOVE NOW »
Geographical Distribution of Threat "Adware.MyWebSearch.az"
Threat Info
View All
Detected Items
- Detected Files:
%PROGRAMFILES%\AskTBar\bar\1.bin\ASKTBAR.DLL
MD5: 37AC510F81CBD57F4D8B73C564516213 Size:237568
MD5: 59DBFE16AA20144CB11E7FC8B2D21EAA
- Detected Files with variable Filenames:
MD5: 59DBFE16AA20144CB11E7FC8B2D21EAA Size: 245760
%PROGRAMFILES%\AskTBar\bar\1.bin\ASKTBAR.DLL
%PROGRAMFILES%\AskTBar\bar\2.bin\ASKTBAR.DLL
%PROGRAMFILES%\Trend Micro\HijackThis\backups\backup-20080801-161354-655.dll
%PROGRAMFILES%\Uninstall Ask Toolbar.dll
%PROGRAMFILES%\AskTBar\bar\1.bin\ASKTBAR.DLL.ren
%PROGRAMFILES%\AskTBar\bar\3.bin\ASKTBAR.DLL
%PROGRAMFILES%\AskTBar\bar\A.BIN\ASKTBAR.DLL
%SystemDiskRoot%\System Volume Information\_restore{6970074A-6DB8-4345-8DF6-FE3D68381EFB}\RP18\A0007333.DLL
d:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL
%PROGRAMFILES%\AskTBar\bar\4.bin\ASKTBAR.DLL
%PROGRAMFILES%\AskTBar\bar\7.bin\ASKTBAR.DLL
and next 24 variations.
MD5: 30E4C0A012AE80E8479523A8D9A3217F Size: 57344
%PROGRAMFILES%\AskTBar\SrchAstt\2.bin\A5SRCHAS.DLL
%PROGRAMFILES%\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL
%PROGRAMFILES%\Trend Micro\HijackThis\backups\backup-20080801-161354-636.dll
%USERDOCUMENTS%\a5srchas.dll
%PROGRAMFILES%\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL.ren
%PROGRAMFILES%\AskTBar\SrchAstt\3.bin\A5SRCHAS.DLL
%SystemDiskRoot%\System Volume Information\_restore{28A9C420-C064-47C6-852D-52A20A3341CC}\RP351\A0095860.DLL
%PROGRAMFILES%\AskTBar\SrchAstt\7.bin\A5SRCHAS.DLL
%PROGRAMFILES%\AskTBar\SrchAstt\1.bin\_A5SRCHAS.DLL
%PROGRAMFILES%\AskTBar\SrchAstt\2.bin\_A5SRCHAS.DLL
%PROGRAMFILES%\AskTBar\SrchAstt\6.bin\A5SRCHAS.DLL
and next 26 variations.
MD5: 97067187788E16059728D3A6F4A1D827 Size: 57344
%PROGRAMFILES%\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL
%PROGRAMFILES%\AskTBar\SrchAstt\a.bin\A5SRCHAS.DLL
%PROGRAMFILES%\AskTBar\SrchAstt\9.bin\A5SRCHAS.DLL
%PROGRAMFILES%\AskTBar\SrchAstt\2.bin\A5SRCHAS.DLL
%PROGRAMFILES%\AskTBar\SrchAstt\4.bin\A5SRCHAS.DLL
%PROGRAMFILES%\AskTBar\SrchAstt\6.bin\A5SRCHAS.DLL
%PROGRAMFILES%\AskTBar\SrchAstt\3.bin\A5SRCHAS.DLL
%PROGRAMFILES%\AskTBar\SrchAstt\b.bin\A5SRCHAS.DLL
%PROGRAMFILES%\AskTBar\SrchAstt\10.bin\A5SRCHAS.DLL
%PROGRAMFILES%\AskTBar\SrchAstt\5.bin\A5SRCHAS.DLL
MD5: 69A3EB924678BB23047E6248648E6534 Size: 118784
%PROGRAMFILES%\AskTBar\bar\1.bin\A5POPSWT.DLL
%PROGRAMFILES%\AskTBar\bar\4.bin\A5POPSWT.DLL
%PROGRAMFILES%\AskTBar\bar\2.bin\A5POPSWT.DLL
d:\UTIL\PEL - C\Arquivos de programas\AskTBar\bar\1.bin\A5POPSWT.DLL
%SystemDiskRoot%\System Volume Information\_restore{216981DE-29CB-425A-9FC9-4FD04270410D}\RP22\A0015136.DLL
%PROGRAMFILES%\AskTBar\bar\3.bin\A5POPSWT.DLL
f:\Mamua\Program Files\AskTBar\bar\1.bin\A5POPSWT.DLL
%PROGRAMFILES%\AskTBar\bar\d.bin\A5POPSWT.DLL
%SystemDiskRoot%\System Volume Information\_restore{F89817AF-0A8C-4752-B403-11B3333F859B}\RP1906\A0289626.DLL
%SystemDiskRoot%\RECYCLER\S-1-5-21-3477965634-3916044016-2310515055-1006\Dc3\2.bin\A5POPSWT.DLL
d:\Program Files\AskTBar\bar\1.bin\A5POPSWT.DLL
and next 15 variations.
Detecting items list:
- Files by Name
%PROGRAMFILES%\AskTBar\bar\1.bin\A5POPSWT.DLL
%PROGRAMFILES%\AskTBar\bar\1.bin\ASKTBAR.DLL
%PROGRAMFILES%\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL
- Files by MD5
MD5: 69A3EB924678BB23047E6248648E6534 Size: 118784
MD5: 59DBFE16AA20144CB11E7FC8B2D21EAA Size: 245760
MD5: 30E4C0A012AE80E8479523A8D9A3217F Size: 57344
- Files by Directories
%PROGRAMFILES%\AskTBar\SrchAstt
«
Go to Software Database