BDHelper

Description:	Spyware
Risk Level:	High
Date of First Occurence:	Tuesday, April 15, 2008
Software Developer:	(unknown)
Brief Info:	BDHelper is a spyware that hijacks your IE browser searches. The spyware is implemented as an IE plugin. This spyware seems to be related to a Chinese based search engine Baidu.com.
Removal:	This threat can be removed using "Spyware Terminator"

ENTFERNEN SPYWARE »

Geographical Distribution of Threat "BDHelper"

Threat Info

View All

Detected Items

Detected Files: %DOWNLOADEDPROGRAMFILES%\BDSRHOOK.DLL MD5: 5A3DBF919FCAA0FC8A0DBF5FCB9AC04A Size:32768 MD5: 9F4DE7AD5D16F2D46A63BBAC1BC93607 Size:167936 %PROGRAMFILES%\BaiDu\bar\BaiduBar.dll MD5: 8F2AFE8CDB634EC2DA8F39C71624FF48 Size:598107 MD5: F082A992F1DE45E8FD0EB1365F07CC4D Size:1228923 MD5: FA57E0A17BAD2059B7595E7821D31678 Size:1577094 MD5: E4BC62A44704DB1E93D4E839781D1920 Size:293376 %DOWNLOADEDPROGRAMFILES%\BDPlugin.dll MD5: 94EDC739BE358657E574D8548504C53E Size:110592 %PROGRAMFILES%\Baidu\iexp\bdgdins.dll MD5: DC7B95A023B9D22944238C77EDC78500 Size:72192 %PROGRAMFILES%\Baidu\bar\BaiDuBar.dll MD5: B838B2F409232C0BE0F983C9FE5080EF Size:293376 MD5: 7299B8220BC2258472A2F5F907833FA3 Size:1343622 MD5: 22B04597D91C0BA6590172844B07D202 Size:287232 %DOWNLOADEDPROGRAMFILES%\BDSrHook.dll MD5: AA1B0EDA42D8A6FCE282D10E3B363D9F Size:163840 %PROGRAMFILES%\Baidu\bar\BDBar_tmp\BaiduBar.dll MD5: FBB26D78650A4024DF4DF5DCF1CC3444 Size:1228892 MD5: E79968DEEA1BDEC744C368658CCD0E00 Size:684123 MD5: 1B8F4DF33E4B9A3EA2E4616A148B35B4 Size:1355907 %PROGRAMFILES%\Baidu\Disk Search\wps2textd.dll MD5: 4D853652DB5D63AE1639B1978F3AF83E Size:217088 %PROGRAMFILES%\Baidu\Disk Search\SegRes.dll MD5: 1847AAFA5F5FF1014007AC8907286D4F Size:528384 %PROGRAMFILES%\Baidu\Disk Search\rtffilt.dll MD5: 49FCF1DF9850028ABBCAB296D2EB1ECF Size:14336 %PROGRAMFILES%\Baidu\Disk Search\pdfzhres.dll MD5: AC6C32DC3577266C019DEC39B30FCCF5 Size:614400 %PROGRAMFILES%\Baidu\Disk Search\pdfToTextLib.dll MD5: 35B9684257C14DF6CCC87A09B7489A2D Size:303104 %PROGRAMFILES%\Baidu\Disk Search\DSMTool.exe MD5: 974EF0475E23CA5B99773694B091B2A3 Size:40960 %PROGRAMFILES%\Baidu\Disk Search\DSMozilla1_5.dll MD5: 21147B845377852E338283A455BDBEC2 Size:36864 %PROGRAMFILES%\Baidu\Disk Search\DSMozilla.dll MD5: 1B741F4C192754E8BA81CDD8914F251C Size:32768 %PROGRAMFILES%\Baidu\Disk Search\DiskSearchServiceStub.dll MD5: C9B8AA638B5403D28419AFF4007F8EDF Size:24576 %PROGRAMFILES%\Baidu\Disk Search\DiskSearchService.dll MD5: 4D6D8CD6CAD471F087686A6D299901BA Size:114688 %PROGRAMFILES%\Baidu\Disk Search\BaiduDSUpdate.exe MD5: BE9A40C40BEEC19B1137B7D56818DFA6 Size:73728 %PROGRAMFILES%\Baidu\Disk Search\delete_trash.exe MD5: E5429449E906C123F2D63806385DC983 Size:372736 %PROGRAMFILES%\Baidu\Disk Search\unins000.exe MD5: E0D8898E07DAC28E734FAA52736408C0 Size:681430 %PROGRAMFILES%\Baidu\Disk Search\BaiduCrawl.exe MD5: 158FE32DFC08538F63407E2B527E94E8 Size:192512 %PROGRAMFILES%\Baidu\Disk Search\DesktopRes.dll MD5: 9A545EDFA5C3B472EF933155E7CD26A5 Size:512000 %PROGRAMFILES%\Baidu\Disk Search\htmlparser.dll MD5: 1B38AB0117AF5329F7194CC0521AF97A Size:196608 %PROGRAMFILES%\Baidu\Disk Search\zlib1.dll MD5: 9BDE89BB184FCA600B767FB17B51E3B7 Size:73728 %PROGRAMFILES%\Baidu\Disk Search\segment.dll MD5: CC2FD4C0BBDBBD646F55F0909805871B Size:102400 %PROGRAMFILES%\Baidu\Disk Search\BaiduDiskSearch.exe MD5: 30212AEEB281B9E25BCFA2ADF63EE1CC Size:905216 %PROGRAMFILES%\Baidu\Disk Search\QuickBaidu.dll MD5: F1B7B4B188F8F888DFADFA04A3BB4B71 Size:77824 %PROGRAMFILES%\baidu\Baidu Hi\AppUtil.dll MD5: 0AA9E965BD06C60F60EC02E3C9632008 Size:351328 MD5: 108A1E882C2AB648E8823D1F0AB97395 Size:351328 MD5: 8BAC80ECBA7286511E7E0976CDB529D8 Size:343136 MD5: 3354CE46B3DF9084F7A950ECC0CCFC8E Size:343136 %PROGRAMFILES%\baidu\Baidu Hi\SkinDLL.dll MD5: 879A2DEF819589C8596D48E261217BF9 Size:224352 MD5: 7E10D93FAB5985F700E5572B49C4BA93 Size:224352 MD5: D7FA27206829613B72E071A048BD3D44 Size:224352 MD5: A17B7D78579ABB4A07689E57900B7A22 Size:224352 %PROGRAMFILES%\baidu\Baidu Hi\BVELib.dll MD5: 155D6CD84F77BB08B3D431CBFFF2E4FB Size:605280 %PROGRAMFILES%\baidu\Baidu Hi\GipsVideoDll.dll MD5: 7166E6E11FAA6D61211AE988EF8B61C9 Size:794624 %PROGRAMFILES%\baidu\Baidu Hi\MediaCtrl.dll MD5: 9617E32DCCFEA26F3C933D35B13B5CE7 Size:871520 %PROGRAMFILES%\baidu\Baidu Hi\fmmgr.dll MD5: FBBA63BB7AF62B8C6BD583A6D72631DF Size:97376 MD5: DE8CD688F171802E5FA5D2C82EA9D64F Size:97376 MD5: 14106EB56C558C776092A6A14FEE3821 Size:97376 MD5: 7F98ABA4FFC42D6DC54F86D56CC666BE Size:97376 %PROGRAMFILES%\baidu\Baidu Hi\LocalLog.dll MD5: F79BF5499CE232206269CABE2B0A4CAE Size:89184 MD5: 144BE0C1697ABB45B88B7516AADBBDB7 Size:89184 MD5: D47EC664CC7BE80C3584D5A08426E43D Size:89184 MD5: A8BF66A16F398230D0B693C284318B92 Size:89184 %PROGRAMFILES%\baidu\Baidu Hi\ImStorage.dll MD5: 24CA5C3A62A2902468AC3345F888FB1A Size:109664 MD5: 29ABA05DDF9E4EEBD0052D883F699BDF Size:109664 MD5: C3CDBBB160F988884E8FD2DA32346123 Size:109664 MD5: F61D3DF973442E63F2A956E59FC20906 Size:109664 %PROGRAMFILES%\baidu\Baidu Hi\CSTransfer.dll MD5: 7BB5F1AC94D0E089D71741963F1E5FC5 Size:60512 MD5: 39DF9CC459426492A08EB8260C0E1642 Size:60512 MD5: A99548A8C2FF05CB554D7F3A26558195 Size:60512 MD5: 90A8F7651F0A3D7C3B46D2E13DA43EA9 Size:60512 %PROGRAMFILES%\baidu\Baidu Hi\ImEngine.dll MD5: 0F356C06C762F18AA460516E895E3FA0 Size:1834080 MD5: 75B9F54509A671B2576AEF18C8BA2DDF Size:1834080 MD5: 43E4BB14E659147CE96E4F04E387EF69 Size:1834080 MD5: DE589C0ADBB04DCF29C3D2E03B74DABD Size:1829984 %PROGRAMFILES%\baidu\Baidu Hi\RUDPLib.dll MD5: 6F253D9472B0A86C2296A0478EF732CE Size:179296 MD5: 759D548C792F9407A08F3CF7DDE971E8 Size:179296 MD5: 94F405817044E6A00428DD806D07F3BE Size:179296 %PROGRAMFILES%\baidu\Baidu Hi\NetService.dll MD5: FE5AD7E341405A163DB169C3A75C0B5D Size:512608 MD5: 2C043B17BF28F2318BB5955874E17922 Size:511584 MD5: E093F9CA61F665A5657E4E90DA243816 Size:511584 %PROGRAMFILES%\baidu\Baidu Hi\Basement.dll MD5: CA22BED176D2F2B9E4BF3D91BE062556 Size:3042400 MD5: B6ABB43172BDF7869FB0BFB0BED4AFEB Size:3042400 MD5: EE6C34741D0FA71A4CCF8C1EC89BA126 Size:3042400 %PROGRAMFILES%\baidu\Baidu Hi\BaiduHi.exe MD5: 19825219E55F07AE1E6168B65CC6DA6A Size:4119648 MD5: 40B09DCA52139436080E1BB42EF5A991 Size:4119648 MD5: E5F6765256881617C249C140A311F2D7 Size:4119648 MD5: 556D3DDC73BC970820336C70C3443C68 Size:3853408 %PROGRAMFILES%\baidu\Baidu Hi\AutoUpdate\BaiduHiUpdate.exe MD5: 30FC3CFC6C034C6ECE275357EB56EA84 Size:277600 %PROGRAMFILES%\Baidu\BaiduX\xupnp.dll MD5: AD70F4D7881E1A123BF880627C30FF2D Size:159744 %PROGRAMFILES%\Baidu\BaiduX\xcs.dll MD5: 7E5DFE78FA88AB4EA2861BF268AF1F0D Size:143360 %PROGRAMFILES%\Baidu\BaiduX\unins000.exe MD5: FDCC6E9CF3347E8F6AF8FF4CADC47337 Size:833431 %PROGRAMFILES%\Baidu\BaiduX\Tunnel.dll MD5: D122509E12E132800EF41A29CB7B2B41 Size:81920 %PROGRAMFILES%\Baidu\BaiduX\ProimpEx.dll MD5: 4BF8698C18EF2564B4C154C11FED2882 Size:176128 %PROGRAMFILES%\Baidu\BaiduX\MovieUpdate.exe MD5: 59CF24839AC62C4429F007EC426AD617 Size:73728 %PROGRAMFILES%\Baidu\BaiduX\MediaPlayer.exe MD5: 84BE4F6C32625E9080898D9D4232DF52 Size:868352 %PROGRAMFILES%\Baidu\BaiduX\BaiduX.exe MD5: 9A05DCB7D462697D9D8CD3D14083E1D4 Size:1253376 %PROGRAMFILES%\Baidu\BaiduX\ADHelper.dll MD5: B90495512DB09C2AA3B65FF3A47ED308 Size:114688 %PROGRAMFILES%\Baidu\bar\bdgdins.dll MD5: C4986D33192F7D5B7CB39BAEF29B06BE Size:69632 %DOWNLOADEDPROGRAMFILES%\BDHelper.dll MD5: 30726569B7E166924A86621ED439B292 Size:32768 %PROGRAMFILES%\Baidu\Baidu Hi\AutoUpdate\Basement.dll MD5: 922005C124F21989B6B48BC5A485568B Size:2894944 %PROGRAMFILES%\Baidu\Baidu Hi\AutoUpdate\BaiduHiUpdate.exe MD5: AD2835944D656E82BD4B002B6B426447 Size:298080 %PROGRAMFILES%\Baidu\Baidu Hi\AutoUpdate\AutoUpdateUtil.dll MD5: 10FE248EB7D2DE90CD077CD77014D269 Size:113760 %PROGRAMFILES%\Baidu\Baidu Hi\AutoUpdate\AutoInstall.exe MD5: E4D6237539D02BE855C6D89CA0F5681C Size:154720 %PROGRAMFILES%\Baidu\Baidu Hi\SkinDLL.dll MD5: 9FD16D8186203E4624D0130CC422F04E Size:224352 %PROGRAMFILES%\Baidu\Baidu Hi\RUDPLib.dll MD5: F6806E9902DA8E1E68F63E1F7E1861CC Size:179296 %PROGRAMFILES%\Baidu\Baidu Hi\riched20.dll MD5: 0A76F27A01CD217B572597E97A029D05 Size:965400 %PROGRAMFILES%\Baidu\Baidu Hi\NetService.dll MD5: C43FD2886AABDB160EED0188604856F2 Size:244832 %PROGRAMFILES%\Baidu\Baidu Hi\mediactrl.dll MD5: 6F226646555F372A58FD67B118BDF583 Size:1408096 %PROGRAMFILES%\Baidu\Baidu Hi\LocalLog.dll MD5: 901B76F3FCD170E553DA4F1861C86AB8 Size:85088 %PROGRAMFILES%\Baidu\Baidu Hi\ImStorage.dll MD5: DF4E1352496650EAEE3ABD47D0DB20C7 Size:105568 %PROGRAMFILES%\Baidu\Baidu Hi\ImEngine.dll MD5: A9BFB0B546E754BCD2E8ECA8E110AED9 Size:1526880 %PROGRAMFILES%\Baidu\Baidu Hi\imcs.dll MD5: AD73A5F1CF77FBB74E51DE132B9BDBAD Size:269408 %PROGRAMFILES%\Baidu\Baidu Hi\HistoryExplorer.dll MD5: 7CC146C3F35E50099A853FF7BA3856A9 Size:437344 %PROGRAMFILES%\Baidu\Baidu Hi\fmmgr.dll MD5: 925B659D0119E17E5B54B3C290038524 Size:89184 %PROGRAMFILES%\Baidu\Baidu Hi\dbghelp.dll MD5: 28D3E1F32742CA36974120B49E2B9DC2 Size:640000 %PROGRAMFILES%\Baidu\Baidu Hi\CSTransfer.dll MD5: FD84B7556405B4AAD07C1EFCE8CB34FC Size:60512 %PROGRAMFILES%\Baidu\Baidu Hi\BugReport.exe MD5: 5EF8CE5154DD099C5C9C34E4C9826235 Size:126048 %PROGRAMFILES%\Baidu\Baidu Hi\Basement.dll MD5: A1E25DCD69B66F3AC6EA8BB64E832321 Size:2894944 %PROGRAMFILES%\Baidu\Baidu Hi\AppUtil.dll MD5: 9266D51BC1D63D7D36E306465AF92912 Size:89184 %PROGRAMFILES%\baidu\Baidu Hi\uninst.exe MD5: D1662C78888A127D05EEB4D87DDDFB9D Size:105136 %DOWNLOADEDPROGRAMFILES%\BDHELPER.DLL MD5: 35934919DE475911087A647755151177 Size:36864 %PROGRAMFILES%\baidu\bar\BaiduBar.dll MD5: 8B116072A75EFA3DA377BA2BC0900091 Size:1224796
Detected Files with variable Filenames: MD5: F91643A96401DF9FF46A2AFCDB8B58C5 Size: 1576168 %PROGRAMFILES%\BaiDu\bar\BaiduBar.dll %PROGRAMFILES%\Baidu\bar\BDBar_tmp\baidubar.dll %PROGRAMFILES%\Baidu\bar\baidubar.dll.ren MD5: B3836F4D0FC99DFB497DA0C44D3384AD Size: 57856 %PROGRAMFILES%\Baidu\bar\bdgdins.dll %PROGRAMFILES%\Baidu\bar\bdgdins.dll.ren MD5: C9571CCF8F4BE6472EE57DB5D1374B56 Size: 1585286 %PROGRAMFILES%\baidu\bar\BaiduBar.dll %PROGRAMFILES%\Baidu\bar\BDBar_tmp\BaiduBar.dll MD5: 2A4A95A18D600BEC3CED4475799C2E32 Size: 1568902 %PROGRAMFILES%\Baidu\bar\BaiDuBar.dll %PROGRAMFILES%\Baidu\bar\BDBar_tmp\baidubar.dll MD5: 981A62A9EB288FEADEED7BE5D2CFC633 Size: 1405062 %PROGRAMFILES%\baidu\bar\BaiduBar.dll %PROGRAMFILES%\Baidu\bar\BDBar_tmp\baidubar.dll MD5: 29146247DEB8796CDCB43993E21DF63E Size: 1192027 %PROGRAMFILES%\baidu\bar\BaiduBar.dll %PROGRAMFILES%\Baidu\bar\BDBar_tmp\BaiduBar.dll MD5: F082A992F1DE45E8FD0EB1365F07CC4D Size: 1228923 %PROGRAMFILES%\BaiDu\bar\BaiduBar.dll %PROGRAMFILES%\Baidu\bar\BDBar_tmp\BaiduBar.dll MD5: FA57E0A17BAD2059B7595E7821D31678 Size: 1577094 %PROGRAMFILES%\BaiDu\bar\BaiduBar.dll %PROGRAMFILES%\Baidu\bar\BDBar_tmp\BaiduBar.dll MD5: 827507C8C19D20379F17622747B2D5FB Size: 74240 %PROGRAMFILES%\Baidu\iexp\tmp\bdgdins.dll %PROGRAMFILES%\Baidu\iexp\bdgdins.dll MD5: 80E41408F6D641DC1C0F5353A0CC8125 Size: 59904 %PROGRAMFILES%\baidu\Baidu Hi\zlib1.dll C:\Program Files\baidu\Baidu Hi\zlib1.dll MD5: DA363E36C33B320801E5672AF67DDC33 Size: 3042400 %PROGRAMFILES%\baidu\Baidu Hi\AutoUpdate\Basement.dll C:\Program Files\baidu\Baidu Hi\Basement.dll %PROGRAMFILES%\baidu\Baidu Hi\Basement.dll MD5: D743A3F31B9A678C95E36B737255E2E9 Size: 245845 %PROGRAMFILES%\Baidu\iexp\bdsrhook.dll %PROGRAMFILES%\Baidu\iexp\tmp\BDSrHook.dll MD5: C3363AAF40CB8250FF50E173902958C2 Size: 179296 C:\Program Files\baidu\Baidu Hi\RUDPLib.dll %PROGRAMFILES%\baidu\Baidu Hi\RUDPLib.dll MD5: B2A98D7329502C2E1B93C2836E0867D1 Size: 511584 C:\Program Files\baidu\Baidu Hi\NetService.dll %PROGRAMFILES%\baidu\Baidu Hi\NetService.dll MD5: 1388ABA24C78B466EE2068E58A730682 Size: 4115552 C:\Program Files\baidu\Baidu Hi\BaiduHi.exe %PROGRAMFILES%\baidu\Baidu Hi\BaiduHi.exe MD5: 1B8F4DF33E4B9A3EA2E4616A148B35B4 Size: 1355907 %PROGRAMFILES%\Baidu\bar\BDBar_tmp\BaiduBar.dll %PROGRAMFILES%\Baidu\bar\BaiduBar.dll.ren %PROGRAMFILES%\BaiDu\bar\BaiduBar.dll MD5: 86F1895AE8C5E8B17D99ECE768A70732 Size: 348160 %PROGRAMFILES%\Baidu\Baidu Hi\AutoUpdate\msvcr71.dll %PROGRAMFILES%\Baidu\Baidu Hi\msvcr71.dll MD5: 561FA2ABB31DFA8FAB762145F81667C2 Size: 499712 %PROGRAMFILES%\Baidu\Baidu Hi\AutoUpdate\msvcp71.dll %PROGRAMFILES%\Baidu\Baidu Hi\msvcp71.dll MD5: 8F2097E8B174F38178570C611464935F Size: 89088 %PROGRAMFILES%\Baidu\Baidu Hi\AutoUpdate\atl71.dll %PROGRAMFILES%\Baidu\Baidu Hi\atl71.dll

Detecting items list:

Files by Name %PROGRAMFILES%\Baidu\bar\BaiDuBar.dll %DOWNLOADEDPROGRAMFILES%\BDEX.DLL %DOWNLOADEDPROGRAMFILES%\BDPLUGIN.DLL %DOWNLOADEDPROGRAMFILES%\BDSRHOOK.DLL %DOWNLOADEDPROGRAMFILES%\BDHELPER.DLL %sysdir%\BDSRHOOK.DLL
Files by Directories %PROGRAMFILES%\Baidu
Files by CLSID or Name CLSID=B580CF65-E151-49C3-B73F-70B13FCA8E86 CLSID=77FEF28E-EB96-44FF-B511-3185DEA48697

« Go to Software Database

Suchen Sie unsere Software Datenbank

Surfen Sie die Software Datenbank

Neueste Malware Nachrichten

23. September 2011

Among one of the most active spywares currently is without a doubt Trojan.MicroFake.ba. It attacks in conjunction with Rogue antispyware applications and forces users to purchase these fake applications. Using rootkit techniques is very typical of this Trojan to help it hide from users and the system, making it hard to trace. We recommend regular updating of our database and an active real-time protection with antivirus.

Ältere Malware Nachrichten »