WishBone Toolbar
|
Description:
|
Toolbar
|
|
Risk Level:
|
High
|
|
Date of First Occurence:
|
Tuesday, July 08, 2008
|
|
Software Developer:
|
(unknown)
|
|
Brief Info:
|
Toolbar/adware that creates pop-ups and advertisements on an infected computer.
|
|
Removal:
|
This threat can be removed using "Spyware
Terminator"
|
ELIMINAR SPYWARE »
Geographical Distribution of Threat "WishBone Toolbar"
Threat Info
View All
Detected Items
- Detected Files:
%SYSDIR%\WBM\.\MCont.dll
MD5: AFB8F505B034A005487F91EF714E6EC2 Size:122880
%SYSDIR%\WBM\.\install.exe
MD5: 2652ABF5B16D64D66FAA8C608A5754E4 Size:86016
- Detected Files with variable Filenames:
Detecting items list:
- Files by Name
%SYSDIR%\WBM\*\DATAFEED.XML
%SYSDIR%\WBM\*\Install.exe
%SYSDIR%\WBM\*\MCont.dll
%SYSDIR%\WBM\*\MInst.dll
%SYSDIR%\WBM\*\remote.cab
%SYSDIR%\WBM\*\WBM.dll
%SYSDIR%\WBM\*\WBMMAIN.INI
%SYSDIR%\WBM\*\WBMXPCol.dll
%SYSDIR%\MInst.inf
%DOWNLOADEDPROGRAMFILES%\Minst.inf
- Files by Directories
%SYSDIR%\WBM
- Files by CLSID or Name
CLSID=3AA90BC2-58C0-4F4D-A87C-2C6F3D3CD5FE
CLSID=40930A0F-68CC-4B81-848A-77A78F85FA7B
CLSID=4FD85670-606A-42E9-BBA5-2BC63493B677
CLSID=54A80613-6DD4-4BD3-A804-D3AAE3B950C9
CLSID=6A1C1772-02B1-476E-A5B4-EC1F54409BD1
CLSID=7F6ED58C-AC98-4233-B3B1-3E42762183C9
CLSID=86F4AD51-EE90-409D-944B-FDB0C939B41C
CLSID=87B1E57C-FF70-4C69-9CE8-57CB8F67ABA8
CLSID=B0931261-03C3-4BB3-9CE1-22BFDA3AF445
CLSID=C331BD6E-06AB-41A0-B95F-D7CA379ACEAA
CLSID=DA3DB988-D1FB-4919-A684-78E6A5358340
CLSID=DB2E7BC7-104F-42B5-AAE3-921E3057DB06
CLSID=EAA87376-C391-494E-9DA2-2BD9C798E54F
CLSID=F78216E3-1E33-44CF-BE3E-CBEB074EAC24
- Registry Keys
HKCR\WBM.AtlBrCon
HKCR\WBM.AtlBrCon.1
HKCR\WBM.ExplorerBar
HKCR\WBM.ExplorerBar.1
HKCR\WBM.WebMonitor
HKCR\WBM.WebMonitor.1
HKCR\Wbmbar.ViewSource
HKCR\Wbmbar.ViewSource.1
HKCR\Wbmbar.WBMToolBar
HKCR\Wbmbar.WBMToolBar.1
HKCR\Wbmxpcolors.XpColors
HKCR\Wbmxpcolors.XpColors.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F6C3FEC1-EC73-484e-B607-C78E4EE49896}
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\OptionalComponents\WBM
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WBInstaller
HKLM\SOFTWARE\WBInstaller
HKLM\SOFTWARE\Wishbone Media
HKLM\SOFTWARE\Wishbone Media\Toolbar
«
Go to Software Database
