Oemji

Description: Adware
Risk Level: Critical
Date of First Occurence: Thursday, May 22, 2008
Software Developer: (unknown)
Brief Info: Adaware Software that is displaying pop-up/pop-under windows containing advertisements when the primary user interface is not visible or displayed advertisements are not related to the product.
Removal: This threat can be removed using "Spyware Terminator"

SCAN & REMOVE NOW »

Geographical Distribution of Threat "Oemji"

Threat Info

View All

Detected Items

  1. Detected Files: %PROGRAMFILES%\Oemji\Uninstall.exe MD5: 01300F8AB3AEEA1E18EBEE7103FC5543 Size:135229 MD5: 6919DDAA186756D6D19EAE78E8F2643A Size:135047 MD5: 6A2384EFEFC924B9E8FBD80D3468553B Size:135046 MD5: 036AA092BB36184CAB2D710146DF4268 Size:135048 MD5: FD52D1FF6A33CF263542453BA5857F75 Size:135228 %PROGRAMFILES%\Oemji\UNWISE.EXE MD5: 973567B98CDFC147DF4E60471D9DF072 Size:153088
  2. Detected Files with variable Filenames:

Detecting items list:

  1. Files by Name %ProgramFiles%\Oemji\Oemji.dll %ProgramFiles%\Oemji\OemjiPS.dll %ProgramFiles%\Oemji\OemjiShare.exe %ProgramFiles%\Oemji\omreg.dll %ProgramFiles%\Oemji\Res_CS.dll %ProgramFiles%\Oemji\Res_CT.dll %ProgramFiles%\Oemji\Res_EN.dll %ProgramFiles%\Oemji\Res_FR.dll %ProgramFiles%\Oemji\Res_GM.dll %ProgramFiles%\Oemji\Res_JP.dll %ProgramFiles%\Oemji\Res_KO.dll %ProgramFiles%\Oemji\Res_SP.dll %ProgramFiles%\Oemji\SkinEngine.dll %ProgramFiles%\Oemji\zlibwapi.dll %ProgramFiles%\Oemji\config.xml %ProgramFiles%\Oemji\INSTALL.LOG %ProgramFiles%\Oemji\oemjibar.zip %ProgramFiles%\Oemji\reg.xml %ProgramFiles%\Oemji\egister.ini %ProgramFiles%\Oemji\RegistrationDebug.LOG %ProgramFiles%\Oemji\searchhistory.xml %ProgramFiles%\Oemji\Uninstall.exe %ProgramFiles%\Oemji\UNWISE.EXE %DOWNLOADEDPROGRAMFILES%\oemji.inf
  2. Files by Directories %ProgramFiles%\Oemji
  3. Files by CLSID or Name CLSID=000473CD-A3ED-4969-A063-2BBA07945441 CLSID=010D59BA-65AA-417C-82E5-BCEF6379A953 CLSID=057D7731-052B-4781-BB80-33A7723A1993 CLSID=1E150B18-E746-4569-AF9F-C990AB3F1036 CLSID=50ACEABC-B79A-40D9-A41E-D3A682E4DA2F CLSID=836BBDA6-A612-4B02-B5A7-BCF2AB076F74 CLSID=83F6A8A8-0337-46e5-B1C0-42B291486CEC CLSID=C213D102-64FC-41b0-8C49-D2725D9786D9
  4. Registry Keys HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{000473CD-A3ED-4969-A063-2BBA07945441} HKCU\Software\Oemji HKCR\AppID\OemtecIESearch.DLL HKCR\AppID\{47378083-F0CD-4B3A-81FA-CFBA119FADEA} HKCR\AppID\{BCF4E62D-7613-4DBE-8CF3-8C84F0FC804C} HKCR\Interface\{35C738CB-ABB1-41BE-8130-AB10B1B94138} HKCR\Interface\{50ACEABC-B79A-40D9-A41E-D3A682E4DA2F} HKCR\Interface\{5EC4D98F-CCF4-47B0-8C92-45B764A602A6} HKCR\Interface\{65AA3C03-8203-48E4-BBD7-E25885E96732} HKCR\Interface\{9E068552-08C9-4979-8D71-E9241B72EDEE} HKCR\Interface\{D60A75DB-F3D2-4B60-82B9-ED600A18C564} HKCR\Interface\{EEB701BE-4297-4A74-8761-A0346B5484B2} HKCR\OMReg.CDownloadProgressController.1 HKCR\OMReg.CDownloadProgressController HKCR\OMReg.RegistrationObj.1 HKCR\OMReg.RegistrationObj HKCR\OemtecIESearch.OemtecIESearchBho.1 HKCR\OemtecIESearch.OemtecIESearchBho HKCR\TypeLib\{0A6C2632-BB2D-4874-ADEC-F27716E787EF} HKCR\TypeLib\{28F1514B-4996-48D0-A27F-728669D1513B} HKCR\TypeLib\{767B6A03-50AB-4C9D-9EF7-8D7DB92A2396} HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{9A91AF9E-E985-4586-89CC-C776DB86D97B} HKLM\SOFTWARE\Classes\Fileshare.CConfigurationEvent HKLM\SOFTWARE\Classes\Fileshare.CConfigurationEvent.1 HKLM\SOFTWARE\Classes\Fileshare.HistoryEvent HKLM\SOFTWARE\Classes\Fileshare.HistoryEvent.1 HKLM\SOFTWARE\Classes\Fileshare.PactecConfiguration HKLM\SOFTWARE\Classes\Fileshare.PactecConfiguration.1 HKLM\SOFTWARE\Classes\Fileshare.SearchHistory HKLM\SOFTWARE\Classes\Fileshare.SearchHistory.1 HKLM\SOFTWARE\Oemji Toolbar HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Oemji Toolbar

« Go to Software Database