Adware.MyWebSearch.az
|
Description:
|
Adware
|
|
Risk Level:
|
Critical
|
|
Date of First Occurence:
|
Monday, April 14, 2008
|
|
Software Developer:
|
(unknown)
|
|
Brief Info:
|
Adware
Software that is displaying pop-up/pop-under windows containing advertisements when the primary user interface is not visible or displayed advertisements are not related to the product.
|
|
Removal:
|
This threat can be removed using "Spyware
Terminator"
|
SCAN & REMOVE NOW »
Geographical Distribution of Threat "Adware.MyWebSearch.az"
Threat Info
View All
Detected Items
- Detected Files:
%PROGRAMFILES%\AskTBar\bar\1.bin\ASKTBAR.DLL
MD5: 37AC510F81CBD57F4D8B73C564516213 Size:237568
MD5: 59DBFE16AA20144CB11E7FC8B2D21EAA
- Detected Files with variable Filenames:
MD5: 30E4C0A012AE80E8479523A8D9A3217F Size: 57344
%PROGRAMFILES%\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL
%PROGRAMFILES%\AskTBar\SrchAstt\b.bin\A5SRCHAS.DLL
%PROGRAMFILES%\AskTBar\SrchAstt\2.bin\A5SRCHAS.DLL
e:\Programme\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL
%PROGRAMFILES%\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL.ren
%SystemDiskRoot%\System Volume Information\_restore{260B4082-6D28-41D5-8B06-A7C4F695C110}\RP353\A0072868.DLL
%DESKTOP%\AskTBar\SrchAstt\2.bin\A5SRCHAS.DLL
%SystemDiskRoot%\System Volume Information\_restore{64C55BAE-0167-4E29-A424-980E0BCA06F2}\RP53\A0006884.DLL
%SystemDiskRoot%\System Volume Information\_restore{E66C5630-7E79-4247-A331-4C4824A48323}\RP1015\A0173395.DLL
%PROGRAMFILES%\AskTBar\SrchAstt\3.bin\A5SRCHAS.DLL
%PROGRAMFILES%\Trend Micro\HijackThis\backups\backup-20080426-204215-832.dll
and next 15 variations.
MD5: 59DBFE16AA20144CB11E7FC8B2D21EAA Size: 245760
%PROGRAMFILES%\AskTBar\bar\1.bin\ASKTBAR.DLL
%DESKTOP%\AskTBar\bar\2.bin\ASKTBAR.DLL
%SystemDiskRoot%\System Volume Information\_restore{64C55BAE-0167-4E29-A424-980E0BCA06F2}\RP53\A0006917.dll
%SystemDiskRoot%\System Volume Information\_restore{64C55BAE-0167-4E29-A424-980E0BCA06F2}\RP53\A0006886.DLL
%PROGRAMFILES%\AskTBar\bar\7.bin\ASKTBAR.DLL
%SystemDiskRoot%\System Volume Information\_restore{E66C5630-7E79-4247-A331-4C4824A48323}\RP1021\A0173651.DLL
%PROGRAMFILES%\AskTBar\bar\3.bin\ASKTBAR.DLL
%PROGRAMFILES%\Trend Micro\HijackThis\backups\backup-20080426-204215-842.dll
%PROGRAMFILES%\AskTBar\bar\4.bin\ASKTBAR.DLL
%PROGRAMFILES%\AskTBar\bar\2.bin\ASKTBAR.DLL
%PROGRAMFILES%\AskTBar\bar\1.bin\ASKTBAR.DLL.ren
and next 3 variations.
MD5: 69A3EB924678BB23047E6248648E6534 Size: 118784
%PROGRAMFILES%\AskTBar\bar\1.bin\A5POPSWT.DLL
%DESKTOP%\AskTBar\bar\2.bin\A5POPSWT.DLL
%SystemDiskRoot%\System Volume Information\_restore{64C55BAE-0167-4E29-A424-980E0BCA06F2}\RP53\A0006885.DLL
%SystemDiskRoot%\System Volume Information\_restore{E66C5630-7E79-4247-A331-4C4824A48323}\RP1021\A0173652.DLL
%PROGRAMFILES%\AskTBar\bar\1.bin\A5POPSWT.DLL.ren
%PROGRAMFILES%\AskTBar\bar\2.bin\A5POPSWT.DLL
%PROGRAMFILES%\AskTBar\bar\4.bin\A5POPSWT.DLL
%SystemDiskRoot%\System Volume Information\_restore{EF3B4FDF-4BD3-4446-B505-74790CE3DDDF}\RP97\A0049851.DLL
%SystemDiskRoot%\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP428\A0123024.DLL
%PROGRAMFILES%\AVS4YOU\AskTBar\bar\1.bin\A5POPSWT.DLL
%SystemDiskRoot%\System Volume Information\_restore{F097732D-702F-459B-9BD2-250B9662B183}\RP19\A0001703.DLL
and next 5 variations.
MD5: 97067187788E16059728D3A6F4A1D827 Size: 57344
%PROGRAMFILES%\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL
%PROGRAMFILES%\AskTBar\SrchAstt\2.bin\A5SRCHAS.DLL
%PROGRAMFILES%\AskTBar\SrchAstt\3.bin\A5SRCHAS.DLL
%PROGRAMFILES%\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL.ren
%PROGRAMFILES%\AskTBar\SrchAstt\4.bin\A5SRCHAS.DLL
Detecting items list:
- Files by Name
%PROGRAMFILES%\AskTBar\bar\1.bin\A5POPSWT.DLL
%PROGRAMFILES%\AskTBar\bar\1.bin\ASKTBAR.DLL
%PROGRAMFILES%\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL
- Files by MD5
MD5: 69A3EB924678BB23047E6248648E6534 Size: 118784
MD5: 59DBFE16AA20144CB11E7FC8B2D21EAA Size: 245760
MD5: 30E4C0A012AE80E8479523A8D9A3217F Size: 57344
- Files by Directories
%PROGRAMFILES%\AskTBar\SrchAstt
«
Go to Software Database