888Bar

Description: Adware
Risk Level: High
Date of First Occurence: Tuesday, May 13, 2008
Software Developer: (unknown)
Brief Info: 888Bar Adaware - Software that is displaying pop-up/pop-under windows containing advertisements when the primary user interface is not visible or displayed advertisements are not related to the product.
Removal: This threat can be removed using "Spyware Terminator"

SCAN & REMOVE NOW »

Geographical Distribution of Threat "888Bar"

Threat Info

View All

Detected Items

  1. Detected Files:
  2. Detected Files with variable Filenames: MD5: E87DE768BA0C1070DBA4436C2A3FC830 Size: 6144 %COMMONFILES%\{B0ADA4DD-069E-1033-0314-021220010001}\services.dll %SystemDiskRoot%\RECYCLER\S-1-5-21-3585665028-3382420496-1760055071-1008\Dc3\services.dll %SystemDiskRoot%\Data Backup\Backup of drive E\Program Files\Common Files\{4146B58D-086D-2057-0802-04060203002c}\services.dll %SystemDiskRoot%\RECYCLER\S-1-5-18\Dc3\services.dll %COMMONFILES%\{88024F95-095A-1036-0810-040203200001}\Services.dll MD5: E6116863B8824EB56C7129C657F6368A Size: 41221 %COMMONFILES%\{30ADA4DD-069E-1033-0314-021220010001}\Uninst.exe %COMMONFILES%\{30308273-0388-1051-0909-0408010301a5}\Uninst.exe %SystemDiskRoot%\QooBox\Quarantine\C\Program Files\Common Files\{303F9~2\Uninst.exe.vir %SystemDiskRoot%\QooBox\Quarantine\C\Program Files\Common Files\{303F9~1\Uninst.exe.vir %COMMONFILES%\{3CDC835D-0724-1040-0801-060606060027}\Uninst.exe %SystemDiskRoot%\Data Backup\Backup of drive E\Program Files\Common Files\{3146B58D-086D-2057-0802-04060203002c}\Uninst.exe c:\RECYCLER\S-1-5-21-1960408961-57989841-682003330-1003\Dc12\{3C86A8EC-0AF0-1033-0609-040412200001}\Uninst.exe %COMMONFILES%\{38E1CF78-05F6-1033-0121-030308080001}\Uninst.exe %COMMONFILES%\{30DDFB92-0AEF-1033-1031-030416200001}\Uninst.exe %COMMONFILES%\{34091904-02B9-1033-1114-001013200001}\Uninst.exe %COMMONFILES%\{3CB589A0-07D0-1046-0713-050705050037}\Uninst.exe and next 3 variations. MD5: 0E1077D05FD2C23C3CB158A75E619A42 Size: 35840 %COMMONFILES%\{30ADA4DD-069E-1033-0314-021220010001}\Activate.exe %COMMONFILES%\{30308273-0388-1051-0909-0408010301a5}\Activate.exe %COMMONFILES%\{30DDFB92-0AEF-1033-1031-030416200001}\Activate.exe MD5: FA1CB25C5DE1A836B207AD242763219B Size: 30720 %SystemDiskRoot%\System Volume Information\_restore{7A951F15-BD8F-4D33-AE59-9761A1E53720}\RP548\A0165862.exe %COMMONFILES%\{38CA6130-0578-1031-1203-040308200031}\Activate.exe e:\kopia dysku C\Program Files\Common Files\{30AE95E0-0A71-1045-0525-040402050030}\Activate.exe %COMMONFILES%\{38A99376-0703-1033-0324-061114200001}\Activate.exe MD5: 806AFFC373BB7001EB245A33ECE49A52 Size: 6656 %SystemDiskRoot%\System Volume Information\_restore{CBEDEADA-D044-445F-A4FB-1E8871D202B9}\RP188\A0022310.dll %SystemDiskRoot%\RECYCLER\S-1-5-18\Dc11\system.dll %SystemDiskRoot%\RECYCLER\S-1-5-18\Dc9\system.dll %SystemDiskRoot%\RECYCLER\S-1-5-18\Dc8\system.dll %SystemDiskRoot%\RECYCLER\S-1-5-18\Dc18\system.dll %SystemDiskRoot%\RECYCLER\S-1-5-18\Dc16\system.dll %SystemDiskRoot%\RECYCLER\S-1-5-18\Dc15\system.dll %SystemDiskRoot%\RECYCLER\S-1-5-18\Dc14\system.dll %SystemDiskRoot%\RECYCLER\S-1-5-18\Dc13\system.dll %SystemDiskRoot%\RECYCLER\S-1-5-18\Dc12\system.dll %SystemDiskRoot%\RECYCLER\S-1-5-18\Dc108\system.dll and next 8 variations. MD5: 100E9A14E9CB1AB0351713B585B449EF Size: 13312 %SystemDiskRoot%\RECYCLER\S-1-5-18\Dc11\Update.exe %SystemDiskRoot%\RECYCLER\S-1-5-18\Dc2\Update.exe %SystemDiskRoot%\RECYCLER\S-1-5-18\Dc1\Update.exe %COMMONFILES%\{AC33E352-0A30-1036-0414-040106000021}\Update.exe MD5: 9061FF7F08797A3A71799B7390F216C1 Size: 14336 %SystemDiskRoot%\RECYCLER\S-1-5-18\Dc1\RP2\A0001037.exe %COMMONFILES%\{88024F95-095A-1036-0810-040203200001}\Update.exe

Detecting items list:

  1. Files by Name %COMMONFILES%\{3839DF00-0D3F-1033-0729-050001}\888.dll %COMMONFILES%\{3839DF00-0D3F-1033-0729-050001}\Uninstall.dll %COMMONFILES%\{D8e9df00-0d3f-1033-0729-050001}\system.dll %COMMONFILES%\{D8e9df00-0d3f-1033-0729-050001}\Update.exe %COMMONFILES%\{3C6991D5-08AA-1029-0222-060001}\Activate.exe %COMMONFILES%\{3C6991D5-08AA-1029-0222-060001}\Uninst.exe %COMMONFILES%\{5C6991D5-08AA-1029-0222-060001}\services.dll %COMMONFILES%\{5C6991D5-08AA-1029-0222-060001}\Update.exe %COMMONFILES%\{5C6991D5-08AE-1029-0222-0622060001}\system.dll %COMMONFILES%\{5C6991D5-08AE-1029-0222-0622060001}\Update.exe
  2. Files by MD5 MD5: FA1CB25C5DE1A836B207AD242763219B Size: 30720 MD5: 0E1077D05FD2C23C3CB158A75E619A42 Size: 35840 MD5: E6116863B8824EB56C7129C657F6368A Size: 41221 MD5: E87DE768BA0C1070DBA4436C2A3FC830 Size: 6144 MD5: 9061FF7F08797A3A71799B7390F216C1 Size: 14336 MD5: 806AFFC373BB7001EB245A33ECE49A52 Size: 6656 MD5: 100E9A14E9CB1AB0351713B585B449EF Size: 13312
  3. Files by CLSID or Name CLSID=C004DEC2-2623-438e-9CA2-C9043AB28508
  4. Registry Keys HKLM\Classes\LuckyToolBar.LuckyToolBarObj HKLM\Classes\LuckyToolBar.LuckyToolBarObj.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\888Bar HKLM\SOFTWARE\Classes\MyToolBar.MyToolBarObj HKLM\SOFTWARE\Classes\MyToolBar.MyToolBarObj.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ToolBar888 HKCR\MyToolBar.MyToolBarObj HKCR\MyToolBar.MyToolBarObj.1 HKCU\Software\MyToolBar

« Go to Software Database