888Bar
|
Description:
|
Adware
|
|
Risk Level:
|
High
|
|
Date of First Occurence:
|
Tuesday, May 13, 2008
|
|
Software Developer:
|
(unknown)
|
|
Brief Info:
|
888Bar Adaware - Software that is displaying pop-up/pop-under windows containing advertisements when the primary user interface is not visible or displayed advertisements are not related to the product.
|
|
Removal:
|
This threat can be removed using "Spyware
Terminator"
|
REMOVER SPYWARE »
Geographical Distribution of Threat "888Bar"
Threat Info
View All
Detected Items
- Detected Files:
- Detected Files with variable Filenames:
MD5: E6116863B8824EB56C7129C657F6368A Size: 41221
%COMMONFILES%\{38184B14-09BA-1025-0915-0303102803c6}\Uninst.exe
%COMMONFILES%\{38184B14-09B9-1025-0915-0303102803c6}\Uninst.exe
%COMMONFILES%\{342A0717-0AF0-1040-0912-050721050027}\Uninst.exe
%SystemDiskRoot%\System Volume Information\_restore{970BB06E-B128-4803-A390-997ACCB3EFD0}\RP563\A0076857.exe
d:\--BACKUP--\Program Files\Common Files\{344DDBA9-0AE7-2070-0119-04040115015f}\Uninst.exe
d:\--BACKUP--\Program Files\Common Files\{344DDBA9-0AE7-2070-0119-04040115002c}\Uninst.exe
c:\RECYCLER\S-1-5-21-1960408961-57989841-682003330-1003\Dc12\{3C86A8EC-0AF0-1033-0609-040412200001}\Uninst.exe
%COMMONFILES%\{342EFB0A-0640-1033-0627-02012202003d}\Uninst.exe
%COMMONFILES%\{342EFB0A-0640-1033-0627-020122020001}\Uninst.exe
%COMMONFILES%\{342EFB0A-063F-1033-0627-02012202003d}\Uninst.exe
%COMMONFILES%\{30ADA4DD-069E-1033-0314-021220010001}\Uninst.exe
and next 12 variations.
MD5: 100E9A14E9CB1AB0351713B585B449EF Size: 13312
%SystemDiskRoot%\RECYCLER\S-1-5-18\Dc96\Update.exe
%SystemDiskRoot%\RECYCLER\S-1-5-18\Dc95\Update.exe
%SystemDiskRoot%\RECYCLER\S-1-5-18\Dc94\Update.exe
%SystemDiskRoot%\RECYCLER\S-1-5-18\Dc93\Update.exe
%SystemDiskRoot%\RECYCLER\S-1-5-18\Dc92\Update.exe
%SystemDiskRoot%\RECYCLER\S-1-5-18\Dc91\Update.exe
%SystemDiskRoot%\RECYCLER\S-1-5-18\Dc90\Update.exe
%SystemDiskRoot%\RECYCLER\S-1-5-18\Dc9\Update.exe
%SystemDiskRoot%\RECYCLER\S-1-5-18\Dc89\Update.exe
%SystemDiskRoot%\RECYCLER\S-1-5-18\Dc88\Update.exe
%SystemDiskRoot%\RECYCLER\S-1-5-18\Dc87\Update.exe
and next 85 variations.
MD5: 9061FF7F08797A3A71799B7390F216C1 Size: 14336
%COMMONFILES%\{342EFB0A-0640-1033-0627-02012202003d}\Update.exe
%COMMONFILES%\{342EFB0A-0640-1033-0627-020122020001}\Update.exe
%COMMONFILES%\{342EFB0A-063F-1033-0627-02012202003d}\Update.exe
%SystemDiskRoot%\RECYCLER\S-1-5-18\Dc1\RP2\A0001037.exe
%COMMONFILES%\{88024F95-095A-1036-0810-040203200001}\Update.exe
MD5: E87DE768BA0C1070DBA4436C2A3FC830 Size: 6144
%COMMONFILES%\{342EFB0A-0640-1033-0627-02012202003d}\services.dll
%COMMONFILES%\{342EFB0A-0640-1033-0627-020122020001}\services.dll
%COMMONFILES%\{342EFB0A-063F-1033-0627-02012202003d}\services.dll
%COMMONFILES%\{B0ADA4DD-069E-1033-0314-021220010001}\services.dll
%SystemDiskRoot%\RECYCLER\S-1-5-21-3585665028-3382420496-1760055071-1008\Dc3\services.dll
%SystemDiskRoot%\Data Backup\Backup of drive E\Program Files\Common Files\{4146B58D-086D-2057-0802-04060203002c}\services.dll
%SystemDiskRoot%\RECYCLER\S-1-5-18\Dc3\services.dll
%COMMONFILES%\{88024F95-095A-1036-0810-040203200001}\Services.dll
MD5: 0E1077D05FD2C23C3CB158A75E619A42 Size: 35840
%COMMONFILES%\{30ADA4DD-069E-1033-0314-021220010001}\Activate.exe
%COMMONFILES%\{30308273-0388-1051-0909-0408010301a5}\Activate.exe
%COMMONFILES%\{30DDFB92-0AEF-1033-1031-030416200001}\Activate.exe
MD5: FA1CB25C5DE1A836B207AD242763219B Size: 30720
%SystemDiskRoot%\System Volume Information\_restore{7A951F15-BD8F-4D33-AE59-9761A1E53720}\RP548\A0165862.exe
%COMMONFILES%\{38CA6130-0578-1031-1203-040308200031}\Activate.exe
e:\kopia dysku C\Program Files\Common Files\{30AE95E0-0A71-1045-0525-040402050030}\Activate.exe
%COMMONFILES%\{38A99376-0703-1033-0324-061114200001}\Activate.exe
MD5: 806AFFC373BB7001EB245A33ECE49A52 Size: 6656
%SystemDiskRoot%\System Volume Information\_restore{CBEDEADA-D044-445F-A4FB-1E8871D202B9}\RP188\A0022310.dll
%SystemDiskRoot%\RECYCLER\S-1-5-18\Dc11\system.dll
%SystemDiskRoot%\RECYCLER\S-1-5-18\Dc9\system.dll
%SystemDiskRoot%\RECYCLER\S-1-5-18\Dc8\system.dll
%SystemDiskRoot%\RECYCLER\S-1-5-18\Dc18\system.dll
%SystemDiskRoot%\RECYCLER\S-1-5-18\Dc16\system.dll
%SystemDiskRoot%\RECYCLER\S-1-5-18\Dc15\system.dll
%SystemDiskRoot%\RECYCLER\S-1-5-18\Dc14\system.dll
%SystemDiskRoot%\RECYCLER\S-1-5-18\Dc13\system.dll
%SystemDiskRoot%\RECYCLER\S-1-5-18\Dc12\system.dll
%SystemDiskRoot%\RECYCLER\S-1-5-18\Dc108\system.dll
and next 8 variations.
Detecting items list:
- Files by Name
%COMMONFILES%\{3839DF00-0D3F-1033-0729-050001}\888.dll
%COMMONFILES%\{3839DF00-0D3F-1033-0729-050001}\Uninstall.dll
%COMMONFILES%\{D8e9df00-0d3f-1033-0729-050001}\system.dll
%COMMONFILES%\{D8e9df00-0d3f-1033-0729-050001}\Update.exe
%COMMONFILES%\{3C6991D5-08AA-1029-0222-060001}\Activate.exe
%COMMONFILES%\{3C6991D5-08AA-1029-0222-060001}\Uninst.exe
%COMMONFILES%\{5C6991D5-08AA-1029-0222-060001}\services.dll
%COMMONFILES%\{5C6991D5-08AA-1029-0222-060001}\Update.exe
%COMMONFILES%\{5C6991D5-08AE-1029-0222-0622060001}\system.dll
%COMMONFILES%\{5C6991D5-08AE-1029-0222-0622060001}\Update.exe
- Files by MD5
MD5: FA1CB25C5DE1A836B207AD242763219B Size: 30720
MD5: 0E1077D05FD2C23C3CB158A75E619A42 Size: 35840
- Files by CLSID or Name
CLSID=C004DEC2-2623-438e-9CA2-C9043AB28508
- Registry Keys
HKLM\Classes\LuckyToolBar.LuckyToolBarObj
HKLM\Classes\LuckyToolBar.LuckyToolBarObj.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\888Bar
HKLM\SOFTWARE\Classes\MyToolBar.MyToolBarObj
HKLM\SOFTWARE\Classes\MyToolBar.MyToolBarObj.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ToolBar888
HKCR\MyToolBar.MyToolBarObj
HKCR\MyToolBar.MyToolBarObj.1
HKCU\Software\MyToolBar
«
Go to Software Database
