Ads

ADW_BADBITOR.A PDF Print E-mail
Saturday, 30 July 2005
Description:

Alias: Lop (Ad-Aware), Lop.com (PestPatrol), 2nd Thought (PestPatrol), Ezula (PestPatrol), Adware.Lop (Symantec)

Classification

Adware

Installation and Setup Components

Files

* %Favorites%Adult Entertainment
* %Favorites%Adult Items
* %Favorites%Antivirus.url
* %Favorites%Casino Online.url
* %Favorites%Computers.url
* %Favorites%Computers
* %Favorites%Cool Stuff
* %Favorites%Games.url
* %Favorites%Home
* %Favorites%Instant Messaging.url
* %Favorites%Internet.url
* %Favorites%Internet
* %Favorites%Movie.url
* %Favorites%Online Gaming
* %Favorites%Online Pharmacy
* %Favorites%Shopping Gifts
* %Favorites%Travel
* %Favorites%Web Hosting.url
* %Program Files%BitTorrent70000016.exe
* %Program Files%BitTorrent\_socket.pyd
* %Program Files%BitTorrent\_sre.pyd
* %Program Files%BitTorrent\_ssl.pyd
* %Program Files%BitTorrent\_winreg.pyd
* %Program Files%BitTorrentittorrent-3.3.exe
* %Program Files%BitTorrenttdownloadgui.exe
* %Program Files%BitTorrentpython23.dll
* %Program Files%BitTorrent edirdonate.html
* %Program Files%BitTorrentselect.pyd
* %Program Files%BitTorrentuninstall.exe
* %Program Files%BitTorrentwxc.pyd
* %Program Files%BitTorrentwxmsw24h.dll
* %Program Files%BitTorrentzlib.pyd
* %Program Files%one balm
* %Program Files%Knob testSoft Live Wave.exe
* %Program Files%manager burn 1620023.exe
* %Program Files%manager burn 16draw keep.dll
* %Program Files%manager burn 16Fork Coal.dll
* %Program Files%manager burn 16Part up soap.bin
* %Program Files% hat dale

(Note: %Favorites% refers to the current users Favorites folder, which is usually C:Documents and SettingsFavorites. %Program Files% refers to the Program Files folder, which is usually C:Program Files.)

Registry Keys and Entries

HKEY_LOCAL_MACHINESoftwareClassesDRIVE.OwnsDefy

HKEY_LOCAL_MACHINESoftwareClassesFRAG.elseChin

HKEY_LOCAL_MACHINESoftwareClassesFRAG.elseChin.1

HKEY_CURRENT_USERSoftwareMicrosoft
Internet ExplorerMain
Search Bar = "http://ecmh.com/searchbar.html"

HKEY_CURRENT_USERSoftwareMicrosoft
Internet ExplorerMain
Search Bar = "http://search200.com/searchbar.html"

HKEY_CURRENT_USERSoftwareMicrosoft
Internet ExplorerMain
Search Page = "http://ecmh.com/searchbar.html"

HKEY_CURRENT_USERSoftwareMicrosoft
Internet ExplorerMain
Search Page = "http://search200.com/searchbar.html"

HKEY_CURRENT_USERSoftwareMicrosoft
Internet ExplorerMain
Start Page = "ecmh.com"

HKEY_CURRENT_USERSoftwareMicrosoft
Internet ExplorerMain
Start Page = "search200.com"

HKEY_LOCAL_MACHINESoftwareMicrosoft
Internet ExplorerMain
Search Bar = "http://ecmh.com/searchbar.html"

HKEY_LOCAL_MACHINESoftwareMicrosoft
Internet ExplorerMain
Search Bar = "http://search200.com/searchbar.html"

HKEY_LOCAL_MACHINESoftwareMicrosoft
Internet ExplorerMain
Search Page = "://ecmh.com/searchbar.html"

HKEY_LOCAL_MACHINESoftwareMicrosoft
Internet ExplorerMain
Search Page = "http://search200.com/searchbar.html"

HKEY_LOCAL_MACHINESoftwareMicrosoft
Internet ExplorerMain
Start Page = "ecmh.com"

HKEY_LOCAL_MACHINESoftwareMicrosoft
Internet ExplorerMain
Start Page = "search200.com"

HKEY_LOCAL_MACHINESoftwareMicrosoft
Internet ExplorerSearch
SearchAssistant = "http://search200.com/searchbar.html"

HKEY_LOCAL_MACHINESoftwareMicrosoft
Internet ExplorerSearch
SearchAssistant =" http://ecmh.com/searchbar.html"

HKEY_LOCAL_MACHINESoftwareMicrosoft
Internet ExplorerToolbar{D1286418-B823-DB08-4CAE-1814A2E2149D}

HKEY_LOCAL_MACHINESoftwareMicrosoft
WindowsCurrentVersionUninstallBitTorrent

HKEY_LOCAL_MACHINESoftwareMicrosoft
WindowsCurrentVersionUninstallmove great trans

HKEY_LOCAL_MACHINE\%Registry Run Key%
creative dead


Solution:

Minimum scan engine version needed: 7.100


Trend customers

Keep your pattern file and scan engine updated. Trend Micro antivirus software can clean or remove most types of viruses. Certain viruses, such as Trojans, scripts, overwriting viruses and joke programs which are identified as "uncleanable", should simply be deleted.

All Internet users

1. For a quick check-up of your PC, use HouseCall - Trend Micros online virus scanner. This will check for viruses which may already be on your PC.
2. To keep your computer healthy by catching viruses before they have a chance to infect your PC or network, get the best antivirus solution available today. Trend Micro offers antivirus and content security solutions for home users, corporate users, and ISPs.
 
< Prev   Next >
[ Back ]