Technical details:
Categories: Trojan,Adware
[Kaspersky]Adware.Win32.Azesearch.h;
[Other]TrustIn,trustin bar,Adware.TrustInBar,Trustincash TrustIn.Bar Folders:
[%PROGRAM_FILES%]\TrustIn Contextual
[%PROGRAM_FILES%]\TrustIn Bar
[%PROGRAM_FILES%]\TrustIn Popups
[%PROGRAM_FILES%]\TrustIn Search
TrustIn.Bar Files:
[%WINDOWS%]\adult.ico
[%WINDOWS%]\casino.ico
[%WINDOWS%]\shopping.ico
[%WINDOWS%]\spywareremoval.ico
[%DESKTOP%]\Online Shopping.url
[%DESKTOP%]\Remove Adware.url
[%DESKTOP%]\Sex Personals.url
[%DESKTOP%]\Video Slots.url
[%SYSTEM%]\lcch.dat
[%SYSTEM%]\lut.dat
[%SYSTEM%]\tconini.dat
[%SYSTEM%]\ticads.exe
[%SYSTEM%]\ticont.dll
[%SYSTEM%]\tipp.dat
[%SYSTEM%]\tippcls.dat
[%SYSTEM%]\tips.exe
[%SYSTEM%]\tisa.cnf
[%SYSTEM%]\tisa.dll
[%WINDOWS%]\videoslots.ico
[%WINDOWS%]\adult.ico
[%WINDOWS%]\casino.ico
[%WINDOWS%]\shopping.ico
[%WINDOWS%]\spywareremoval.ico
[%DESKTOP%]\Online Shopping.url
[%DESKTOP%]\Remove Adware.url
[%DESKTOP%]\Sex Personals.url
[%DESKTOP%]\Video Slots.url
[%SYSTEM%]\lcch.dat
[%SYSTEM%]\lut.dat
[%SYSTEM%]\tconini.dat
[%SYSTEM%]\ticads.exe
[%SYSTEM%]\ticont.dll
[%SYSTEM%]\tipp.dat
[%SYSTEM%]\tippcls.dat
[%SYSTEM%]\tips.exe
[%SYSTEM%]\tisa.cnf
[%SYSTEM%]\tisa.dll
[%WINDOWS%]\videoslots.ico
TrustIn.Bar Registry Keys:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{Y479C6D0-OTRW-U5GH-S1EE-E0AC10B4E666}
HKEY_CLASSES_ROOT\clsid\{2520ba45-3d97-4864-82ff-f47f951727ba}
HKEY_CLASSES_ROOT\clsid\{9b053e00-78d3-47ae-b763-60ff36ff2886}
HKEY_CLASSES_ROOT\interface\{3f38ff1d-e8d7-41f5-8efc-e20d38526cd5}
HKEY_CLASSES_ROOT\interface\{76eb2786-fbc3-45ba-8f5e-5dbb822d499a}
HKEY_CLASSES_ROOT\ticont.mybho
HKEY_CLASSES_ROOT\tisa.mybho
HKEY_CLASSES_ROOT\trustin.activator
HKEY_CLASSES_ROOT\trustin.activator.1
HKEY_CLASSES_ROOT\trustin.stockbar
HKEY_CLASSES_ROOT\trustin.stockbar.1
HKEY_CLASSES_ROOT\typelib\{03959d01-b260-4552-9c05-1c0072e0dd3e}
HKEY_CLASSES_ROOT\typelib\{999887f8-c452-41e5-aca1-a2acd64c5efe}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{2520ba45-3d97-4864-82ff-f47f951727ba}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{9b053e00-78d3-47ae-b763-60ff36ff2886}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\ticont
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\tipu
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\tisa
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\trustin bar
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\trustin popups
HKEY_LOCAL_MACHINE\software\trustin bar
HKEY_LOCAL_MACHINE\software\trustin popups
TrustIn.Bar Registry Values:
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\internet settings\user agent\post platform
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run
TrustIn.Bar indications of infection
This symptoms of TrustIn.Bar detection are the files, registry, and network communication referenced in the technical details section.Method of Infection
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial.Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Buy Exterminate-It antivirus software and perform a full scan of the computer.
You can also Download Free Trial Version of ExterminateIt! to check your your computer just NOW.
Also Be Aware of the Following Threats:
PSW.QQpass.aj Trojan Removal instruction
Removing Iceland Trojan
Posts
No comments:
Post a Comment