Technical details:
Categories: BHO,Hijacker,Toolbar
WishBone Folders:
[%SYSTEM%]\wbm
WishBone Files:
[%SYSTEM%]\minst.dll
[%SYSTEM%]\minst.inf
[%SYSTEM%]\wbm.dll
[%WINDOWS%]\system\minst.dll
[%WINDOWS%]\system\wbm.dll
[%SYSTEM%]\minst.dll
[%SYSTEM%]\minst.inf
[%SYSTEM%]\wbm.dll
[%WINDOWS%]\system\minst.dll
[%WINDOWS%]\system\wbm.dll
WishBone Registry Keys:
HKEY_CLASSES_ROOT\appid\{7f6ed58c-ac98-4233-b3b1-3e42762183c9}
HKEY_CLASSES_ROOT\appid\{b0931261-03c3-4bb3-9ce1-22bfda3af445}
HKEY_CLASSES_ROOT\clsid\{3aa90bc2-58c0-4f4d-a87c-2c6f3d3cd5fe}
HKEY_CLASSES_ROOT\clsid\{4fd85670-606a-42e9-bba5-2bc63493b677}
HKEY_CLASSES_ROOT\clsid\{54a80613-6dd4-4bd3-a804-d3aae3b950c9}
HKEY_CLASSES_ROOT\clsid\{6a1c1772-02b1-476e-a5b4-ec1f54409bd1}
HKEY_CLASSES_ROOT\clsid\{86f4ad51-ee90-409d-944b-fdb0c939b41c}
HKEY_CLASSES_ROOT\clsid\{87b1e57c-ff70-4c69-9ce8-57cb8f67aba8}
HKEY_CLASSES_ROOT\clsid\{b0931261-03c3-4bb3-9ce1-22bfda3af445}
HKEY_CLASSES_ROOT\clsid\{c331bd6e-06ab-41a0-b95f-d7ca379aceaa}
HKEY_CLASSES_ROOT\clsid\{da3db988-d1fb-4919-a684-78e6a5358340}
HKEY_CLASSES_ROOT\clsid\{db2e7bc7-104f-42b5-aae3-921e3057db06}
HKEY_CLASSES_ROOT\clsid\{eaa87376-c391-494e-9da2-2bd9c798e54f}
HKEY_CLASSES_ROOT\clsid\{f78216e3-1e33-44cf-be3e-cbeb074eac24}
HKEY_CLASSES_ROOT\gigel.scriptcallback
HKEY_CLASSES_ROOT\gigel.scriptcallback.1
HKEY_CLASSES_ROOT\interface\{08e62c6d-babd-4be9-a015-ecfe9cc76997}
HKEY_CLASSES_ROOT\interface\{0dfda3c9-01ba-407e-9640-927c9ea56e1f}
HKEY_CLASSES_ROOT\interface\{10b7932b-fced-4b35-b163-8b9685b97ae7}
HKEY_CLASSES_ROOT\interface\{358a1bcc-43f9-48c2-b0e3-0dc770fbf9bc}
HKEY_CLASSES_ROOT\interface\{40930a0f-68cc-4b81-848a-77a78f85fa7b}
HKEY_CLASSES_ROOT\interface\{535dd275-513c-424f-a0be-dea920dba29b}
HKEY_CLASSES_ROOT\interface\{54a80613-6dd4-4bd3-a804-d3aae3b950c9}
HKEY_CLASSES_ROOT\interface\{98c1c8ef-d513-45cb-8a2a-da15a79ec4ad}
HKEY_CLASSES_ROOT\interface\{aeef5ccc-71c7-4053-88a4-6cb87fd4e461}
HKEY_CLASSES_ROOT\interface\{b6ce642a-2171-4661-bb46-aed01c2ed9ec}
HKEY_CLASSES_ROOT\interface\{c90ef72e-2862-4de8-9d30-392bd3f5884b}
HKEY_CLASSES_ROOT\interface\{cc4a4cd1-e441-4a03-941c-e183bce357e7}
HKEY_CLASSES_ROOT\interface\{eec6662f-7ce0-4e53-9e08-98f358b50247}
HKEY_CLASSES_ROOT\interface\{f49eea51-e029-46f1-90ca-460198e7ebb6}
HKEY_CLASSES_ROOT\keys.keywords
HKEY_CLASSES_ROOT\keys.keywords.1
HKEY_CLASSES_ROOT\menucontainer.menuholder
HKEY_CLASSES_ROOT\menucontainer.menuholder.1
HKEY_CLASSES_ROOT\menucontainer.regacess
HKEY_CLASSES_ROOT\menucontainer.regacess.1
HKEY_CLASSES_ROOT\menucontainer.websink
HKEY_CLASSES_ROOT\menucontainer.websink.1
HKEY_CLASSES_ROOT\microinstaller.wbminstaller
HKEY_CLASSES_ROOT\microinstaller.wbminstaller.1
HKEY_CLASSES_ROOT\software\microsoft\windows\currentversion\explorer\browser helper objects\{3aa90bc2-58c0-4f4d-a87c-2c6f3d3cd5fe}
HKEY_CLASSES_ROOT\software\microsoft\windows\currentversion\explorer\browser helper objects\{c331bd6e-06ab-41a0-b95f-d7ca379aceaa}
HKEY_CLASSES_ROOT\typelib\{10cd7efc-7d1a-4599-ab49-9249c714b87c}
HKEY_CLASSES_ROOT\typelib\{360fff56-cb6b-4a67-915c-1bd9c7712f15}
HKEY_CLASSES_ROOT\typelib\{b004262d-5762-4daa-a222-3b9a738c83ea}
HKEY_CLASSES_ROOT\typelib\{f54903a4-b2da-4c02-ae72-8fa8373c3804}
HKEY_CLASSES_ROOT\wbm.atlbrcon
HKEY_CLASSES_ROOT\wbm.atlbrcon.1
HKEY_CLASSES_ROOT\wbm.explorerbar
HKEY_CLASSES_ROOT\wbm.explorerbar.1
HKEY_CLASSES_ROOT\wbm.webmonitor
HKEY_CLASSES_ROOT\wbm.webmonitor.1
HKEY_CLASSES_ROOT\wbmbar.viewsource
HKEY_CLASSES_ROOT\wbmbar.viewsource.1
HKEY_CLASSES_ROOT\wbmbar.wbmtoolbar
HKEY_CLASSES_ROOT\wbmbar.wbmtoolbar.1
HKEY_CLASSES_ROOT\wbmxpcolors.xpcolors
HKEY_CLASSES_ROOT\wbmxpcolors.xpcolors.1
HKEY_CURRENT_USER\software\wishbone media
HKEY_LOCAL_MACHINE\software\classes\clsid\{3aa90bc2-58c0-4f4d-a87c-2c6f3d3cd5fe}
HKEY_LOCAL_MACHINE\software\classes\clsid\{87b1e57c-ff70-4c69-9ce8-57cb8f67aba8}
HKEY_LOCAL_MACHINE\software\classes\clsid\{c331bd6e-06ab-41a0-b95f-d7ca379aceaa}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{3aa90bc2-58c0-4f4d-a87c-2c6f3d3cd5fe}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{3aa90bc2-58c0-4f4d-a87c-2c6f3d3cd5fe}\contains
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{3aa90bc2-58c0-4f4d-a87c-2c6f3d3cd5fe}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{c331bd6e-06ab-41a0-b95f-d7ca379aceaa}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\setup\optionalcomponents\wbm
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\wbinstaller
HKEY_LOCAL_MACHINE\software\wbinstaller
HKEY_LOCAL_MACHINE\software\wishbone media
WishBone Registry Values:
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\abouturls
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\toolbar
WishBone indications of infection
This symptoms of WishBone detection are the files, registry, and network communication referenced in the technical details section.Method of Infection
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial.Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Buy Exterminate-It antivirus software and perform a full scan of the computer.
You can also Download Free Trial Version of ExterminateIt! to check your your computer just NOW.
Also Be Aware of the Following Threats:
Zlob.Fam.Online Add-on Trojan Removal
Posts
No comments:
Post a Comment