Technical details:
Categories: BHO,Toolbar
Locators Files:
[%SYSTEM%]\locators.dll
[%SYSTEM%]\uninst-locators.exe
[%WINDOWS%]\lctappend.txt
[%WINDOWS%]\lctkeys.txt
[%WINDOWS%]\lupdtr.exe
[%WINDOWS%]\system\locators.dll
[%SYSTEM%]\locators.dll
[%SYSTEM%]\uninst-locators.exe
[%WINDOWS%]\lctappend.txt
[%WINDOWS%]\lctkeys.txt
[%WINDOWS%]\lupdtr.exe
[%WINDOWS%]\system\locators.dll
Locators Registry Keys:
HKEY_CLASSES_ROOT\clsid\{e720b458-b65a-438c-9ff3-b1df65d7db3f}
HKEY_LOCAL_MACHINE\software\classes\clsid\{e720b458-b65a-438c-9ff3-b1df65d7db3f}
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\extensions\{a26abcf0-1c8f-46e7-a67c-0489dc21b9cc}
HKEY_CLASSES_ROOT\clsid\{4e7bd74f-2b8d-469e-92b0-a921f8d5e22e}
HKEY_CLASSES_ROOT\clsid\{4e7bd74f-2b8d-469e-92b0-a921f8d5e22f}
HKEY_CLASSES_ROOT\clsid\{4e7bd74f-2b8d-469e-92b0-a921f8d5e230}
HKEY_CLASSES_ROOT\clsid\{e720b458-b65a-438c-9ff3-b1df65d7db3e}
HKEY_CLASSES_ROOT\interface\{ab88fc82-fcdc-4062-bcc4-887f0d73ec1d}
HKEY_CLASSES_ROOT\locators.locatorbar
HKEY_CLASSES_ROOT\locators.locatorbar.1
HKEY_CLASSES_ROOT\locators.locatorlinks
HKEY_CLASSES_ROOT\locators.locatorlinks.1
HKEY_CLASSES_ROOT\locatorstoolbar.locatorstoolbar
HKEY_CLASSES_ROOT\locatorstoolbar.locatorstoolbarmenu button
HKEY_CLASSES_ROOT\locatorstoolbar.locatorstoolbartoggle button
HKEY_CLASSES_ROOT\typelib\{b4f8e732-4793-4f90-b40a-829331861d54}
HKEY_CURRENT_USER\software\locatorstoolbar toolbar
HKEY_CURRENT_USER\software\microsoft\internet explorer\locators toolbar
HKEY_CURRENT_USER\software\microsoft\internet explorer\toolbar\webbrowser\{4e7bd74f-2b8d-469e-92b0-a921f8d5e22e}
HKEY_LOCAL_MACHINE\software\classes\clsid\{e720b458-b65a-438c-9ff3-b1df65d7db3e}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{4e7bd74f-2b8d-469e-92b0-a921f8d5e22e}
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\toolbar\{4e7bd74f-2b8d-469e-92b0-a921f8d5e22e}
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\toolbar\{e720b458-b65a-438c-9ff3-b1df65d7db3e}
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\toolbar\{e720b458-b65a-438c-9ff3-b1df65d7db3f}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{4e7bd74f-2b8d-469e-92b0-a921f8d5e22e}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\locators toolbar
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\locatorstoolbar
Locators Registry Values:
HKEY_CURRENT_USER\software\microsoft\search assistant
HKEY_CURRENT_USER\software\microsoft\internet explorer\toolbar\webbrowser
HKEY_CURRENT_USER\software\microsoft\search assistant
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\toolbar
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\toolbar
Locators indications of infection
This symptoms of Locators detection are the files, registry, and network communication referenced in the technical details section.Method of Infection
Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial.Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Buy Exterminate-It antivirus software and perform a full scan of the computer.
You can also Download Free Trial Version of ExterminateIt! to check your your computer just NOW.
Also Be Aware of the Following Threats:
Small.Bve Downloader Cleaner
Removing OmegaSearch Hijacker
Brute.Force Backdoor Symptoms
Posts
No comments:
Post a Comment