Saturday, January 24, 2009

MediaLoads.Enhanced BHO

Click here to remove MediaLoads.Enhanced malware
MediaLoads.Enhanced description:
MediaLoads.Enhanced Category:BHO
The BHO (Browser Helper Object) waits for the user to post personal information to a monitored website.
As this information is entered by the user, it is captured by the BHO and sent back to the attacker.

Detection MediaLoads.Enhanced :

MediaLoads.Enhanced Files:
[%PROGRAM_FILES%]\support software\ss2.dll
[%PROGRAM_FILES%]\support software\ss1.dll
[%PROGRAM_FILES%]\support software\ss2.dll
[%PROGRAM_FILES%]\support software\ss1.dll

MediaLoads.Enhanced Folders:
[%PROGRAM_FILES%]\medialoads enhanced

MediaLoads.Enhanced Registry Keys:
HKEY_CLASSES_ROOT\clsid\{85a702ba-ea8f-4b83-aa07-07a5186acd7e}
HKEY_CLASSES_ROOT\software\microsoft\windows\currentversion\explorer\browser helper objects\{85a702ba-ea8f-4b83-aa07-07a5186acd7e}
HKEY_LOCAL_MACHINE\software\classes\clsid\{85a702ba-ea8f-4b83-aa07-07a5186acd7e}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{85a702ba-ea8f-4b83-aa07-07a5186acd7e}

MediaLoads.Enhanced Registry Values:
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\recommended hotfix - 421701d
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\recommended hotfix - 421701d
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\moduleusage\[%WINDOWS%]/downloaded program files/conflict.1/activeinstall2.dll
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\moduleusage\[%WINDOWS%]/downloaded program files/conflict.1/activeinstall2.dll
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\moduleusage\[%WINDOWS%]/downloaded program files/conflict.2/activeinstall2.dll
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\moduleusage\[%WINDOWS%]/downloaded program files/conflict.2/activeinstall2.dll
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\recommended hotfix - 421701d
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\recommended hotfix - 421701d

Removing MediaLoads.Enhanced:

you can run trial version of ExterminateIt, or remove MediaLoads.Enhanced manually.


To completely manually remove MediaLoads.Enhanced malware from your computer, you need to delete the Windows registry keys and registry values, the files and folders associated with MediaLoads.Enhanced.


Also Be Aware of the Following Threats:
Win32.HotmailHack Trojan Cleaner
Remove Vxidl.AZS Trojan
Pigeon.AOT Trojan Information
fastclick.net Tracking Cookie Removal instruction
EUniverse.variant Hijacker Information

0 Comments:

Post a Comment

Subscribe to Post Comments [Atom]

<< Home