Du brauchst Hilfe? Frage die Community oder wende dich an einen Experten.
Zu Avira Answers
Name:Adware/Rogue.141312
Entdeckt am:06/08/2012
Art:Adware/Spyware
In freier Wildbahn:Nein
Gemeldete Infektionen:Niedrig bis mittel
Verbreitungspotenzial:Niedrig
Schadenspotenzial:Niedrig
Dateigröße:141.312 Bytes
MD5 Prüfsumme:5e7c277d592b7cad218fde9d52e76d37
VDF Version:7.11.38.236 - Montag, 6. August 2012
IVDF Version:7.11.38.236 - Montag, 6. August 2012

 Allgemein Verbreitungsmethode:
   • Keine eigene Verbreitungsroutine


Aliases:
   •  Kaspersky: not-a-virus:AdWare.Win32.BHO.awvu
   •  Grisoft: Generic5.GWI


Betriebsysteme:
   • Windows 2000
   • Windows XP
   • Windows 2003
   • Windows Vista
   • Windows Server 2008
   • Windows 7


Auswirkungen:
   • Änderung an der Registry

 Registry Es wird ein browser helper object (BHO) registriert indem folgende keys hinzugefügt werden:

– [HKCR\CLSID\{8CB77D97-966B-4364-9B95-93B3DC148113}]
   • "(Default)"="InjectorBHO Class"

– [HKCR\CLSID\{8CB77D97-966B-4364-9B95-93B3DC148113}\InprocServer32]
   • "(Default)"="c:\sample.dll"
   • "ThreadingModel"="Apartment"

– [HKCR\CLSID\{8CB77D97-966B-4364-9B95-93B3DC148113}\ProgID]
   • "(Default)"="Injector.BHO.1"

– [HKCR\CLSID\{8CB77D97-966B-4364-9B95-93B3DC148113}\
   VersionIndependentProgID]
   • "(Default)"="Injector.BHO"

– [HKCR\Injector.BHO.Injector.BHO.1]
   • "(Default)"="InjectorBHO"

– [HKCR\Injector.BHO.Injector.BHO.1\CLSID]
   • "(Default)"="{8CB77D97-966B-4364-9B95-93B3DC148113}"

– [HKCR\Injector.BHO.Injector.BHO]
   • "(Default)"="InjectorBHO"

– [HKCR\Injector.BHO.Injector.BHO\CLSID]
   • "(Default)"="{8CB77D97-966B-4364-9B95-93B3DC148113}"

– [HKCR\Injector.BHO.Injector.BHO\CurVer]
   • "(Default)"="Injector.BHO.1"

– [HKCR\Interface\{BBA74401-6D6F-4BBD-9F65-E8623814F3BB}]
   • "(Default)"="IInjectorBHO"

– [HKCR\Interface\{BBA74401-6D6F-4BBD-9F65-E8623814F3BB}\
   ProxyStubClsid]
   • "(Default)"="{00020424-0000-0000-C000-000000000046}"

– [HKCR\Interface\{BBA74401-6D6F-4BBD-9F65-E8623814F3BB}\
   ProxyStubClsid32]
   • "(Default)"="{00020424-0000-0000-C000-000000000046}"

– [HKCR\Interface\{BBA74401-6D6F-4BBD-9F65-E8623814F3BB}\TypeLib]
   • "(Default)"="{C2CF0D01-7657-48AA-98C9-AE5E64757FCC}"
   • "Version"="1.0"

– [HKCR\Interface\{D2F39980-399F-492E-8D88-5FF7CCB3B47F}]
   • "(Default)"="ILocalStorage"

– [HKCR\Interface\{D2F39980-399F-492E-8D88-5FF7CCB3B47F}\
   ProxyStubClsid]
   • "(Default)"="{00020424-0000-0000-C000-000000000046}"

– [HKCR\Interface\{D2F39980-399F-492E-8D88-5FF7CCB3B47F}\
   ProxyStubClsid32]
   • "(Default)"="{00020424-0000-0000-C000-000000000046}"

– [HKCR\Interface\{D2F39980-399F-492E-8D88-5FF7CCB3B47F}\TypeLib]
   • "(Default)"="{C2CF0D01-7657-48AA-98C9-AE5E64757FCC}"
   • "Version"="1.0"

– [HKCR\TypeLib\{C2CF0D01-7657-48AA-98C9-AE5E64757FCC}\1.0]
   • "(Default)"="Injector 1.0 Type Library"

– [HKCR\TypeLib\{C2CF0D01-7657-48AA-98C9-AE5E64757FCC}\1.0\0\win32]
   • "(Default)"="c:\sample.dll"

– [HKLM\SOFTWARE\Classes\CLSID\
   {8CB77D97-966B-4364-9B95-93B3DC148113}]
   • "(Default)"="InjectorBHO Class"

– [HKLM\SOFTWARE\Classes\CLSID\{8CB77D97-966B-4364-9B95-93B3DC148113}\
   InprocServer32]
   • "(Default)"="c:\sample.dll"
   • "ThreadingModel"="Apartment"

– [HKLM\SOFTWARE\Classes\CLSID\{8CB77D97-966B-4364-9B95-93B3DC148113}\
   ProgID]
   • "(Default)"="Injector.BHO.1"

– [HKLM\SOFTWARE\Classes\CLSID\{8CB77D97-966B-4364-9B95-93B3DC148113}\
   VersionIndependentProgID]
   • "(Default)"="Injector.BHO"

– [HKLM\SOFTWARE\Classes\Injector.BHO.Injector.BHO.1]
   • "(Default)"="InjectorBHO"

– [HKLM\SOFTWARE\Classes\Injector.BHO.Injector.BHO.1\CLSID]
   • "(Default)"="{8CB77D97-966B-4364-9B95-93B3DC148113}"

– [HKLM\SOFTWARE\Classes\Injector.BHO.Injector.BHO]
   • "(Default)"="InjectorBHO"

– [HKLM\SOFTWARE\Classes\Injector.BHO.Injector.BHO\CLSID]
   • "(Default)"="{8CB77D97-966B-4364-9B95-93B3DC148113}"

– [HKLM\SOFTWARE\Classes\Injector.BHO.Injector.BHO\CurVer]
   • "(Default)"="Injector.BHO.1"

– [HKLM\SOFTWARE\Classes\Interface\
   {BBA74401-6D6F-4BBD-9F65-E8623814F3BB}]
   • "(Default)"="IInjectorBHO"

– [HKLM\SOFTWARE\Classes\Interface\
   {D2F39980-399F-492E-8D88-5FF7CCB3B47F}]
   • "(Default)"="ILocalStorage"

– [HKLM\SOFTWARE\Classes\TypeLib\
   {C2CF0D01-7657-48AA-98C9-AE5E64757FCC}\1.0\0\win32]
   • "(Default)"="c:\sample.dll"

– [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\
   Browser Helper Objects\{8CB77D97-966B-4364-9B95-93B3DC148113}]
   • "(Default)"="InjectorBHO"
   • "NoExplorer"="dword:0x00000001"

Die Beschreibung wurde erstellt von Wensin Lee am Mittwoch, 8. August 2012
Die Beschreibung wurde geändert von Wensin Lee am Mittwoch, 8. August 2012

zurück . . . .