Full description

Vírus	Adspy/Bho.GamePla.B
Data em que surgiu:	14/03/2012
Tipo:	Adware/Spyware
Subtipo:	Bho
Incluído na lista "In The Wild"	Não
Nível de danos:	De baixo a médio
Nível de distribuição:	Baixo
Nível de risco:	Baixo
Tamanho:	475.480 Bytes
MD5 checksum:	f8b474e24a282b278c0E8ac39bb6c099
Versão VDF:	7.11.25.96 - quarta-feira, 14 de março de 2012
Versão IVDF:	7.11.25.96 - quarta-feira, 14 de março de 2012

Vulgarmente Meio de transmissão:
   • Não tem rotinas de propagação

O arquivo funciona interdependentemente com esses componentes:
   • Adspy/Bho.GamePl.BB

Sistemas Operativos:
   • Windows 2000
   • Windows XP
   • Windows 2003
   • Windows Vista
   • Windows Server 2008
   • Windows 7

Efeitos secundários:
   • Altera o registo do Windows

Registry (Registo do Windows) Regista um Objecto de Ajuda do Browser (BHO) adicionando a seguinte chave ao registo do Windows:

– [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\
   Browser Helper Objects\{11111111-1111-1111-1111-110011221158}]
   • "(Default)"="CrossriderApp0002258"
   • "NoExplorer"="dword:0x00000001"

São adicionadas as seguintes chaves ao registo:

– [HKCR\CLSID\{11111111-1111-1111-1111-110011221158}]
   • "(Default)"="I Want This"

– [HKCR\CLSID\{11111111-1111-1111-1111-110011221158}\InprocServer32]
   • "(Default)"="%arquivo malware%"

– [HKCR\CLSID\{11111111-1111-1111-1111-110011221158}\ProgID]
   • "(Default)"="CrossriderApp0002258.BHO.1"

– [HKCR\CLSID\{11111111-1111-1111-1111-110011221158}\TypeLib]
   • "(Default)"="{44444444-4444-4444-4444-440044224458}"

– [HKCR\CLSID\{11111111-1111-1111-1111-110011221158}\
   VersionIndependentProgID]
   • "(Default)"="CrossriderApp0002258"

– [HKCR\CLSID\{22222222-2222-2222-2222-220022222258}]
   • "(Default)"="CrossriderApp0002258.Sandbox"

– [HKCR\CLSID\{22222222-2222-2222-2222-220022222258}\InprocServer32]
   • "(Default)"="%arquivo malware%"

– [HKCR\CLSID\{22222222-2222-2222-2222-220022222258}\ProgID]
   • "(Default)"="CrossriderApp0002258.Sandbox.1"

– [HKCR\CLSID\{22222222-2222-2222-2222-220022222258}\TypeLib]
   • "(Default)"="{44444444-4444-4444-4444-440044224458}"

– [HKCR\CLSID\{22222222-2222-2222-2222-220022222258}\
   VersionIndependentProgID]
   • "(Default)"="CrossriderApp0002258.Sandbox"

– [HKCR\CLSID\{33333333-3333-3333-3333-330033223358}]
   • "(Default)"="CrossriderApp0002258.FBApi"

– [HKCR\CLSID\{33333333-3333-3333-3333-330033223358}\InprocServer32]
   • "(Default)"="%arquivo malware%"

– [HKCR\CLSID\{33333333-3333-3333-3333-330033223358}\ProgID]
   • "(Default)"="CrossriderApp0002258.FBApi.1"

– [HKCR\CLSID\{33333333-3333-3333-3333-330033223358}\TypeLib]
   • "(Default)"="{44444444-4444-4444-4444-440044224458}"

– [HKCR\CLSID\{33333333-3333-3333-3333-330033223358}\
   VersionIndependentProgID]
   • "(Default)"="CrossriderApp0002258.FBApi"

– [HKCR\CrossriderApp0002258.BHO.1]
   • "(Default)"="CrossriderApp0002258"

– [HKCR\CrossriderApp0002258.BHO.1\CLSID]
   • "(Default)"="{11111111-1111-1111-1111-110011221158}"

– [HKCR\CrossriderApp0002258.BHO]
   • "(Default)"="CrossriderApp0002258"

– [HKCR\CrossriderApp0002258.BHO\CLSID]
   • "(Default)"="{11111111-1111-1111-1111-110011221158}"

– [HKCR\CrossriderApp0002258.BHO\CurVer]
   • "(Default)"="CrossriderApp0002258"

– [HKCR\CrossriderApp0002258.FBApi.1]
   • "(Default)"="CrossriderApp0002258.FBApi"

– [HKCR\CrossriderApp0002258.FBApi.1\CLSID]
   • "(Default)"="{33333333-3333-3333-3333-330033223358}"

– [HKCR\CrossriderApp0002258.FBApi]
   • "(Default)"="CrossriderApp0002258.FBApi"

– [HKCR\CrossriderApp0002258.FBApi\CLSID]
   • "(Default)"="{33333333-3333-3333-3333-330033223358}"

– [HKCR\CrossriderApp0002258.FBApi\CurVer]
   • "(Default)"="CrossriderApp0002258.FBApi.1"

– [HKCR\CrossriderApp0002258.Sandbox.1]
   • "(Default)"="CrossriderApp0002258.Sandbox"

– [HKCR\CrossriderApp0002258.Sandbox.1\CLSID]
   • "(Default)"="{22222222-2222-2222-2222-220022222258}"

– [HKCR\CrossriderApp0002258.Sandbox]
   • "(Default)"="CrossriderApp0002258.Sandbox"

– [HKCR\CrossriderApp0002258.Sandbox\CLSID]
   • "(Default)"="{22222222-2222-2222-2222-220022222258}"

– [HKCR\CrossriderApp0002258.Sandbox\CurVer]
   • "(Default)"="CrossriderApp0002258.Sandbox"

– [HKCR\Interface\{55555555-5555-5555-5555-550055225558}]
   • "(Default)"="ICrossriderBHO"

– [HKCR\Interface\{55555555-5555-5555-5555-550055225558}\
   ProxyStubClsid]
   • "(Default)"="{00020424-0000-0000-C000-000000000046}"

– [HKCR\Interface\{55555555-5555-5555-5555-550055225558}\
   ProxyStubClsid32]
   • "(Default)"="{00020424-0000-0000-C000-000000000046}"

– [HKCR\Interface\{55555555-5555-5555-5555-550055225558}\TypeLib]
   • "(Default)"="{44444444-4444-4444-4444-440044224458}"
   • "Version"="1.0"

– [HKCR\Interface\{66666666-6666-6666-6666-660066226658}]
   • "(Default)"="ISandBox"

– [HKCR\Interface\{66666666-6666-6666-6666-660066226658}\
   ProxyStubClsid]
   • "(Default)"="{00020424-0000-0000-C000-000000000046}"

– [HKCR\Interface\{66666666-6666-6666-6666-660066226658}\
   ProxyStubClsid32]
   • "(Default)"="{00020424-0000-0000-C000-000000000046}"

– [HKCR\Interface\{66666666-6666-6666-6666-660066226658}\TypeLib]
   • "(Default)"="{44444444-4444-4444-4444-440044224458}"
   • "Version"="1.0"

– [HKCR\Interface\{77777777-7777-7777-7777-770077227758}]
   • "(Default)"="IFBApi"

– [HKCR\Interface\{77777777-7777-7777-7777-770077227758}\
   ProxyStubClsid]
   • "(Default)"="{00020424-0000-0000-C000-000000000046}"

– [HKCR\Interface\{77777777-7777-7777-7777-770077227758}\
   ProxyStubClsid32]
   • "(Default)"="{00020424-0000-0000-C000-000000000046}"

– [HKCR\Interface\{77777777-7777-7777-7777-770077227758}\TypeLib]
   • "(Default)"="{44444444-4444-4444-4444-440044224458}"
   • "Version"="1.0"

– [HKCR\TypeLib\{44444444-4444-4444-4444-440044224458}\1.0]
   • "(Default)"="CrossriderApp0002258 Type Library"

– [HKCR\TypeLib\{44444444-4444-4444-4444-440044224458}\1.0\0\win32]
   • "(Default)"="%arquivo malware%"

– [HKCR\TypeLib\{44444444-4444-4444-4444-440044224458}\1.0\FLAGS]
   • "(Default)"="0"

– [HKLM\SOFTWARE\Classes\CLSID\
   {11111111-1111-1111-1111-110011221158}]
   • "(Default)"="I Want This"

– [HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110011221158}\
   InprocServer32]
   • "(Default)"="%arquivo malware%"

– [HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110011221158}\
   ProgID]
   • "(Default)"="CrossriderApp0002258.BHO.1"

– [HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110011221158}\
   TypeLib]
   • "(Default)"="{44444444-4444-4444-4444-440044224458}"

– [HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110011221158}\
   VersionIndependentProgID]
   • "(Default)"="CrossriderApp0002258"

– [HKLM\SOFTWARE\Classes\CLSID\
   {22222222-2222-2222-2222-220022222258}]
   • "(Default)"="CrossriderApp0002258.Sandbox"

– [HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220022222258}\
   InprocServer32]
   • "(Default)"="%arquivo malware%"

– [HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220022222258}\
   ProgID]
   • "(Default)"="CrossriderApp0002258.Sandbox.1"

– [HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220022222258}\
   TypeLib]
   • "(Default)"="{44444444-4444-4444-4444-440044224458}"

– [HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220022222258}\
   VersionIndependentProgID]
   • "(Default)"="CrossriderApp0002258.Sandbox"

– [HKLM\SOFTWARE\Classes\CLSID\
   {33333333-3333-3333-3333-330033223358}]
   • "(Default)"="CrossriderApp0002258.FBApi"

– [HKLM\SOFTWARE\Classes\CLSID\{33333333-3333-3333-3333-330033223358}\
   InprocServer32]
   • "(Default)"="%arquivo malware%"

– [HKLM\SOFTWARE\Classes\CLSID\{33333333-3333-3333-3333-330033223358}\
   ProgID]
   • "(Default)"="CrossriderApp0002258.FBApi.1"

– [HKLM\SOFTWARE\Classes\CLSID\{33333333-3333-3333-3333-330033223358}\
   TypeLib]
   • "(Default)"="{44444444-4444-4444-4444-440044224458}"

– [HKLM\SOFTWARE\Classes\CLSID\{33333333-3333-3333-3333-330033223358}\
   VersionIndependentProgID]
   • "(Default)"="CrossriderApp0002258.FBApi"

– [HKLM\SOFTWARE\Classes\CrossriderApp0002258.BHO.1]
   • "(Default)"="CrossriderApp0002258"

– [HKLM\SOFTWARE\Classes\CrossriderApp0002258.BHO.1\CLSID]
   • "(Default)"="{11111111-1111-1111-1111-110011221158}"

– [HKLM\SOFTWARE\Classes\CrossriderApp0002258.BHO]
   • "(Default)"="CrossriderApp0002258"

– [HKLM\SOFTWARE\Classes\CrossriderApp0002258.BHO\CLSID]
   • "(Default)"="{11111111-1111-1111-1111-110011221158}"

– [HKLM\SOFTWARE\Classes\CrossriderApp0002258.BHO\CurVer]
   • "(Default)"="CrossriderApp0002258"

– [HKLM\SOFTWARE\Classes\CrossriderApp0002258.FBApi.1]
   • "(Default)"="CrossriderApp0002258.FBApi"

– [HKLM\SOFTWARE\Classes\CrossriderApp0002258.FBApi.1\CLSID]
   • "(Default)"="{33333333-3333-3333-3333-330033223358}"

– [HKLM\SOFTWARE\Classes\CrossriderApp0002258.FBApi]
   • "(Default)"="CrossriderApp0002258.FBApi"

– [HKLM\SOFTWARE\Classes\CrossriderApp0002258.FBApi\CLSID]
   • "(Default)"="{33333333-3333-3333-3333-330033223358}"

– [HKLM\SOFTWARE\Classes\CrossriderApp0002258.FBApi\CurVer]
   • "(Default)"="CrossriderApp0002258.FBApi.1"

– [HKLM\SOFTWARE\Classes\CrossriderApp0002258.Sandbox.1]
   • "(Default)"="CrossriderApp0002258.Sandbox"

– [HKLM\SOFTWARE\Classes\CrossriderApp0002258.Sandbox.1\CLSID]
   • "(Default)"="{22222222-2222-2222-2222-220022222258}"

– [HKLM\SOFTWARE\Classes\CrossriderApp0002258.Sandbox]
   • "(Default)"="CrossriderApp0002258.Sandbox"

– [HKLM\SOFTWARE\Classes\CrossriderApp0002258.Sandbox\CLSID]
   • "(Default)"="{22222222-2222-2222-2222-220022222258}"

– [HKLM\SOFTWARE\Classes\CrossriderApp0002258.Sandbox\CurVer]
   • "(Default)"="CrossriderApp0002258.Sandbox"

– [HKLM\SOFTWARE\Classes\Interface\
   {55555555-5555-5555-5555-550055225558}]
   • "(Default)"="ICrossriderBHO"

– [HKLM\SOFTWARE\Classes\Interface\
   {55555555-5555-5555-5555-550055225558}\ProxyStubClsid]
   • "(Default)"="{00020424-0000-0000-C000-000000000046}"

– [HKLM\SOFTWARE\Classes\Interface\
   {55555555-5555-5555-5555-550055225558}\ProxyStubClsid32]
   • "(Default)"="{00020424-0000-0000-C000-000000000046}"

– [HKLM\SOFTWARE\Classes\Interface\
   {55555555-5555-5555-5555-550055225558}\TypeLib]
   • "(Default)"="{44444444-4444-4444-4444-440044224458}"
   • "Version"="1.0"

– [HKLM\SOFTWARE\Classes\Interface\
   {66666666-6666-6666-6666-660066226658}]
   • "(Default)"="ISandBox"

– [HKLM\SOFTWARE\Classes\Interface\
   {66666666-6666-6666-6666-660066226658}\ProxyStubClsid]
   • "(Default)"="{00020424-0000-0000-C000-000000000046}"

– [HKLM\SOFTWARE\Classes\Interface\
   {66666666-6666-6666-6666-660066226658}\ProxyStubClsid32]
   • "(Default)"="{00020424-0000-0000-C000-000000000046}"

– [HKLM\SOFTWARE\Classes\Interface\
   {66666666-6666-6666-6666-660066226658}\TypeLib]
   • "(Default)"="{44444444-4444-4444-4444-440044224458}"
   • "Version"="1.0"

– [HKLM\SOFTWARE\Classes\Interface\
   {77777777-7777-7777-7777-770077227758}]
   • "(Default)"="IFBApi"

– [HKLM\SOFTWARE\Classes\Interface\
   {77777777-7777-7777-7777-770077227758}\ProxyStubClsid]
   • "(Default)"="{00020424-0000-0000-C000-000000000046}"

– [HKLM\SOFTWARE\Classes\Interface\
   {77777777-7777-7777-7777-770077227758}\ProxyStubClsid32]
   • "(Default)"="{00020424-0000-0000-C000-000000000046}"

– [HKLM\SOFTWARE\Classes\Interface\
   {77777777-7777-7777-7777-770077227758}\TypeLib]
   • "(Default)"="{44444444-4444-4444-4444-440044224458}"
   • "Version"="1.0"

– [HKLM\SOFTWARE\Classes\TypeLib\
   {44444444-4444-4444-4444-440044224458}\1.0]
   • "(Default)"="CrossriderApp0002258 Type Library"

– [HKLM\SOFTWARE\Classes\TypeLib\
   {44444444-4444-4444-4444-440044224458}\1.0\0\win32]
   • "(Default)"="%arquivo malware%"

– [HKLM\SOFTWARE\Classes\TypeLib\
   {44444444-4444-4444-4444-440044224458}\1.0\FLAGS]
   • "(Default)"="0"

– [HKLM\SOFTWARE\Classes\TypeLib\
   {44444444-4444-4444-4444-440044224458}\1.0\HELPDIR]
   • "(Default)"="%directório de execução do malware%"

Descrição enviada por Wensin Lee em sexta-feira, 16 de março de 2012
Descrição atualizada por Wensin Lee em sexta-feira, 16 de março de 2012

Voltar . . . .

Precisa consertar seu PC?

Produtos em destaque

Mais produtos

Produtos mais populares

Todos os produtos

Usuários domésticos

Empresas

Laboratório de vírus

Mais suporte

Seja um parceiro Avira

Usuários domésticos

Empresas

Deseja apenas experimentar um produto?

Manuais e ferramentas

Produtos em destaque

Mais produtos

Produtos mais populares

Todos os produtos

Usuários domésticos

Empresas

Laboratório de vírus

Mais suporte

Seja um parceiro Avira

Usuários domésticos

Empresas

Deseja apenas experimentar um produto?

Manuais e ferramentas