Monday, October 27, 2008

KooWo BHO

How To Remove Remove KooWo?
You must download trial version of "Exterminate-It" antivirus software,to check your computer instantly.
KooWo is dangerous virus:
The BHO (Browser Helper Object) waits for the user to post personal information to a monitored website.
As this information is entered by the user, it is captured by the BHO and sent back to the attacker.
The downloader either launches the new malware or registers it to enable autorun
according to the local operating system requirements.
KooWo It also known as:

[F-Prot]W32/Downloader.BBGW;
[Panda]Adware/KooWo;
[Other]TROJ_DLOADR.AT,Downloader,Trojan-Downloader.NSIS.Agent,koowo lyrics software,Agent.AQJY,Trojan-Downloader.NSIS.Agent.s,KooWo Lyric Installer

KooWo Symptoms:

Files:
[%SYSTEM%]\lylk.dat
[%APPDATA%]\Adobe\UserID.txt
[%PROFILE_TEMP%]\hy_lyric_025.exe
[%PROFILE_TEMP%]\iedw.dll
[%PROFILE_TEMP%]\KooWoLyricBind_hy_lyric_025.exe
[%PROFILE_TEMP%]\UserID.txt
[%SYSTEM%]\lrcsys.exe
[%SYSTEM%]\Plugin.ini
[%SYSTEM%]\YHBO.dll
[%SYSTEM%]\lylk.dat
[%APPDATA%]\Adobe\UserID.txt
[%PROFILE_TEMP%]\hy_lyric_025.exe
[%PROFILE_TEMP%]\iedw.dll
[%PROFILE_TEMP%]\KooWoLyricBind_hy_lyric_025.exe
[%PROFILE_TEMP%]\UserID.txt
[%SYSTEM%]\lrcsys.exe
[%SYSTEM%]\Plugin.ini
[%SYSTEM%]\YHBO.dll

Folders:
[%PROGRAM_FILES%]\KooWo

Registry Keys:
HKEY_CLASSES_ROOT\appid\{e00edd4c-4879-42c6-be02-a563421d0175}
HKEY_CLASSES_ROOT\interface\{33ec91fb-caa5-4eaa-905b-e485d4d37694}
HKEY_CLASSES_ROOT\typelib\{c03a8b3c-7959-447c-a6c3-351660b23bf0}
HKEY_LOCAL_MACHINE\software\koowo
HKEY_CLASSES_ROOT\bho.bhoimp
HKEY_CLASSES_ROOT\bho.bhoimp.1
HKEY_CLASSES_ROOT\clsid\{70aff2cb-9da2-499c-8d15-900729fce83d}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{70aff2cb-9da2-499c-8d15-900729fce83d}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\koowomp3partner

Registry Values:
HKEY_CLASSES_ROOT\appid\bho.dll
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\koowolyrics
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\koowolyrics

You must clean you computer ASAP !!!
Download Free Trial Version of antivirus software here, to check your computer instantly.

Also Be Aware of the Following Threats:
FeaturedResults BHO Cleaner
Remove Banbot Trojan
HyperBar Adware Cleaner
ClientMan.bho1 BHO Removal
Win32.TrojanDropper.Small Trojan Removal

Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)