Friday, November 28, 2008

Softomate Adware

How To Remove Softomate?
You must download trial version of "Exterminate-It" antivirus software,to check your computer instantly.
Softomate is dangerous virus:
Adware are programs that facilitate delivery for advertising content
to the user and in some cases gather information from the user's computer.

Toolbar presents itself as a helpful add-on for Internet Explorer but it is a real pest.
It replaces your start page, continuosly open a number of pop up windows and so on.
Softomate It also known as:

[Kaspersky]AdWare.Win32.Softomate.y,AdWare.Win32.Softomate.p;
[F-Prot]W32/Adware.JUS;
[Other]Adware.Kuaiso,Adware.Softomate

Softomate Symptoms:

Files:
[%PROFILE_TEMP%]\b116.exe
[%PROGRAM_FILES%]\DosPop Toolbar\dospop.dll
[%PROGRAM_FILES%]\Win Stream plugin\tbu05354\win_stream_plugin.dll
[%PROGRAM_FILES%]\Win Stream plugin\win_stream_plugin.dll
[%SYSTEM%]\Search\tbu02653\wizard.dll
[%SYSTEM%]\Search\wizard.dll
[%PROFILE_TEMP%]\b116.exe
[%PROGRAM_FILES%]\DosPop Toolbar\dospop.dll
[%PROGRAM_FILES%]\Win Stream plugin\tbu05354\win_stream_plugin.dll
[%PROGRAM_FILES%]\Win Stream plugin\win_stream_plugin.dll
[%SYSTEM%]\Search\tbu02653\wizard.dll
[%SYSTEM%]\Search\wizard.dll

Folders:
[%PROGRAM_FILES%]\kuaiso

Registry Keys:
HKEY_CLASSES_ROOT\clsid\{031f120a-bbaf-45d8-b306-375f2a6b9398}
HKEY_CLASSES_ROOT\clsid\{1ce4ee89-2d5c-4361-af3b-d902ab545381}
HKEY_CLASSES_ROOT\clsid\{ca3eb689-8f09-4026-aa10-b9534c691ce0}
HKEY_CLASSES_ROOT\interface\{4897bba6-48d9-468c-8efa-846275d7701b}
HKEY_CLASSES_ROOT\interface\{9ebb289a-2d7b-465b-825f-1530b813e95a}
HKEY_CLASSES_ROOT\interface\{cd5c92ae-97b0-4bc3-ba65-ba0308d543bf}
HKEY_CLASSES_ROOT\toolband.xbtp05231
HKEY_CLASSES_ROOT\toolband.xbtp05231.1
HKEY_CLASSES_ROOT\toolbar3.xbtbpos00
HKEY_CLASSES_ROOT\toolbar3.xbtbpos00.1
HKEY_CLASSES_ROOT\typelib\{4509d3cc-b642-4745-b030-645b79522c6d}
HKEY_CLASSES_ROOT\typelib\{70bb6404-eb9e-4ab5-9bb2-bd9376304521}
HKEY_CLASSES_ROOT\urlsearchhook.toolbarurlsearchhook
HKEY_CLASSES_ROOT\urlsearchhook.toolbarurlsearchhook.1
HKEY_CLASSES_ROOT\xbtb05231.ietoolbar
HKEY_CLASSES_ROOT\xbtb05231.ietoolbar.1
HKEY_CLASSES_ROOT\xbtb05231.xbtb05231
HKEY_CLASSES_ROOT\xbtb05231.xbtb05231.1
HKEY_CURRENT_USER\software\xbtb05231
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{031f120a-bbaf-45d8-b306-375f2a6b9398}
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\xbtb05231.xbtb05231too23423lbar
HKEY_CLASSES_ROOT\CLSID\{BFB5F154-9212-46F3-B547-AC6106030A54}
HKEY_CLASSES_ROOT\clsid\{6d53adb7-6ad5-4a59-bfe4-7b57d2f4aa89}
HKEY_CLASSES_ROOT\clsid\{92f02779-6d88-4958-8ad3-83c12d86adc7}
HKEY_CLASSES_ROOT\clsid\{b52d0b62-0895-47f7-aec7-4d609aa83d08}
HKEY_CLASSES_ROOT\tbsb01425.ietoolbar
HKEY_CLASSES_ROOT\tbsb01425.ietoolbar.1
HKEY_CLASSES_ROOT\toolband.xbtp03129
HKEY_CLASSES_ROOT\toolband.xbtp03129.1
HKEY_CLASSES_ROOT\typelib\{38d87ffe-f20d-47ec-b1e8-885b5677bcba}
HKEY_CLASSES_ROOT\typelib\{3966157b-0703-4c7c-9053-f148ade82c45}
HKEY_CLASSES_ROOT\xbtb03129.ietoolbar
HKEY_CLASSES_ROOT\xbtb03129.ietoolbar.1
HKEY_CLASSES_ROOT\xbtb03129.xbtb03129
HKEY_CLASSES_ROOT\xbtb03129.xbtb03129.1
HKEY_CURRENT_USER\software\xbtb04474

Registry Values:
HKEY_CURRENT_USER\software\microsoft\internet explorer\toolbar\webbrowser
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\toolbar
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar
HKEY_CURRENT_USER\software\microsoft\internet explorer\extensions\cmdmapping
HKEY_CURRENT_USER\software\microsoft\internet explorer\toolbar\shellbrowser
HKEY_CURRENT_USER\software\microsoft\internet explorer\toolbar\webbrowser
HKEY_CURRENT_USER\software\microsoft\internet explorer\toolbar\webbrowser
HKEY_CURRENT_USER\software\microsoft\internet explorer\toolbar\webbrowser
HKEY_CURRENT_USER\software\microsoft\internet explorer\toolbar\webbrowser
HKEY_CURRENT_USER\software\microsoft\internet explorer\toolbar\webbrowser
HKEY_CURRENT_USER\software\softomate\batoolbar
HKEY_CURRENT_USER\software\softomate\batoolbar
HKEY_CURRENT_USER\software\softomate\batoolbar
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\extensions\{6d53adb7-6ad5-4a59-bfe4-7b57d2f4aa89}
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\extensions\{6d53adb7-6ad5-4a59-bfe4-7b57d2f4aa89}
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\extensions\{6d53adb7-6ad5-4a59-bfe4-7b57d2f4aa89}
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\extensions\{6d53adb7-6ad5-4a59-bfe4-7b57d2f4aa89}
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\extensions\{6d53adb7-6ad5-4a59-bfe4-7b57d2f4aa89}
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\extensions\{6d53adb7-6ad5-4a59-bfe4-7b57d2f4aa89}
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\extensions\{6d53adb7-6ad5-4a59-bfe4-7b57d2f4aa89}
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\extensions\{6d53adb7-6ad5-4a59-bfe4-7b57d2f4aa89}
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\toolbar
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\toolbar
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\toolbar
HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\toolbar
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\toolbarbesttoolbarstoolbar.toolbarbesttoolbarstoolbarobjectietoolbar
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\xbtb03129.xbtb03129too23423lbar
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\xbtb03129.xbtb03129too23423lbar

You must clean you computer ASAP !!!
Download Free Trial Version of antivirus software here, to check your computer instantly.

Also Be Aware of the Following Threats:
HidePE Trojan Removal instruction
REG.ShareC Trojan Removal instruction
Rosyba.Server Trojan Symptoms

Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)