|
|
| ArchiBar tbArch.dll Alert.dll Community Alerts Conduit SanSimera
|
|
ArchiBar - Conduit - SanSimera - remove
HijackThis
O2 - BHO: ArchiBar Toolbar - {24cc1362-11c6-4918-a2c0-b9ee5a563185} - C:\Program Files\ArchiBar\tbArch.dll
O3 - Toolbar: ArchiBar Toolbar - {24cc1362-11c6-4918-a2c0-b9ee5a563185} - C:\Program Files\ArchiBar\tbArch.dll
Combofix
2008-01-21 22:02 . 2008-01-21 22:02 DIR d-------- C:\Programme\Conduit
2008-01-21 22:02 . 2008-01-21 22:02 DIR d-------- C:\Programme\ArchiBar
2008-05-26 18:25 --------- d-----w C:\Programme\Conduit
2008-05-26 18:25 --------- d-----w C:\Programme\**** Soft
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Programme\**** Soft\
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]
"{24CC1362-11C6-4918-A2C0-B9EE5A563185}"= C:\Program Files\ArchiBar\tbArch.dll
Malwarebytes
C:\Programme\Conduit\Community Alerts\Alert.dll (Adware.Agent)
Registry::
[-HKEY_LOCAL_MACHINE\SOFTWARE\Conduit]
[-HKEY_CURRENT_USER\Software\Conduit]
[-HKEY_CURRENT_USER\Software\SanSimera]
[-HKEY_LOCAL_MACHINE\SOFTWARE\SanSimera]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3F321D52-8179-4905-AB67-E9F87171A8CB}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3c471948-f874-49f5-b338-4f214a2ee0b1}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{24cc1362-11c6-4918-a2c0-b9ee5a563185}]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]
"{24CC1362-11C6-4918-A2C0-B9EE5A563185}"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{24CC1362-11C6-4918-A2C0-B9EE5A563185}"=-
"{3f321d52-8179-4905-ab67-e9f87171a8cb}"=-
[-HKEY_CLASSES_ROOT\clsid\{24cc1362-11c6-4918-a2c0-b9ee5a563185}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SanSimera Toolbar]
Folder::
C:\Programme\Conduit
C:\Programme\ArchiBar
C:\Programme\SanSimera
|
http://www.siteadvisor.com/sites/sansimera.gr/downloads/14338048/
|
|
