| OBJECT NAME | GUID | STATUS | FILENAME | DESCRIPTION |
|---|
| Flash Module | {87C0BA52-F363-4419-8AC1-D7270A668687} | X BHO | btask.dll, ktask.dll | Trojan downloader, a variant of Win32.Trojan-Spy.Banker.EGJ |
| e-zshopper | {3D782BB3-F2A5-11D3-BF4C-000000000000} | X TB | BarLcher.dll | ActivShop/e-zshopper adware |
| Browster BrwIEConnector | {908A31E8-2A6E-4736-8E8A-AAF00C4AE38F} | L BHO | Browster.dll, brobeta.dll | Browster |
| Bayeast Support Toolbar | {1CBF31FC-3C23-4BA6-AF16-2CEC501BD837} | O TB | bayeast_support.dll, BAYEAS~1.DLL | Unidentified browser plugin - a Softomate Toolbar variant - should you have any information about this application, such as its exact purpose and whether you did or did not install it wittingly, do email us - if you actually have a copy of the file, please attach it to your email for analysis. Thanks! |
| e-kort Browser Helper Object | {1C900459-DEEF-4aa9-B260-1EF0F0C70A8D} | O BHO | Bhoekort.dll | nCipher nShield
|
| IEBrowseHelp Class | {B4496A4E-1EE2-11D5-AC63-0010A4D17343} | L BHO | BHO.dll, epiIESink.dll | Epiance_Epiplex Browser Plugin |
| BallBHO | {869BA2BD-C3B0-45CF-B71E-49D0A2EB9679} | X BHO | ball.dll | Installed without notice. A Rabio "Search Enhancer" adware variant. |
| XBTP05119 | {F0871DB4-A2C3-4266-A463-BA2BAD7CE6B2} | X BHO | bysoo.dll | Bysoo Toolbar, a Softomate Toolbar variant of Chinese origin hailing from bysoo.com and detected by AntiVir as ADSPY/BysooToolba.A |
| SMARTiD Browser Helper Object | {5A3A84C5-AA0C-4DB9-AD96-CEE30A496EB6} | L BHO | bho.dll | SmartIdentity |
| Webcontroler | {2CA0644B-0EAD-4BC0-980D-246588509323} | ? TB | BARRAW~1.DLL | Unidentified Toolbar - should you have any information about this application, such as its exact purpose and whether you did or did not install it wittingly, do email us - if you actually have a copy of the file, please attach it to your email for analysis. Thanks! |
| (no name) | {********-****-****-****-************} | X SH | barint.dll | WareOut malware component, using a random Class ID |
| &BurstClick bar | {D9FE2473-9F67-4104-AA10-19FBE54E0C1B} | L TB | BURSTC~1.DLL, burstclick.dll | BurstClick Internet Explorer Toolbar |
| (no name) | {********-****-****-****-************} | X SH | BoundRec.dll | WareOut malware component, using a random Class ID |
| BarSearch Band | {11AA02A1-7908-40AC-8CCD-5DC7B28C14F6} | X EB | bssoft.dll | Parasite of Korean origin detected as Adware.Barsearch - see here |
| bbmao Toolbar | {6AE02E1C-8859-4F57-9097-5A55A56A4CAF} | X TB | bbmao_tb_v1_0_pd1002.dll, BBMAO_~1.DLL | Bbmao Toolbar, parasite of Chinese origin - see here |
| BHOster Class | {F64C2181-0062-4ED8-B6B0-72BB47BA711C} | X BHO | Boos.dll | Parasite of Korean origin detected as W-32/Adware.BHO.ibooster.B |
| Flash Module | {669CFA6D-450B-4d88-A9D7-D2371E845370} | X BHO | btaskv.dll, ktaskr.dll | Trojan downloader, a variant of Win32.Trojan-Spy.Banker.EGJ |
| Booh ocx | {A01A9C47-9262-18D4-A359-104BF6D487F3} | X BHO | Booh.ocx | Unidentified parasite, file located in a "%UserProfile%\Application Data\hoob" folder - should you have any information about this application, such as for example the site where it was downloaded or installed, do email us - if you actually have a copy of the file, please attach it to your email for analysis. Thanks! |
| Burn4Free Toolbar Helper | {F8E5CA21-C27B-43E7-B2BE-4CA93C9F9A1F} | O BHO | Burn4Free_Toolbar.dll | Burn4Free toolbar - potentially unwanted, see this writeup |
| Editor plugin | {9916AF04-5F23-4ae8-A2B1-1C4FF50B2A51} | X BHO | bulgan.dll | Variant of the Infostealer.Banker.D trojan |
| BigPond Wireless Broadband 2.0 Auto Dial | {DB92EC3F-697D-4C3B-9A3B-3ABBD23D4A85} | L BHO | bpwbb2ad.dll | Telstra BigPond ISP software |
| (no name) | {FCADDC14-BD46-408A-9842-CDBE1C6D37EB} | X BHO | bho2.dll | "IEHelper adware" - detected by Kaspersky antivirus as AdWare.Win32.BHO.as |
| Botnet | {A2833482-B023-4C65-B09D-EE47A4E8CC56} | X BHO | botnet1.dll, $BN**.dll (* = digit) | CoolWebSearch parasite variant, also detected as Troj/Small-QK |
| (no name) | {8F776B2A-72DF-40C1-BD69-EDB642A706D7} | X BHO | bho.dll | Parasite of Chinese origin, file located in a randomly named 6 char or digit %SysDir% folder and detected as Troj/Cashgra-C - also see here |
| Burn4Free Toolbar | {55FAF0F2-44D4-425F-B5F5-6B275B621EAB} | O TB | Burn4Free_Toolbar.dll | Burn4Free toolbar - potentially unwanted, see this writeup |
| &Address | {01E04581-4EEE-11D0-BFE9-00AA005B4383} | L TB | browseui.dll | Internet Explorer Address Bar |
| Internet Speed Monitor | {1ED6A320-8AF3-4f06-868A-9BA95585712E} | X EB | BndDrive7.dll | "Hyperlinks Rotator" aka ISMonitor adware hailing from zredirector.com - installs a "Internet Speed Monitor" sidebar - detected by Kaspersky antivirus as AdWare.Win32.AdBand.a |
| EyeOnIE Class | {0E43571F-3477-4A6A-8505-19BB75A970D4} | X BHO | BHOA.DLL, BHOB.DLL, BhoTest1.dll | Parasite of Chinese origin, a variant of Win-Spyware/Agent.32768.L |
| Msyst Class | {D98F0B8E-DD0A-424b-B29F-B023F0C840F1} | X BHO | BdSvc3.dll | Parasite of Korean origin detected as Win-Adware/Kwsearch |
| {5F5564AC-DE7A-4DCD-9296-32E71A35DCB7} | X BHO | bptlb.dll | BrowserPal adware |
| QXK Olive | {82852436-F845-4519-A0CC-B2A8D54C3704} | X BHO | boqnrwdmslm.dll | Adware downloader causing false spyware warnings and connecting to rogue "security sites", a member of the Trojan-Downloader.Zlob.Media-Codec aka NewMediaCodec malware family |
| Flash Module | {3AAB6591-87DD-424b-AFF2-4685EBF6A5EF} | X BHO | bodrowis.dll, alivefor.dll | Password stealer, detected by Kaspersky antivirus as Trojan-Spy.Win32.Banker.fse |
| BBS &Toolbar | {78D663D2-97F1-4A09-BD41-B75CB6989211} | L TB | BbsBar2.dll | BBS Toolbar |
| Bonusbar | {6AE02E1C-8859-4F57-9097-5A55A56A4CAF} | O TB | bonusbar.dll | BonusBar |
| (no name) | {********-****-****-****-************} | X SH | bingo9.dll | WareOut malware component |
| Bluewin Toolbar | {4E7BD74F-2B8D-469E-DCF7-E869A199B87D} | O BHO TB | bluewin.dll | Bluewin |
| (no name) | {0019C3E2-DD48-4A6D-ABCD-8D32436313D9} | X BHO | bxsx5.dll | BookedSpace adware variant |
| BillingOrchard | {B2940BC7-C6D7-4BCF-A26D-0FDAC4EA90EB} | L TB | billingorchard.dll | BillingOrchard Toolbar |
| &BOS Toolbar | {CC9853D8-4772-4F51-ABC5-7225CBE342A5} | ? TB | BOSTOO~1.DLL | Internet Explorer BOS Toolbar - should you have any information about this application, such as its exact purpose and whether you did or did not install it wittingly, do email us - if you actually have a copy of the file, please attach it to your email for analysis. Thanks! |
| [full path to file] | {455875B5-93F3-429D-FF34-660B206D897C} | X BHO | bensorty03.dll, ben*******.dll (* = random char or digit) | Variant of the Troj/Dloader-ZQ downloader trojan |
| BearShare MediaBar | {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} | O TB SH | BSMediaBar.dll | BearShare MediaBar |
| OFK System | {E2D31F0C-78A4-4713-A7E4-6F4A50525D4B} | X BHO | blopenvtrm.dll | Zlob downloader variant, a member of the SmitFraud malware family |
| Telephony Toolbar Services | {431A60E6-675F-4b9f-B3F0-66E0FECC8B34} | L BHO | BW_Assistant_Enterprise_IE_S.dll, miPA_Corp_IE_S.dll, MIPA_C~*.DLL | Broadsoft Telephony Toolbar - also read here |
| BioMed Central Bar | {DA871890-C14D-11D5-97A1-0090279BA74C} | L TB | BMCBAND.DLL | BioMed Central Toolbar |
| Microsoft Explorer | {3657900C-451D-8645-8CBA-C735910FA104} | X BHO | brwctl32.dll | Backdoor trojan, detected by Kaspersky antivirus and by CounterSpy as Trojan-Spy.Win32.Agent.ir |
| (no name) | {********-****-****-****-************} | X SH | bhoserv.dll | WareOut malware component, using a random Class ID |
| Aƒhƒoƒvƒ‰ƒXƒ | {1290E2BD-879B-4425-93A5-1FB7873354B5} | O TB | BobSys.dll | AdvPlus Toolbar |
| BaiduHlpr Class | {00C104F7-0F5C-470C-ABCF-A5B2E70752F1} | X BHO | baidu.dll | Parasite of Chinese origin hailing from baidu.com - a BaiduBar adware component |
| BHO.clsUrlSearch | {FE97B187-C637-4220-B82C-1307B89B5B83} | X BHO | bho2.dll | Unidentified parasite - should you have any information about this application, do email us - if you actually have a copy of the file, please attach it to your email for analysis. Thanks! |
| BrowsingTool | {D0661233-42D4-F7F1-80E1-8A9E0E99E71D} | X BHO | BrowsingTool-1.dll, BrowsingTool-2.dll, BrowsingTool-3.dll | PlayMP3Z.biz adware variant |
| baiduba Class | {CE7C3CF0-4B15-11D1-ABED-709549C18686} | X BHO | baiduba.dll | Search hijacker of Chinese origin, detected by AntiVir antivirus as ADSPY/Baidubar |
| BrightnetToolbar.DynamicBand | {9B7038A7-5A9A-431A-81D8-21365DAD8513} | O TB | BrightnetToolbar.dll | BrightNet_Toolbar - also see here |
| bg | {7BDAF75A-0D6F-4F50-AFE9-333D08DF4005} | X BHO | BGooBHO.dll, baigoobh.dll | Baigoo "trackware" |
| (no name) | {C008D693-2421-4A5C-824A-37481B033372} | X BHO | backup.dll | Troj/Iwebho-A trojan |
| Bytemobile BHO | {C68AE9C0-0909-4DDC-B661-C1AFB9F5AE53} | L BHO | bmbho.dll | Bytemobile Content Filtering software
|
