Solved! Use 4JBARSVC.EXE (Adware MyWebSearch) Removal Guide

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

4JBARSVC.EXE – Adware MyWebSearch removal

FileMD5Virus Alias
4JBARSVC.EXE 54d6bc524f1fb026d6eb569581e38885 Adware MyWebSearch

4JBARSVC.EXE size: 88648 bytes
4JBARSVC.EXE hash: 54D6BC524F1FB026D6EB569581E38885

Created files:

%Program Files%\RadioRage_4j\bar\1.bin\4jauxstb.dll
%Program Files%\RadioRage_4j\bar\1.bin\4jauxstb64.dll
%Program Files%\RadioRage_4j\bar\1.bin\4jbar.dll
%Program Files%\RadioRage_4j\bar\1.bin\4jbarsvc.exe
%Program Files%\RadioRage_4j\bar\1.bin\4jbprtct.dll
%Program Files%\RadioRage_4j\bar\1.bin\4jbrmon.exe
%Program Files%\RadioRage_4j\bar\1.bin\4jbrmon64.exe
%Program Files%\RadioRage_4j\bar\1.bin\4jbrstub.dll
%Program Files%\RadioRage_4j\bar\1.bin\4jbrstub64.dll
%Program Files%\RadioRage_4j\bar\1.bin\4jdatact.dll
%Program Files%\RadioRage_4j\bar\1.bin\4jdlghk.dll
%Program Files%\RadioRage_4j\bar\1.bin\4jdlghk64.dll
%Program Files%\RadioRage_4j\bar\1.bin\4jfeedmg.dll
%Program Files%\RadioRage_4j\bar\1.bin\4jhighin.exe
%Program Files%\RadioRage_4j\bar\1.bin\4jhkstub.dll
%Program Files%\RadioRage_4j\bar\1.bin\4jhtmlmu.dll
%Program Files%\RadioRage_4j\bar\1.bin\4jhttpct.dll
%Program Files%\RadioRage_4j\bar\1.bin\4jidle.dll
%Program Files%\RadioRage_4j\bar\1.bin\4jieovr.dll
%Program Files%\RadioRage_4j\bar\1.bin\4jmedint.exe
%Program Files%\RadioRage_4j\bar\1.bin\4jmlbtn.dll
%Program Files%\RadioRage_4j\bar\1.bin\4jPlugin.dll
%Program Files%\RadioRage_4j\bar\1.bin\4jradio.dll
%Program Files%\RadioRage_4j\bar\1.bin\4jregfft.dll
%Program Files%\RadioRage_4j\bar\1.bin\4jreghk.dll
%Program Files%\RadioRage_4j\bar\1.bin\4jregiet.dll
%Program Files%\RadioRage_4j\bar\1.bin\4jscript.dll
%Program Files%\RadioRage_4j\bar\1.bin\4jskin.dll
%Program Files%\RadioRage_4j\bar\1.bin\4jskplay.exe
%Program Files%\RadioRage_4j\bar\1.bin\4jSrcAs.dll
%Program Files%\RadioRage_4j\bar\1.bin\4jSrchMn.exe
%Program Files%\RadioRage_4j\bar\1.bin\4jsrchmr.dll
%Program Files%\RadioRage_4j\bar\1.bin\4jtpinst.dll
%Program Files%\RadioRage_4j\bar\1.bin\APPINTEGRATOR.EXE
%Program Files%\RadioRage_4j\bar\1.bin\AppIntegrator64.exe
%Program Files%\RadioRage_4j\bar\1.bin\APPINTEGRATORSTUB.DLL
%Program Files%\RadioRage_4j\bar\1.bin\AppIntegratorStub64.dll
%Program Files%\RadioRage_4j\bar\1.bin\ASSISTMONITOR.DLL
%Program Files%\RadioRage_4j\bar\1.bin\ASSISTMONITOR64.DLL
%Program Files%\RadioRage_4j\bar\1.bin\assists\ie_default_search_provider\ARBITER.DLL
%Program Files%\RadioRage_4j\bar\1.bin\assists\ie_default_search_provider\ARBITER64.DLL
%Program Files%\RadioRage_4j\bar\1.bin\assists\ie_default_search_provider\ASSIST.EXE
%Program Files%\RadioRage_4j\bar\1.bin\CREXT.DLL
%Program Files%\RadioRage_4j\bar\1.bin\CrExtP4j.exe
%Program Files%\RadioRage_4j\bar\1.bin\DPNMNGR.DLL
%Program Files%\RadioRage_4j\bar\1.bin\EXEMANAGER.DLL
%Program Files%\RadioRage_4j\bar\1.bin\FF-NativeMessagingDispatcher.dll
%Program Files%\RadioRage_4j\bar\1.bin\Hpg64.dll
%Program Files%\RadioRage_4j\bar\1.bin\NP4jStub.dll
%Program Files%\RadioRage_4j\bar\1.bin\T8EPMSUP.DLL
%Program Files%\RadioRage_4j\bar\1.bin\T8EXTEX.DLL
%Program Files%\RadioRage_4j\bar\1.bin\T8EXTPEX.DLL
%Program Files%\RadioRage_4j\bar\1.bin\T8HTML.DLL
%Program Files%\RadioRage_4j\bar\1.bin\T8RES.DLL
%Program Files%\RadioRage_4j\bar\1.bin\T8TICKER.DLL
%Program Files%\RadioRage_4j\bar\1.bin\TPIMANAGERCONSOLE.EXE
%Program Files%\RadioRage_4j\bar\1.bin\UNIFIEDLOGGING.DLL
%Program Files%\RadioRage_4j\bar\1.bin\VERIFY.DLL
%Temp%\0000158cT8SETUP.EXE
%Temp%\0000158cT8SETUP.EX_

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\RadioRage_4jService\Type: 10000000
HKLM\System\CurrentControlSet\Services\RadioRage_4jService\Start: 02000000
HKLM\System\CurrentControlSet\Services\RadioRage_4jService\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\RadioRage_4jService\DisplayName: RadioRageService
HKLM\System\CurrentControlSet\Services\RadioRage_4jService\ImagePath: %Program Files%\RadioRage_4j\bar\1.bin\4jbarsvc.exe

Detected by UnHackMe:

4JBARSVC.EXE
Default location: %PROGRAM FILES%\RADIORAGE_4J\BAR\1.BIN\4JBARSVC.EXE

Dropper information:
MD5: 0a5205b733af6d164212bba1280d7ba7
File size: 6072704 bytes

Leave a Reply