I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free Download Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
5KSRCHMN.EXE – Adware MyWebSearch removal
| File | MD5 | Virus Alias |
|---|---|---|
| 5KSRCHMN.EXE | 466af3fbfdd028b3d90238425c367b7e | Adware MyWebSearch |
| 5KSRCHMN.EXE | 466af3fbfdd028b3d90238425c367b7e | Trojan Buzus |
5KSRCHMN.EXE size: 55368 bytes
5KSRCHMN.EXE hash: 466AF3FBFDD028B3D90238425C367B7E
Created files:
%Program Files%\iWon_5k\bar\1.bin\5kauxstb.dll
%Program Files%\iWon_5k\bar\1.bin\5kauxstb64.dll
%Program Files%\iWon_5k\bar\1.bin\5kbar.dll
%Program Files%\iWon_5k\bar\1.bin\5kbarsvc.exe
%Program Files%\iWon_5k\bar\1.bin\5kbprtct.dll
%Program Files%\iWon_5k\bar\1.bin\5kbrmon.exe
%Program Files%\iWon_5k\bar\1.bin\5kbrmon64.exe
%Program Files%\iWon_5k\bar\1.bin\5kbrstub.dll
%Program Files%\iWon_5k\bar\1.bin\5kbrstub64.dll
%Program Files%\iWon_5k\bar\1.bin\5kdatact.dll
%Program Files%\iWon_5k\bar\1.bin\5kdlghk.dll
%Program Files%\iWon_5k\bar\1.bin\5kdlghk64.dll
%Program Files%\iWon_5k\bar\1.bin\5kfeedmg.dll
%Program Files%\iWon_5k\bar\1.bin\5khighin.exe
%Program Files%\iWon_5k\bar\1.bin\5khkstub.dll
%Program Files%\iWon_5k\bar\1.bin\5khtmlmu.dll
%Program Files%\iWon_5k\bar\1.bin\5khttpct.dll
%Program Files%\iWon_5k\bar\1.bin\5kidle.dll
%Program Files%\iWon_5k\bar\1.bin\5kieovr.dll
%Program Files%\iWon_5k\bar\1.bin\5kmedint.exe
%Program Files%\iWon_5k\bar\1.bin\5kmlbtn.dll
%Program Files%\iWon_5k\bar\1.bin\5kPlugin.dll
%Program Files%\iWon_5k\bar\1.bin\5kradio.dll
%Program Files%\iWon_5k\bar\1.bin\5kregfft.dll
%Program Files%\iWon_5k\bar\1.bin\5kreghk.dll
%Program Files%\iWon_5k\bar\1.bin\5kregiet.dll
%Program Files%\iWon_5k\bar\1.bin\5kscript.dll
%Program Files%\iWon_5k\bar\1.bin\5kskin.dll
%Program Files%\iWon_5k\bar\1.bin\5kskplay.exe
%Program Files%\iWon_5k\bar\1.bin\5kSrcAs.dll
%Program Files%\iWon_5k\bar\1.bin\5kSrchMn.exe
%Program Files%\iWon_5k\bar\1.bin\5ksrchmr.dll
%Program Files%\iWon_5k\bar\1.bin\5ktpinst.dll
%Program Files%\iWon_5k\bar\1.bin\APPINTEGRATOR.EXE
%Program Files%\iWon_5k\bar\1.bin\AppIntegrator64.exe
%Program Files%\iWon_5k\bar\1.bin\APPINTEGRATORSTUB.DLL
%Program Files%\iWon_5k\bar\1.bin\AppIntegratorStub64.dll
%Program Files%\iWon_5k\bar\1.bin\ASSISTMONITOR.DLL
%Program Files%\iWon_5k\bar\1.bin\ASSISTMONITOR64.DLL
%Program Files%\iWon_5k\bar\1.bin\assists\ie_default_search_provider\ARBITER.DLL
%Program Files%\iWon_5k\bar\1.bin\assists\ie_default_search_provider\ARBITER64.DLL
%Program Files%\iWon_5k\bar\1.bin\assists\ie_default_search_provider\ASSIST.EXE
%Program Files%\iWon_5k\bar\1.bin\CREXT.DLL
%Program Files%\iWon_5k\bar\1.bin\CrExtP5k.exe
%Program Files%\iWon_5k\bar\1.bin\DPNMNGR.DLL
%Program Files%\iWon_5k\bar\1.bin\EXEMANAGER.DLL
%Program Files%\iWon_5k\bar\1.bin\FF-NativeMessagingDispatcher.dll
%Program Files%\iWon_5k\bar\1.bin\Hpg64.dll
%Program Files%\iWon_5k\bar\1.bin\NP5kStub.dll
%Program Files%\iWon_5k\bar\1.bin\T8EPMSUP.DLL
%Program Files%\iWon_5k\bar\1.bin\T8EXTEX.DLL
%Program Files%\iWon_5k\bar\1.bin\T8EXTPEX.DLL
%Program Files%\iWon_5k\bar\1.bin\T8HTML.DLL
%Program Files%\iWon_5k\bar\1.bin\T8RES.DLL
%Program Files%\iWon_5k\bar\1.bin\T8TICKER.DLL
%Program Files%\iWon_5k\bar\1.bin\TPIMANAGERCONSOLE.EXE
%Program Files%\iWon_5k\bar\1.bin\UNIFIEDLOGGING.DLL
%Program Files%\iWon_5k\bar\1.bin\VERIFY.DLL
%Temp%\00006dc0T8SETUP.EXE
%Temp%\00006dc0T8SETUP.EX_
Autostart registry keys:
HKLM\System\CurrentControlSet\Services\iWon_5kService\Type: 10000000
HKLM\System\CurrentControlSet\Services\iWon_5kService\Start: 02000000
HKLM\System\CurrentControlSet\Services\iWon_5kService\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\iWon_5kService\DisplayName: iWonService
HKLM\System\CurrentControlSet\Services\iWon_5kService\ImagePath: %Program Files%\iWon_5k\bar\1.bin\5kbarsvc.exe
Detected by UnHackMe:
5KSRCHMN.EXE
Default location: %PROGRAM FILES%\IWON_5K\BAR\1.BIN\5KSRCHMN.EXE
Dropper information:
MD5: 2bc9f9f26591eea75e93a2b6c4786604
File size: 6072688 bytes