I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free DownloadFully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
8LSKPLAY.EXE – Adware MyWebSearch removal
File | MD5 | Virus Alias |
---|---|---|
8LSKPLAY.EXE | f59ea63eaa060998c359fcbfdbc8c7d7 | Adware MyWebSearch |
8LSKPLAY.EXE | f59ea63eaa060998c359fcbfdbc8c7d7 | Trojan Buzus |
8LSKPLAY.EXE size: 55880 bytes
8LSKPLAY.EXE hash: F59EA63EAA060998C359FCBFDBC8C7D7
Created files:
%Program Files%\FileShareFanatic_8l\bar\1.bin\8lauxstb.dll
%Program Files%\FileShareFanatic_8l\bar\1.bin\8lauxstb64.dll
%Program Files%\FileShareFanatic_8l\bar\1.bin\8lbar.dll
%Program Files%\FileShareFanatic_8l\bar\1.bin\8lbarsvc.exe
%Program Files%\FileShareFanatic_8l\bar\1.bin\8lbprtct.dll
%Program Files%\FileShareFanatic_8l\bar\1.bin\8lbrmon.exe
%Program Files%\FileShareFanatic_8l\bar\1.bin\8lbrmon64.exe
%Program Files%\FileShareFanatic_8l\bar\1.bin\8lbrstub.dll
%Program Files%\FileShareFanatic_8l\bar\1.bin\8lbrstub64.dll
%Program Files%\FileShareFanatic_8l\bar\1.bin\8ldatact.dll
%Program Files%\FileShareFanatic_8l\bar\1.bin\8ldlghk.dll
%Program Files%\FileShareFanatic_8l\bar\1.bin\8ldlghk64.dll
%Program Files%\FileShareFanatic_8l\bar\1.bin\8lfeedmg.dll
%Program Files%\FileShareFanatic_8l\bar\1.bin\8lhighin.exe
%Program Files%\FileShareFanatic_8l\bar\1.bin\8lhkstub.dll
%Program Files%\FileShareFanatic_8l\bar\1.bin\8lhtmlmu.dll
%Program Files%\FileShareFanatic_8l\bar\1.bin\8lhttpct.dll
%Program Files%\FileShareFanatic_8l\bar\1.bin\8lidle.dll
%Program Files%\FileShareFanatic_8l\bar\1.bin\8lieovr.dll
%Program Files%\FileShareFanatic_8l\bar\1.bin\8lmedint.exe
%Program Files%\FileShareFanatic_8l\bar\1.bin\8lmlbtn.dll
%Program Files%\FileShareFanatic_8l\bar\1.bin\8lPlugin.dll
%Program Files%\FileShareFanatic_8l\bar\1.bin\8lradio.dll
%Program Files%\FileShareFanatic_8l\bar\1.bin\8lregfft.dll
%Program Files%\FileShareFanatic_8l\bar\1.bin\8lreghk.dll
%Program Files%\FileShareFanatic_8l\bar\1.bin\8lregiet.dll
%Program Files%\FileShareFanatic_8l\bar\1.bin\8lscript.dll
%Program Files%\FileShareFanatic_8l\bar\1.bin\8lskin.dll
%Program Files%\FileShareFanatic_8l\bar\1.bin\8lskplay.exe
%Program Files%\FileShareFanatic_8l\bar\1.bin\8lSrcAs.dll
%Program Files%\FileShareFanatic_8l\bar\1.bin\8lSrchMn.exe
%Program Files%\FileShareFanatic_8l\bar\1.bin\8lsrchmr.dll
%Program Files%\FileShareFanatic_8l\bar\1.bin\8ltpinst.dll
%Program Files%\FileShareFanatic_8l\bar\1.bin\APPINTEGRATOR.EXE
%Program Files%\FileShareFanatic_8l\bar\1.bin\AppIntegrator64.exe
%Program Files%\FileShareFanatic_8l\bar\1.bin\APPINTEGRATORSTUB.DLL
%Program Files%\FileShareFanatic_8l\bar\1.bin\AppIntegratorStub64.dll
%Program Files%\FileShareFanatic_8l\bar\1.bin\ASSISTMONITOR.DLL
%Program Files%\FileShareFanatic_8l\bar\1.bin\ASSISTMONITOR64.DLL
%Program Files%\FileShareFanatic_8l\bar\1.bin\assists\ie_default_search_provider\ARBITER.DLL
%Program Files%\FileShareFanatic_8l\bar\1.bin\assists\ie_default_search_provider\ARBITER64.DLL
%Program Files%\FileShareFanatic_8l\bar\1.bin\assists\ie_default_search_provider\ASSIST.EXE
%Program Files%\FileShareFanatic_8l\bar\1.bin\CREXT.DLL
%Program Files%\FileShareFanatic_8l\bar\1.bin\CrExtP8l.exe
%Program Files%\FileShareFanatic_8l\bar\1.bin\DPNMNGR.DLL
%Program Files%\FileShareFanatic_8l\bar\1.bin\EXEMANAGER.DLL
%Program Files%\FileShareFanatic_8l\bar\1.bin\FF-NativeMessagingDispatcher.dll
%Program Files%\FileShareFanatic_8l\bar\1.bin\Hpg64.dll
%Program Files%\FileShareFanatic_8l\bar\1.bin\NP8lStub.dll
%Program Files%\FileShareFanatic_8l\bar\1.bin\T8EPMSUP.DLL
%Program Files%\FileShareFanatic_8l\bar\1.bin\T8EXTEX.DLL
%Program Files%\FileShareFanatic_8l\bar\1.bin\T8EXTPEX.DLL
%Program Files%\FileShareFanatic_8l\bar\1.bin\T8HTML.DLL
%Program Files%\FileShareFanatic_8l\bar\1.bin\T8RES.DLL
%Program Files%\FileShareFanatic_8l\bar\1.bin\T8TICKER.DLL
%Program Files%\FileShareFanatic_8l\bar\1.bin\TPIMANAGERCONSOLE.EXE
%Program Files%\FileShareFanatic_8l\bar\1.bin\UNIFIEDLOGGING.DLL
%Program Files%\FileShareFanatic_8l\bar\1.bin\VERIFY.DLL
%Temp%\000044a4T8SETUP.EXE
%Temp%\000044a4T8SETUP.EX_
Autostart registry keys:
HKLM\System\CurrentControlSet\Services\FileShareFanatic_8lService\Type: 10000000
HKLM\System\CurrentControlSet\Services\FileShareFanatic_8lService\Start: 02000000
HKLM\System\CurrentControlSet\Services\FileShareFanatic_8lService\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\FileShareFanatic_8lService\DisplayName: FileShareFanaticService
HKLM\System\CurrentControlSet\Services\FileShareFanatic_8lService\ImagePath: %Program Files%\FileShareFanatic_8l\bar\1.bin\8lbarsvc.exe
Detected by UnHackMe:
8LSKPLAY.EXE
Default location: %PROGRAM FILES%\FILESHAREFANATIC_8L\BAR\1.BIN\8LSKPLAY.EXE
Dropper information:
MD5: a8ee096ac88060e181299307109bb0c8
File size: 6072712 bytes