I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free Download Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
Adware Yontoo
Also known as: Trojan Generic
SHA256: 8e0059f8b4215abbfa85beb13cddaf6263c021abcfb9aacd2593bcf2a9e513ae
SHA1: aaba5c806ef35d955871513eb8bdc67350e3dad4
MD5: 30aca17fa9dc787d6430e1146bacee2a
File size: 1054736 bytes
Created files:
%Program Files%\Yontoo\OptChrome.exe – Adware Yontoo
%Program Files%\Yontoo\YontooIEClient.dll – Adware Yontoo
%Common AppData%\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\Setup.exe – Adware Yontoo
%Common AppData%\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\_Setup.dll – Adware Yontoo
%Common AppData%\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\_Setupx.dll – Adware Yontoo
%Temp%\30ACA17FA9DC787D6430E1146BACEE2A-0A10.exe – Adware Yontoo
%Temp%\B943A334\7za.exe – Adware Yontoo
%Temp%\B943A334\sqlite3.exe – Adware Yontoo
%Temp%\B943A334\x64\regsvr32.exe – Adware Yontoo
%Temp%\B943A334\x86\regsvr32.exe – Adware Yontoo
%Temp%\B943A334\YontooIEClient.dll – Adware Yontoo
%Temp%\B943A334\_Setup.dll – Adware Yontoo
%Temp%\B943A334\_Setupx.dll – Adware Yontoo
Adware Yontoo created autostart registry keys:
HKLM\Software\Classes\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}\InProcServer32 : %Program Files%\Yontoo\YontooIEClient.dll
HKLM\Software\Classes\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}\InProcServer32\ThreadingModel: Both
HKLM\Software\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}\InprocServer32 : %Program Files%\Yontoo\YontooIEClient.dll
HKLM\Software\Classes\CLSID\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}\InprocServer32 : %Program Files%\Yontoo\YontooIEClient.dll