UnicodeFile_3.bin – Adware Baidu Bar

Adware No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

UnicodeFile_3.bin – Adware Baidu Bar removal

FileVirus Alias
UnicodeFile_3.bin Adware Baidu Bar

Created files:

%Program Files%\Baidu\AddressBar.dll – Adware Baidu Bar
%Program Files%\Baidu\ASBarBroker.exe – Adware Baidu Bar
%Program Files%\Baidu\Toolbar\BaiduBarX.dll – Adware Baidu Bar
%Program Files%\Baidu\Toolbar\BaiduBarX_Tmp\BaiduBarX.dll – Adware Baidu Bar
%Program Files%\Baidu\Toolbar\BaiduBarX_Tmp\BarBroker.exe – Adware Baidu Bar
%Program Files%\Baidu\Toolbar\BaiduBarX_Tmp\rc.dll – Adware Baidu Bar
%Program Files%\Baidu\Toolbar\BarBroker.exe – Adware Baidu Bar
%Program Files%\Baidu\Toolbar\rc.dll – Adware Baidu Bar
%Common Startmenu%\Programs\Fixed_Directory_Name\UnicodeFile.bin – Adware Baidu Bar
%Common Startmenu%\Programs\Fixed_Directory_Name\UnicodeFile_1.bin – Adware Baidu Bar
%Common Startmenu%\Programs\Fixed_Directory_Name\UnicodeFile_2.bin – Adware Baidu Bar
%Common Startmenu%\Programs\Fixed_Directory_Name\UnicodeFile_3.bin – Adware Baidu Bar
%Common Startmenu%\Programs\Fixed_Directory_Name\UnicodeFile_4.bin – Adware Baidu Bar
%Common Startmenu%\Programs\Fixed_Directory_Name\UnicodeFile_5.bin – Adware Baidu Bar
%Common Startmenu%\Programs\Fixed_Directory_Name\UnicodeFile_6.bin – Adware Baidu Bar
%Common Startmenu%\Programs\Fixed_Directory_Name\UnicodeFile_7.bin – Adware Baidu Bar
%Common Startmenu%\Programs\Fixed_Directory_Name\UnicodeFile_8.bin – Adware Baidu Bar
%Common Startmenu%\Programs\Fixed_Directory_Name\UnicodeFile_9.bin – Adware Baidu Bar

Autostart registry keys:

HKLM\Software\Classes\CLSID\{23A2B2B7-21DE-4B88-AFBA-5A918ABBF463}\InprocServer32 : %Program Files%\Baidu\Toolbar\BaiduBarX.dll
HKLM\Software\Classes\CLSID\{77FEF28E-EB96-44FF-B511-3185DEA48697}\InprocServer32 : %Program Files%\Baidu\Toolbar\BaiduBarX.dll
HKLM\Software\Classes\CLSID\{77FEF28E-EB96-44FF-B511-3185DEA48697}\InprocServer32\ThreadingModel: both
HKLM\Software\Classes\CLSID\{A7F05EE4-0426-454F-8013-C41E3596E9E9}\InprocServer32 : %Program Files%\Baidu\Toolbar\BaiduBarX.dll
HKLM\Software\Classes\CLSID\{B580CF65-E151-49C3-B73F-70B13FCA8E86}\InprocServer32 : %Program Files%\Baidu\Toolbar\BaiduBarX.dll
HKLM\Software\Classes\CLSID\{E5D5D4A1-17F0-41D7-B1C6-0979F91E6F46}\InprocServer32 : %Program Files%\Baidu\Toolbar\BaiduBarX.dll

Detected by UnHackMe:

UnicodeFile_3.bin
Default location: %Common Startmenu%\Programs\Fixed_Directory_Name\UnicodeFile_3.bin

Dropper information:
SHA256: a7f98984080de15e2c6ad2782fc7de83dbc4dcd3beb168458b95c7024348448f
SHA1: 4d9bf35c7e64c7d2e531aeae0cb9906ff9e7cf9d
MD5: 5c33e7f9153d99418940de19143790e6
File size: 1344792 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images