Category:Adware
[Kaspersky]AdWare.Win32.TrafficSol.g,AdWare.Win32.TrafficSol.f;
[McAfee]Adware-BitLocker;
[Other]Adware.Win32/AdRotator,Adware.Win32.AdRotator,Adware.Begin2searchAdRotator Detection :
Files:
[%PROFILE_TEMP%]sa4
[%SYSTEM%]adrot-uninst.exe
[%SYSTEM%]adrotate.dll
[%SYSTEM%]adrotate.dll_tobedeleted
[%SYSTEM%]adrotate1.dll
[%SYSTEM%]adspipe.dll
[%SYSTEM%]adssite-remove.exe
[%SYSTEM%]gzmrot-uninst.exe
[%SYSTEM%]gzmrotate.dll
[%SYSTEM%]nsz2E5.dll
[%WINDOWS%]vs.bin
[%PROFILE_TEMP%]sa4
[%SYSTEM%]adrot-uninst.exe
[%SYSTEM%]adrotate.dll
[%SYSTEM%]adrotate.dll_tobedeleted
[%SYSTEM%]adrotate1.dll
[%SYSTEM%]adspipe.dll
[%SYSTEM%]adssite-remove.exe
[%SYSTEM%]gzmrot-uninst.exe
[%SYSTEM%]gzmrotate.dll
[%SYSTEM%]nsz2E5.dll
[%WINDOWS%]vs.bin
Registry Keys:
HKEY_CLASSES_ROOTadrotator.application
HKEY_CLASSES_ROOTadrotator.rotator
HKEY_CLASSES_ROOTadrotator.rotator.1
HKEY_CLASSES_ROOTadspipe.adbot
HKEY_CLASSES_ROOTadspipe.adbot.1
HKEY_CLASSES_ROOTadssite.ad
HKEY_CLASSES_ROOTadssite.ad.1
HKEY_CLASSES_ROOTbannerrotator.rotator
HKEY_CLASSES_ROOTbannerrotator.rotator.1
HKEY_CLASSES_ROOTbannerrotator.rotator2
HKEY_CLASSES_ROOTbannerrotator.rotator2.1
HKEY_CLASSES_ROOTclsid{3e7145b1-ea07-42ce-9299-11df39ff54bd}
HKEY_CLASSES_ROOTclsid{49c96360-9da5-4e3a-8ff4-fad8e79dabf2}
HKEY_CLASSES_ROOTCLSID{BCBCEE7B-2001-4971-B991-EB6E81C96CC5}
HKEY_CLASSES_ROOTclsid{d117a61f-92c3-4450-a0c8-f425b14d4127}
HKEY_CLASSES_ROOTclsid{e954db82-1533-4714-92f2-59c98d5c18cc}
HKEY_CLASSES_ROOTCLSID{F31B3634-12AA-41CA-B021-0685C3B3E4CA}
HKEY_CLASSES_ROOTextrotator.rotator
HKEY_CLASSES_ROOTextrotator.rotator.1
HKEY_CLASSES_ROOTinterface{407fc66d-6224-4aeb-aa79-8aecb1c4d4a1}
HKEY_CLASSES_ROOTinterface{4cde7971-1026-41ae-9818-31a9e5779441}
HKEY_CLASSES_ROOTinterface{81b7f2df-3427-4704-b441-f74a4de94ce1}
HKEY_CLASSES_ROOTinterface{e90e3ac0-be24-4751-b40f-ee40aa742132}
HKEY_CLASSES_ROOTinterface{fea9cb23-100c-4b57-8038-932c9f2fe5fa}
HKEY_CLASSES_ROOTrotator.gizmo2
HKEY_CLASSES_ROOTrotator.gizmo2.1
HKEY_CLASSES_ROOTtypelib{2ed7cd5f-aee2-4b09-82f4-c96eb7c02c87}1.0
HKEY_CLASSES_ROOTtypelib{5dbd13bc-c3f8-4846-ad3e-ba3479a5d3f1}1.0
HKEY_CLASSES_ROOTtypelib{7dabffeb-649f-4077-9e03-202688d77676}
HKEY_CLASSES_ROOTtypelib{defdeada-c390-4eb9-97fa-59d56b21e5d5}
HKEY_CURRENT_USERsoftwaremicrosoftadssite
HKEY_CURRENT_USERsoftwaremicrosoftgizmo
HKEY_CURRENT_USERsoftwaremicrosofthid_layer
HKEY_CURRENT_USERsoftwaremicrosoftwindowscurrentversionextstats{d117a61f-92c3-4450-a0c8-f425b14d4127}
HKEY_LOCAL_MACHINEsoftwaremicrosoftrotator
HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{BCBCEE7B-2001-4971-B991-EB6E81C96CC5}
HKEY_LOCAL_MACHINEsoftwaremicrosoftwindowscurrentversionexplorerbrowser helper objects{e954db82-1533-4714-92f2-59c98d5c18cc}
HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{F31B3634-12AA-41CA-B021-0685C3B3E4CA}
HKEY_LOCAL_MACHINEsoftwaremicrosoftwindowscurrentversionuninstalladrotator
HKEY_LOCAL_MACHINEsoftwaremicrosoftwindowscurrentversionuninstalladssite
HKEY_LOCAL_MACHINEsoftwaremicrosoftwindowscurrentversionuninstallrightonadz
HKEY_LOCAL_MACHINEsoftwareslmss
HKEY_CLASSES_ROOTclsid{36a91cec-6c71-4758-b492-397bfc8e96a2}
HKEY_CLASSES_ROOTclsid{6fa3df44-d34d-4538-9b82-136d43126f30}
HKEY_CLASSES_ROOTclsid{bcbcee7b-2001-4971-b991-eb6e81c96cc5}
HKEY_CLASSES_ROOTclsid{eec590d8-0a3c-4464-bb20-25a4747992f9}
HKEY_CLASSES_ROOTclsid{f31b3634-12aa-41ca-b021-0685c3b3e4ca}
HKEY_CLASSES_ROOTinterface{9692b9e8-ca84-4724-a68f-5f3000738411}
HKEY_CLASSES_ROOTrotator.gizmo
HKEY_CLASSES_ROOTrotator.gizmo.1
HKEY_CLASSES_ROOTtypelib{0445b750-4a14-48d9-a4c7-86d3950ea021}
HKEY_CLASSES_ROOTtypelib{2fc7756c-ad52-414a-85c2-179f3157505b}
HKEY_LOCAL_MACHINEsoftwaremicrosoftwindowscurrentversionexplorerbrowser helper objects49c96360-9da5-4e3a-8ff4-fad8e79dabf2}
HKEY_LOCAL_MACHINEsoftwaremicrosoftwindowscurrentversionexplorerbrowser helper objects{36a91cec-6c71-4758-b492-397bfc8e96a2}
HKEY_LOCAL_MACHINEsoftwaremicrosoftwindowscurrentversionexplorerbrowser helper objects{6fa3df44-d34d-4538-9b82-136d43126f30}
HKEY_LOCAL_MACHINEsoftwaremicrosoftwindowscurrentversionexplorerbrowser helper objects{bcbcee7b-2001-4971-b991-eb6e81c96cc5}
HKEY_LOCAL_MACHINEsoftwaremicrosoftwindowscurrentversionexplorerbrowser helper objects{d117a61f-92c3-4450-a0c8-f425b14d4127}
HKEY_LOCAL_MACHINEsoftwaremicrosoftwindowscurrentversionexplorerbrowser helper objects{f31b3634-12aa-41ca-b021-0685c3b3e4ca}
HKEY_LOCAL_MACHINEsoftwaremicrosoftwindowscurrentversionuninstallblingads
HKEY_LOCAL_MACHINEsoftwaremwsvm
Registry Values:
HKEY_CURRENT_USERsoftwaremicrosoftinternet explorerurlsearchhooks
HKEY_LOCAL_MACHINEsoftwarejawa32
HKEY_LOCAL_MACHINEsoftwarejawa32
HKEY_LOCAL_MACHINEsoftwarejawa32
HKEY_LOCAL_MACHINEsoftwarejawa32
HKEY_LOCAL_MACHINEsoftwaremicrosoftwindowscurrentversionrun
HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun
HKEY_LOCAL_MACHINEsoftwaremicrosoftwindowscurrentversionrun
HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun
HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun
HKEY_LOCAL_MACHINEsoftwaremicrosoftwindowscurrentversionrun
HKEY_LOCAL_MACHINEsoftwaremicrosoftwindowscurrentversionrun
HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun
HKEY_CURRENT_USERsoftwaremicrosoftinternet explorerurlsearchhooks
HKEY_LOCAL_MACHINEsoftwarejawa32
HKEY_LOCAL_MACHINEsoftwarejawa32
HKEY_LOCAL_MACHINEsoftwarejawa32
HKEY_LOCAL_MACHINEsoftwarejawa32
HKEY_LOCAL_MACHINEsoftwaremicrosoftwindowscurrentversionrun
HKEY_LOCAL_MACHINEsoftwaremicrosoftwindowscurrentversionrun
HKEY_LOCAL_MACHINEsoftwaremicrosoftwindowscurrentversionrun
Removing AdRotator:
you can run trial version of ExterminateIt, or remove AdRotator manually..ExterminateIt effectively and automatically removes Trojan Horses, Rootkits, Backdoors, spyware, botnets, keystroke loggers, dialers and other malicious software(malware) from you computer.
Download ExterminateIt! to instantly get rid of AdRotator!
Also Be Aware of the Following Threats:
adremedy.com Tracking Cookie Removal
Ac2 Downloader Removal instruction
adreactor.com Tracking Cookie Information
20Bomber DoS Cleaner
Adchannel Adware Removal
Posts
