Updated: February 13, 2007 11:44:42 AM
Type: Adware
Publisher: HDT, Inc
Risk Impact: High
File Names:
iebar22.0.dll
barhelp22.0.dll
Systems Affected: Windows 2000, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows XP
When Adware.Iebar runs, it does the following:
- Opens the browser to display a page at iebar.t2t2.com domain.
- Creates the following registry entries:
HKEY_CLASSES_ROOT\CLSID\{56A7DC70-E102-4408-A34A-AE06FEF01586}
HKEY_CLASSES_ROOT\CLSID\{B1D147E7-873E-4909-8127-695D9BB78728}
HKEY_CLASSES_ROOT\DownloadBHO.T2BHO
HKEY_CLASSES_ROOT\DownloadBHO.T2BHO.1
HKEY_CLASSES_ROOT\HDT_BAR.HDT_BARObj
HKEY_CLASSES_ROOT\HDT_BAR.HDT_BARObj.1
HKEY_CLASSES_ROOT\Interface\{691CC615-CD3F-41FF-920D-60769D3DCF5B}
HKEY_CLASSES_ROOT\Interface\{9AAABFE1-22A9-4E0D-8F4A-48B9696A199B}
HKEY_CLASSES_ROOT\TypeLib\{1F77F67E-BD08-4932-AF5A-15FD532EEDB1}
HKEY_CLASSES_ROOT\TypeLib\{E35306D7-B44C-4530-A2CE-94C60F8CC4DC}
HKEY_CURRENT_USER\software\HDT\HDTBar
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B1D147E7-873E-4909-8127-695D9BB78728}
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\{56A7DC70-E102-4408-A34A-AE06FEF01586}
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\HDTBar
Technorati
Digg
Delicious
Reddit
StumbleUpon
Yahoo Buzz
Twitter
Facebook
Newsvine
