Threat Information for "Toolbar888"

Removal Top

StopSign will automatically remove this infection with a paid membership.

Summary Top
  • Name: Toolbar888
  • Aliases:
  • Date Discovered: 2006-04-18
  • Protection Added: 2006-05-10
Description Top 
-- Ease of Removal

1: Creates new registry entries with consistent data
2: Consistently named
3: Consistent file contents
4: Runs as a BHO or shell extension

-- Damage/Intrusion/Annoyance

1: Displays a toolbar [SPYWARE ONLY]
2: Autoruns at startup without an option to be disabled

-- Propagation/Saturation

1: Bundled with third-party applications [SPYWARE ONLY]
2: Creates new files
Technical Details Top
  • Added Directory/File:
    FilePath: %PROGRAMFILESDIR%\Toolbar888\Cache
  • Added Directory/File:
    FilePath: %PROGRAMFILESDIR%\Toolbar888
  • Added Directory/File:
    FilePath: %PROGRAMFILESDIR%\Toolbar888\basis.xml
  • Added Directory/File:
    FilePath: %PROGRAMFILESDIR%\Toolbar888\ToolBar888.dll
  • Added Directory/File:
    FilePath: %PROGRAMFILESDIR%\Toolbar888\logo.bmp
  • Added Directory/File:
    FilePath: %CACHE%\drdata*.avi
  • Added Directory/File:
    FilePath: %PROGRAMFILESDIR%\Toolbar888\icons.bmp
  • Added Directory/File:
    FilePath: %TEMPDIR%\id.id
  • Added Directory/File:
    FilePath: %PROGRAMFILESDIR%\Toolbar888\basis.xmlold
  • Added Directory/File:
    FilePath: %PROGRAMFILESDIR%\Toolbar888\version.txt
  • Added Directory/File:
    FilePath: %PROGRAMFILESDIR%\Toolbar888\ToolBar888.crc
  • Added Directory/File:
    FilePath: %PROGRAMFILESDIR%\Toolbar888\installed.html
  • Added Directory/File:
    FilePath: %CACHE%\tbfp*.avi
  • Added Registry Key:
    Key: HKLM\SOFTWARE\Classes\XBTB04715.IEToolbar.1
  • Added Registry Key:
    Key: HKLM\SOFTWARE\Classes\ToolBand.XBTB04715.1
  • Added Registry Key:
    Key: HKLM\SOFTWARE\Classes\TypeLib\{75E46EE7-404B-48EC-9326-C654F21F65BF}
  • Added Registry Key:
    Key: HKCU\Software\XBTB04715
  • Added Registry Key:
    Key: HKLM\SOFTWARE\Classes\CLSID\{77FBF9B8-1D37-4FF2-9CED-192D8E3ABA6F}
  • Added Registry Key:
    Key: HKLM\SOFTWARE\Classes\XBTB04715.XBTB04715
  • Added Registry Key:
    Key: HKLM\SOFTWARE\Classes\XBTB04715.IEToolbar
  • Added Registry Key:
    Key: HKLM\%BHOREG%\{A8B0BDED-64A5-495b-97DA-42C0301E229B}
  • Added Registry Key:
    Key: HKLM\SOFTWARE\Classes\ToolBand.XBTB04715
  • Added Registry Key:
    Key: HKLM\SOFTWARE\Classes\CLSID\{A8B0BDED-64A5-495b-97DA-42C0301E229B}
  • Added Registry Key:
    Key: HKLM\%CURRENTVERSIONREG%\Uninstall\XBTB04715.XBTB04715Toolbar
  • Added Registry Key:
    Key: HKLM\SOFTWARE\Classes\XBTB04715.XBTB04715.1
  • Added Registry Value:
    Key: HKCU\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN Value: iexplore.exe
  • Added Registry Value:
    Key: HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar Value: {77FBF9B8-1D37-4FF2-9CED-192D8E3ABA6F}
  • Added Registry Value:
    Key: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser Value: {77FBF9B8-1D37-4FF2-9CED-192D8E3ABA6F}