Trojan . BundleWare (Summary)
home | requirements | help | contact | scan now  

OVER 8 MILLION PEOPLE WORLDWIDE USE NUKER TO PROTECT THEIR PC!
YOU CAN TRY ITS AUDIT TODAY ABSOLUTELY FREE!

FREE SCAN

Free Anti Spyware Audit

Click Here to scan your PC for
BundleWare
free of charge
Trojan . BundleWare (Summary)

Software Name: BundleWare
Company Name: BundleWare
Product Name: BundleWare
Classification: Trojan
Website: http://www.bundleware.com

Brief:
Back door software that downloads and installs third party software such as Adware, Hijackers and Trackware.

 

IMPORTANT!
Some of the Trojan.BundleWare components are listed below. The list is compiled as a reference. The list might not be complete and it doesn't represent instructions for manual removal. We DO NOT recommend manual removal. Incorrect removal of certain software might make your computer unstable or even unusable.
Removal of adware component might affect the related ad-supported software.

If you suspect that you have an unwanted instance of BundleWare installed on your computer we recommend a free audit of your system with INAC Anti Spyware.

BundleWare might create following folders (and inject its files inside the folders):

n/a

BundleWare might create following files (some of the files might be loaded in memory while the software is running):

  • %SYSTEM%ho4svc.dll

  • %PROFILE%\Local Settings\Temp\bw.exe

  • %PROFILE%\Local Settings\Temp\monitor_kc.dat

  • %WINDOWS%\system\UpdInstall.exe

  • %SYSTEM%\ayledit.dll

  • %PROFILE%k15.exe

  • %PROFILE%\bndlwr_bundle.exe

  • %PROFILE%\btiein.dll

  • %PROFILE%\BundleOuter2704040512.exe

  • %DESKTOP%\Discount Travel Specials.url

  • %DESKTOP%\Free Games - Cash Prizes.url

  • %DESKTOP%\Instant Love Alert.url

  • %PROFILE%\Local Settings\Temp\Rem50.exe

  • %WINDOWS%\iconz.exe

  • %SYSTEM%\btiein.dll

  • %SYSTEM%\INNERADINSTALL.LOG

  • %SYSTEM%\INNERVBINSTALL.LOG

  • %SYSTEM%\MSrev23.dll

  • %SYSTEM%\MSrev43.dll

  • %SYSTEM%\SWRT01.dll

  • %WINDOWS%\Downloaded Program Files\DS3.dll

  • %PROFILE%\Local Settings\Temp\EACDownload\bndlwr_bundle.exe

  • %SYSTEM%jo4svc.dll

  • %PROFILE%\Local Settings\Temp\VT00.exe

  • %SYSTEM%\arledit.dll

  • %WINDOWS%\vt00.exe

BundleWare is often accompanied by the following tracking cookies:

n/a

BundleWare might create following registry keys (and inject subkeys and values):

  • HKEY_CLASSES_ROOT\cdrom.activeEach

  • HKEY_CLASSES_ROOT\cdrom.activeEach.1

  • HKEY_CLASSES_ROOT\CLSID\{18BBDF4D-611D-41CE-A7E7-B2DD23C250D1}

  • HKEY_CLASSES_ROOT\CLSID\{417386C3-8D4A-4611-9B91-E57E89D603AC}

  • HKEY_CLASSES_ROOT\CLSID\{7B19FFC8-9E74-788A-CEE0-1B06A0320EAF}

  • HKEY_CLASSES_ROOT\CLSID\{8551311D-F3BF-4718-AD66-96E302500735}

  • HKEY_CLASSES_ROOT\CLSID\{8940E505-72C6-44DE-BE85-1D746780EFBF}

  • HKEY_CLASSES_ROOT\CLSID\{CE23505D-68FB-4C49-AE4B-D4F1CF86A2C4}

  • HKEY_CLASSES_ROOT\CLSID\{CFB40060-3208-3DE1-22F7-9D2D22C11C55}

  • HKEY_CLASSES_ROOT\CLSID\{D52433A9-A44C-43AB-A013-24B3C756DD2B}

  • HKEY_CLASSES_ROOT\CLSID\{DB90DEA9-0897-4B02-9FE0-1E321A22EAB0}

  • HKEY_CLASSES_ROOT\CLSID\{DB92433D-1902-4789-BAFC-B46B0DCDEBB7}

  • HKEY_CLASSES_ROOT\CLSID\{EC352548-52B5-41AC-B8C1-8CB561ECF7AD}

  • HKEY_CLASSES_ROOT\Interface\{10D7DB96-56DC-4617-8EAB-EC506ABE6C7E}

  • HKEY_CLASSES_ROOT\Interface\{13C243A0-50E9-43F4-8E5B-9FF857C3A0B5}

  • HKEY_CLASSES_ROOT\Interface\{4340DF8E-D7A3-4675-BE74-80077B2B3E81}

  • HKEY_CLASSES_ROOT\Interface\{49DB48FF-02B5-4645-B676-94A4DF1AA026}

  • HKEY_CLASSES_ROOT\Interface\{4A277E1B-B130-4E4A-92AE-8712F4A150BD}

  • HKEY_CLASSES_ROOT\Interface\{4B795337-D704-49C7-8CA1-D65722B28EBD}

  • HKEY_CLASSES_ROOT\Interface\{6CDC3337-01F7-4A79-A4AF-0B19303CC0BE}

  • HKEY_CLASSES_ROOT\Interface\{6D37DED8-1944-4E32-93FD-B9610E0AD8E3}

  • HKEY_CLASSES_ROOT\Interface\{6E0ED53C-9908-49ED-B055-7CB31B162577}

  • HKEY_CLASSES_ROOT\Interface\{795398D0-DC2F-4118-A69C-592273BA9C2B}

  • HKEY_CLASSES_ROOT\Interface\{830D3AED-2FA9-454F-B266-D931862BBF34}

  • HKEY_CLASSES_ROOT\Interface\{8C53BD8E-B12D-4C8F-AD0E-C9DDC39D1273}

  • HKEY_CLASSES_ROOT\Interface\{8DD9B882-0041-449D-A0BD-77A87119AD90}

  • HKEY_CLASSES_ROOT\Interface\{92DD4B20-DE93-4F74-8BCA-EC7F88FDAC5D}

  • HKEY_CLASSES_ROOT\Interface\{950695DA-8F77-4852-AD93-8C1E64995D4B}

  • HKEY_CLASSES_ROOT\Interface\{9BCDD51B-4A7B-446C-8452-D32D38004582}

  • HKEY_CLASSES_ROOT\Interface\{A986F4DB-792E-4571-8974-0BB6E024766F}

  • HKEY_CLASSES_ROOT\Interface\{B288F21C-A144-4CA2-9B70-8AFA1FAE4B06}

  • HKEY_CLASSES_ROOT\Interface\{BCCAB53D-0895-40C3-A942-A03538CE227A}

  • HKEY_CLASSES_ROOT\Interface\{C0F88E9E-DCEB-4655-968A-AE508A677C39}

  • HKEY_CLASSES_ROOT\Interface\{D7EAC2D8-2D52-4010-A4AD-DFDF60C1706C}

  • HKEY_CLASSES_ROOT\SWRT01.RT

  • HKEY_CLASSES_ROOT\TypeLib\{5E594162-60A9-487D-84B8-DBDD716CB862}

  • HKEY_CLASSES_ROOT\TypeLib\{6F65ED0D-066E-4C92-B442-2704E7B64111}

  • HKEY_CLASSES_ROOT\TypeLib\{D0C29A75-7146-4737-98EE-BC4D7CF44AF9}

  • HKEY_CLASSES_ROOT\TypeLib\{E0D3B292-A0B0-4640-975C-2F882E039F52}

  • HKEY_CLASSES_ROOT\web.StyleSave

  • HKEY_CLASSES_ROOT\web.StyleSave.1

  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7B19FFC8-9E74-788A-CEE0-1B06A0320EAF}

  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\AUI

  • HKEY_CLASSES_ROOT\CLSID\{DDFFA75A-E81D-4454-89FC-B9FD0631E726}

  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Guardian

  • HKEY_CLASSES_ROOT\CLSID\{7C023D07-EDDA-4882-B149-66802533469E}

BundleWare might create following registry values:

  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar|{CFB40060-3208-3DE1-22F7-9D2D22C11C55}

  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform|{F018C831-8E53-4BB5-8000-E48F50492751}

  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved|{DDFFA75A-E81D-4454-89FC-B9FD0631E726}

BundleWare might create registry values with following data:

  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main|Search Page|http://allaboutsearching.com*

  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main|Search Bar|http://allaboutsearching.com*

BundleWare might insert following entries in the HOSTS file:

n/a

 

Click here to scan your computer for BundleWare free of charge

 Download | Order Now | Partners | Index | Hunter's Log | EULA | Privacy Policy   © 2002-2007 TrekBlue, Inc.