Home Malware Programs Adware BetterInternet

BetterInternet

Posted: January 29, 2008

BetterInternet is an irritating adware application. Once installed, BetterInternet may slow down your system severely and cause its instability due to its malicious activities that include constant connection to the Internet, generation of numerous popup advertisements and transmission of logs by FTP or email. It can also leak your personal and financial data without your consent and knowledge. BetterInternet can be highly difficult to remove manually for it can self-mutate to avoid detection. BetterInternet should be regarded with great caution and removed from your system immediately.

File System Modifications

  • The following files were created in the system:
    # File Name
    1 bi.dll
    2 biprep.exe
    3 BTGrab.dll
    4 ceres.dll
    5 dlmax.dll
    6 imgiant.dll
    7 morphacl.dll
    8 Mxtarget.dll
    9 Pynix.dll
    10 speer2.dll
    11 speeryox.dll
    12 VoiceIP.dll
    13 zserv.dll

Registry Modifications

  • The following newly produced Registry Values are:
    HKEY..\..\..\..{Subkeys}HKEY_CURRENT_USER\Software\AHExeHKEY_CURRENT_USER\Software\BTGrabHKEY_CURRENT_USER\Software\DLMaxHKEY_CURRENT_USER\Software\MultiMPPHKEY_CURRENT_USER\Software\MxTargetHKEY_CURRENT_USER\Software\VoiceIPHKEY_CURRENT_USER\Software\ZServHKEY_CURRENT_USER\Software\ceresHKEY_CURRENT_USER\Software\imGiantHKEY_CURRENT_USER\Software\morphaclHKEY_CURRENT_USER\Software\pynixHKEY_CURRENT_USER\Software\sPeerHKEY_CURRENT_USER\Software\sPeer2HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ExplorerHKEY_LOCAL_MACHINE\SOFTWARE\Vendor\xmlHKEY_LOCAL_MACHINE\Software\DbiHKEY_LOCAL_MACHINE\Software\twaintecHKEY..\..\..\..{RegistryKeys}HKEY_CLASSES_ROOT\AppID\XParam.DLLHKEY_CLASSES_ROOT\AppID\{4D980B0A-C3EF-4965-A58F-7F64F3B42E79}HKEY_CLASSES_ROOT\BTGrabDll.BTGrabDllObjHKEY_CLASSES_ROOT\BTGrabDll.BTGrabDllObj.1HKEY_CLASSES_ROOT\BiDll.BiDllObjHKEY_CLASSES_ROOT\BiDll.BiDllObj.1HKEY_CLASSES_ROOT\CLSID\{00000000-59D4-4008-9058-080011001200}HKEY_CLASSES_ROOT\CLSID\{00000000-C1EC-0345-6EC2-4D0300000000}HKEY_CLASSES_ROOT\CLSID\{00000000-DD60-0064-6EC2-6E0100000000}HKEY_CLASSES_ROOT\CLSID\{00000000-F09C-02B4-6EC2-AD0300000000}HKEY_CLASSES_ROOT\CLSID\{00000026-8735-428D-B81F-DD098223B25F}HKEY_CLASSES_ROOT\CLSID\{00000035-92F8-407F-98A5-7D8ADA59B6BB}HKEY_CLASSES_ROOT\CLSID\{00000049-8F91-4D9C-9573-F016E7626484}HKEY_CLASSES_ROOT\CLSID\{0000005D-C175-4405-BAC5-1F3B2BAF67C6}HKEY_CLASSES_ROOT\CLSID\{00000062-2E5F-4AF7-986E-5B64E0951A96}HKEY_CLASSES_ROOT\CLSID\{00000097-7C67-4BA6-8B42-05128941688A}HKEY_CLASSES_ROOT\CLSID\{00000250-0320-4DD4-BE4F-7566D2314352}HKEY_CLASSES_ROOT\CLSID\{000006B1-19B5-414A-849F-2A3C64AE6939}HKEY_CLASSES_ROOT\CLSID\{000020DD-C72E-4113-AF77-DD56626C6C42}HKEY_CLASSES_ROOT\CLSID\{0000607D-D204-42C7-8E46-216055BF9918}HKEY_CLASSES_ROOT\CLSID\{002EB272-2590-4693-B166-FBD5D9B6FEA6}HKEY_CLASSES_ROOT\CLSID\{00320615-B6C2-40A6-8F99-F1C52D674FAD}HKEY_CLASSES_ROOT\CLSID\{36A59337-6EEF-40AE-94B1-ED443A0C4740}HKEY_CLASSES_ROOT\CLSID\{D5E06663-DE78-4A48-BB81-7C9AFF2E49E4}HKEY_CLASSES_ROOT\CeresDll.CeresDllObjHKEY_CLASSES_ROOT\CeresDll.CeresDllObj.1HKEY_CLASSES_ROOT\DLMaxDll.DLMaxDllObjHKEY_CLASSES_ROOT\DLMaxDll.DLMaxDllObj.1HKEY_CLASSES_ROOT\Interface\{19C8E563-D989-47CE-BED8-EA72B5EB62D6}HKEY_CLASSES_ROOT\Interface\{237CB7A2-E26E-443B-B16E-5DA66584B05B}HKEY_CLASSES_ROOT\Interface\{4534CD6B-59D6-43FD-864B-06A0D843444A}HKEY_CLASSES_ROOT\Interface\{50F646B1-1C3E-4B01-B818-437E1276E5BE}HKEY_CLASSES_ROOT\Interface\{59EBB576-CEB0-42FA-9917-DA6254A275AD}HKEY_CLASSES_ROOT\Interface\{72322CE2-D1C1-423E-9748-FF7E7F1E47C3}HKEY_CLASSES_ROOT\Interface\{94984402-B480-45C7-AD2D-84E5EB52CFCD}HKEY_CLASSES_ROOT\Interface\{A93B84C6-5278-473A-8027-F6304A291A7A}HKEY_CLASSES_ROOT\Interface\{BB0D5ADC-028D-4185-9288-722DDCE2C757}HKEY_CLASSES_ROOT\Interface\{C08175C6-B2B2-47FC-AF1A-32F77A6CB673}HKEY_CLASSES_ROOT\Interface\{C45C774D-5ECC-4D9E-94E1-AC57189C4435}HKEY_CLASSES_ROOT\MultiMPPDll.MultiMPPDllObjHKEY_CLASSES_ROOT\MultiMPPDll.MultiMPPDllObj.1HKEY_CLASSES_ROOT\MxTarget.MxTargetDllObj.1HKEY_CLASSES_ROOT\PynixDll.PynixDllObjHKEY_CLASSES_ROOT\PynixDll.PynixDllObj.1HKEY_CLASSES_ROOT\TwaintecDll.TwaintecDllObjHKEY_CLASSES_ROOT\TwaintecDll.TwaintecDllObj.1HKEY_CLASSES_ROOT\TypeLib\{09049E4F-8D9E-4C8A-A952-5BAF1A115C59}HKEY_CLASSES_ROOT\TypeLib\{230C3786-1C2C-45BD-9D2D-9D277FCE6289}HKEY_CLASSES_ROOT\TypeLib\{2390AAA5-E65C-4404-BD3B-3A9EAC22C0A5}HKEY_CLASSES_ROOT\TypeLib\{53F066F0-A4C0-4F46-83EB-2DFD03F938CF}HKEY_CLASSES_ROOT\TypeLib\{690BCCB4-6B83-4203-AE77-038C116594EC}HKEY_CLASSES_ROOT\TypeLib\{7EFE1256-AB56-44B3-A63A-EB1A2208A490}HKEY_CLASSES_ROOT\TypeLib\{8E0D8965-B97B-468D-8306-A05929E439C1}HKEY_CLASSES_ROOT\TypeLib\{92DAF5C1-2135-4E0C-B7A0-259ABFCD3904}HKEY_CLASSES_ROOT\TypeLib\{BBE6D461-41FC-4100-A629-B9D2162BEFAA}HKEY_CLASSES_ROOT\TypeLib\{C0168E40-6211-4113-9202-B9B852CB12FC}HKEY_CLASSES_ROOT\TypeLib\{EE6AE627-8F18-4986-BEAD-52073EDFC776}HKEY_CLASSES_ROOT\VX2.VX20BJHKEY_CLASSES_ROOT\VoiceIPDll.VoiceIPDllObj.1HKEY_CLASSES_ROOT\XParam.XParamObjHKEY_CLASSES_ROOT\XParam.XParamObj.1HKEY_CLASSES_ROOT\ZServDll.ZServDllObjHKEY_CLASSES_ROOT\ZServDll.ZServDllObj.1HKEY_CLASSES_ROOT\imGiantDll.imGiantDllObjHKEY_CLASSES_ROOT\imGiantDll.imGiantDllObj.1HKEY_CLASSES_ROOT\morphaclDll.morphaclDllObjHKEY_CLASSES_ROOT\morphaclDll.morphaclDllObj.1HKEY_CLASSES_ROOT\sPeer2Dll.sPeer2DllObjHKEY_CLASSES_ROOT\sPeer2Dll.sPeer2DllObj.1HKEY_CLASSES_ROOT\sPeerDll.sPeerDllObjHKEY_CLASSES_ROOT\sPeerDll.sPeerDllObj.1\Browser Helper Objects\{00000000-59D4-4008-9058-080011001200}\Browser Helper Objects\{00000000-C1EC-0345-6EC2-4D0300000000}\Browser Helper Objects\{00000000-DD60-0064-6EC2-6E0100000000}\Browser Helper Objects\{00000000-F09C-02B4-6EC2-AD0300000000}\Browser Helper Objects\{00000026-8735-428D-B81F-DD098223B25F}\Browser Helper Objects\{00000035-92F8-407F-98A5-7D8ADA59B6BB}\Browser Helper Objects\{00000049-8F91-4D9C-9573-F016E7626484}\Browser Helper Objects\{0000005D-C175-4405-BAC5-1F3B2BAF67C6}\Browser Helper Objects\{00000062-2E5F-4AF7-986E-5B64E0951A96}\Browser Helper Objects\{00000097-7C67-4BA6-8B42-05128941688A}\Browser Helper Objects\{00000250-0320-4DD4-BE4F-7566D2314352}\Browser Helper Objects\{000006B1-19B5-414A-849F-2A3C64AE6939}\Browser Helper Objects\{000020DD-C72E-4113-AF77-DD56626C6C42}\Browser Helper Objects\{0000607D-D204-42C7-8E46-216055BF9918}\Browser Helper Objects\{002EB272-2590-4693-B166-FBD5D9B6FEA6}\Browser Helper Objects\{00320615-B6C2-40A6-8F99-F1C52D674FAD}HKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}DbiIMGiantabi-1ceresspeerspeer2

Related Posts

Loading...