Home Malware Programs Adware Outobox

Outobox

Posted: November 21, 2013

Threat Metric

Ranking: 19,507
Threat Level: 2/10
Infected PCs: 3,928
First Seen: November 21, 2013
Last Seen: February 7, 2025
OS(es) Affected: Windows

Outobox is adware that may display unwanted pop-up adverts, coupons, offers and deals when online users are shopping online or visiting other websites. Outobox may install itself in Internet Explorer, Mozilla Firefox and Google Chrome without the computer user's knowledge and permission. Outobox may be usually delivered bundled with free applications that PC users download from the net. When the PC user chooses to install a certain free program, it might carry additional toolbars, browser extensions and add-ons or plug-ins added to the installation wizard. These additional apps, in this case Outobox, might be marked as optional applications, but if the computer user does not take a check box off for adding them, he may end up confronting unwanted system alterations. Outobox may keep track of the computer user's surfing habits and transfer gathered data to third-parties for targeted advertising intentions.

Technical Details

Registry Modifications

The following newly produced Registry Values are:

CLSID{1EB0A0B0-CABB-495C-A85A-7C8F891799C7}{30f06672-0e95-41a9-80cb-dee386af99ad}{B1290521-AB01-40EB-B993-AD122BEFC9E2}HKEY..\..\..\..{RegistryKeys}SOFTWARE\Microsoft\Tracing\updateoutobox_RASAPI32SOFTWARE\Microsoft\Tracing\updateoutobox_RASMANCSSOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{30f06672-0e95-41a9-80cb-dee386af99ad}Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F06672-0E95-41A9-80CB-DEE386AF99AD}Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F06672-0E95-41A9-80CB-DEE386AF99AD}Software\outoboxSOFTWARE\Wow6432Node\Microsoft\Tracing\updateoutobox_RASAPI32SOFTWARE\Wow6432Node\Microsoft\Tracing\updateoutobox_RASMANCSSOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{30f06672-0e95-41a9-80cb-dee386af99ad}SOFTWARE\Wow6432Node\outoboxSYSTEM\ControlSet001\services\eventlog\Application\Update outoboxSYSTEM\ControlSet001\services\Update outoboxSYSTEM\ControlSet001\Services\Util outoboxSYSTEM\ControlSet001\Services\{1a147621-8c9a-4d6b-a557-6513a40d3207}wSYSTEM\ControlSet001\Services\{87135683-4343-4a1a-a4aa-8b424769f1b8}wSYSTEM\ControlSet002\Services\Util outoboxSYSTEM\ControlSet002\Services\{1a147621-8c9a-4d6b-a557-6513a40d3207}wSYSTEM\ControlSet002\Services\{87135683-4343-4a1a-a4aa-8b424769f1b8}wSYSTEM\CurrentControlSet\services\eventlog\Application\Update outoboxSYSTEM\CurrentControlSet\services\Update outoboxSYSTEM\CURRENTCONTROLSET\SERVICES\Util outoboxSYSTEM\CURRENTCONTROLSET\SERVICES\{1a147621-8c9a-4d6b-a557-6513a40d3207}wSYSTEM\CURRENTCONTROLSET\SERVICES\{87135683-4343-4a1a-a4aa-8b424769f1b8}wHKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}outobox

Additional Information

The following directories were created:
%ProgramFiles%\outobox%ProgramFiles(x86)%\outobox
The following URL's were detected:
http://outobox.net
Loading...