Adware.V-bates Removal Report

Table of Contents

SpyHunter Detects & Remove Adware.V-bates

File System Details

Adware.V-bates may create the following file(s):

#	File Name	MD5	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	PrefHelper.exe	e4f815680844a22f663273fbfebbf52d	4,194
Name: PrefHelper.exe MD5: e4f815680844a22f663273fbfebbf52d Size: 336.38 KB (336384 bytes) Detections: 4,194 Type: Executable File Path: %PROGRAMFILES%\V-bates Group: Malware file Last Updated: October 9, 2020
2.	PrefHelper.exe	8f0985f985447ea360348002e6923831	3,201
Name: PrefHelper.exe MD5: 8f0985f985447ea360348002e6923831 Size: 336.38 KB (336384 bytes) Detections: 3,201 Type: Executable File Path: %PROGRAMFILES%\V-bates Group: Malware file Last Updated: June 10, 2020
3.	Extension64.dll	398827addc04117a4f30641f45240ea6	2,080
Name: Extension64.dll MD5: 398827addc04117a4f30641f45240ea6 Size: 235.52 KB (235520 bytes) Detections: 2,080 Type: Dynamic link library Path: %PROGRAMFILES%\V-bates Group: Malware file Last Updated: October 9, 2020
4.	Extension64.dll	5860afcb81906c5e088a25b32d43981b	1,774
Name: Extension64.dll MD5: 5860afcb81906c5e088a25b32d43981b Size: 233.98 KB (233984 bytes) Detections: 1,774 Type: Dynamic link library Path: C:\Program Files\V-bates\Extension64.dll Group: Malware file Last Updated: July 21, 2022
5.	Extension32.dll	73f2b158ae70b9ee7cb7ad2cf51b76d6	1,371
Name: Extension32.dll MD5: 73f2b158ae70b9ee7cb7ad2cf51b76d6 Size: 194.56 KB (194560 bytes) Detections: 1,371 Type: Dynamic link library Path: %PROGRAMFILES%\V-bates Group: Malware file Last Updated: October 9, 2020
6.	Extension32.dll	2484163f1b68395d7f55c34985f21a61	1,081
Name: Extension32.dll MD5: 2484163f1b68395d7f55c34985f21a61 Size: 193.02 KB (193024 bytes) Detections: 1,081 Type: Dynamic link library Path: %PROGRAMFILES%\V-bates Group: Malware file Last Updated: June 10, 2020
7.	ExtensionUpdaterService.exe	43861e6fda9e0240b67f99f137c3a97c	394
Name: ExtensionUpdaterService.exe MD5: 43861e6fda9e0240b67f99f137c3a97c Size: 209.4 KB (209408 bytes) Detections: 394 Type: Executable File Path: %PROGRAMFILES%\V-bates Group: Malware file Last Updated: September 10, 2020
8.	ExtensionUpdaterService.exe	336a2260e64f51966de6a2ed26f4e621	268
Name: ExtensionUpdaterService.exe MD5: 336a2260e64f51966de6a2ed26f4e621 Size: 209.4 KB (209408 bytes) Detections: 268 Type: Executable File Path: %PROGRAMFILES%\V-bates Group: Malware file Last Updated: April 18, 2014
9.	PrefHelper.exe	fdcac569f04dbc165c2589fa3a88aec8	239
Name: PrefHelper.exe MD5: fdcac569f04dbc165c2589fa3a88aec8 Size: 336.38 KB (336384 bytes) Detections: 239 Type: Executable File Path: %PROGRAMFILES%\V-bates Group: Malware file Last Updated: April 18, 2014
10.	PrefHelper.exe	8ab3f5cde73325f10c7039c7662ca0c9	206
Name: PrefHelper.exe MD5: 8ab3f5cde73325f10c7039c7662ca0c9 Size: 336.38 KB (336384 bytes) Detections: 206 Type: Executable File Path: %PROGRAMFILES%\V-bates Group: Malware file Last Updated: April 18, 2014
11.	Extension64.dll	338492dad1f155c7368e112fb3403e43	177
Name: Extension64.dll MD5: 338492dad1f155c7368e112fb3403e43 Size: 233.98 KB (233984 bytes) Detections: 177 Type: Dynamic link library Path: %PROGRAMFILES%\V-bates Group: Malware file Last Updated: April 18, 2014
12.	Extension64.dll	380c3311da0166a65a1e171edab04cbe	135
Name: Extension64.dll MD5: 380c3311da0166a65a1e171edab04cbe Size: 235.52 KB (235520 bytes) Detections: 135 Type: Dynamic link library Path: %PROGRAMFILES%\V-bates Group: Malware file Last Updated: April 18, 2014
13.	NMHClient.exe	209ff7761ee957e7f56086b5fbb4166a	104
Name: NMHClient.exe MD5: 209ff7761ee957e7f56086b5fbb4166a Size: 428.54 KB (428544 bytes) Detections: 104 Type: Executable File Path: %PROGRAMFILES%\V-bates Group: Malware file Last Updated: October 9, 2020
14.	NMHClient.exe	01efb5b119c12683c44a7931e126b5f7	101
Name: NMHClient.exe MD5: 01efb5b119c12683c44a7931e126b5f7 Size: 428.54 KB (428544 bytes) Detections: 101 Type: Executable File Path: %PROGRAMFILES%\V-bates Group: Malware file Last Updated: April 16, 2023
15.	guardsvc.exe	dd97821cb23c35b0aeb5f3ebc2b49ae3	77
Name: guardsvc.exe MD5: dd97821cb23c35b0aeb5f3ebc2b49ae3 Size: 129.31 KB (129312 bytes) Detections: 77 Type: Executable File Path: %PROGRAMFILES%\V-bates Group: Malware file Last Updated: December 5, 2020
16.	notifier.exe	a6d45e8fe0c45a427c2cc4c6198936c9	72
Name: notifier.exe MD5: a6d45e8fe0c45a427c2cc4c6198936c9 Size: 375.58 KB (375584 bytes) Detections: 72 Type: Executable File Path: %PROGRAMFILES%\V-bates Group: Malware file Last Updated: February 13, 2020
17.	Extension32.dll	d77dc854563b43cb99019d44615fe333	61
Name: Extension32.dll MD5: d77dc854563b43cb99019d44615fe333 Size: 194.56 KB (194560 bytes) Detections: 61 Type: Dynamic link library Path: %PROGRAMFILES%\V-bates Group: Malware file Last Updated: April 18, 2014
18.	Extension32.dll	aa0e6bf5a2e4eef004b18e66c6e65cbc	61
Name: Extension32.dll MD5: aa0e6bf5a2e4eef004b18e66c6e65cbc Size: 193.02 KB (193024 bytes) Detections: 61 Type: Dynamic link library Path: %PROGRAMFILES%\V-bates Group: Malware file Last Updated: April 18, 2014
19.	ExtensionUpdaterService.exe	17d9cf49ce64d0185697fbc780124f8c	46
Name: ExtensionUpdaterService.exe MD5: 17d9cf49ce64d0185697fbc780124f8c Size: 210.2 KB (210208 bytes) Detections: 46 Type: Executable File Path: %PROGRAMFILES%\V-bates Group: Malware file Last Updated: January 26, 2020
20.	NMHClient.exe	34412f7da3886781f7b6184709269653	43
Name: NMHClient.exe MD5: 34412f7da3886781f7b6184709269653 Size: 379.39 KB (379392 bytes) Detections: 43 Type: Executable File Path: %PROGRAMFILES%\V-bates Group: Malware file Last Updated: April 12, 2020
21.	NMHClient.exe	4fe1155e059e3e7ccc375d31686bf5da	31
Name: NMHClient.exe MD5: 4fe1155e059e3e7ccc375d31686bf5da Size: 379.39 KB (379392 bytes) Detections: 31 Type: Executable File Path: %PROGRAMFILES%\V-bates Group: Malware file Last Updated: April 18, 2014
22.	NMHClient.exe	aaeed16b6ac9e8d0fe7a04d6f30ee5ee	9
Name: NMHClient.exe MD5: aaeed16b6ac9e8d0fe7a04d6f30ee5ee Size: 428.54 KB (428544 bytes) Detections: 9 Type: Executable File Path: %PROGRAMFILES%\V-bates Group: Malware file Last Updated: April 18, 2014
23.	v-bates.exe	efbbf05c27e939155c74cbd94c177fb3	6
Name: v-bates.exe MD5: efbbf05c27e939155c74cbd94c177fb3 Size: 2.03 MB (2033320 bytes) Detections: 6 Type: Executable File Path: C:\Users\<username>\AppData\Local\Temp\v-bates.exe Group: Malware file Last Updated: November 12, 2022
24.	PrefHelper.exe	ef986232243228913cfddbdceb91db46	2
Name: PrefHelper.exe MD5: ef986232243228913cfddbdceb91db46 Size: 336.38 KB (336384 bytes) Detections: 2 Type: Executable File Path: %PROGRAMFILES%\V-bates Group: Malware file Last Updated: May 7, 2014
25.	ExtensionUpdaterService.exe	48d4915236fa752b5b0b113be3b9dc13	2
Name: ExtensionUpdaterService.exe MD5: 48d4915236fa752b5b0b113be3b9dc13 Size: 188.76 KB (188760 bytes) Detections: 2 Type: Executable File Path: %PROGRAMFILES%\V-bates Group: Malware file Last Updated: April 17, 2014
26.	Extension64.dll	db3dfac89b3e713097ff442eb9563df0	1
Name: Extension64.dll MD5: db3dfac89b3e713097ff442eb9563df0 Size: 188.24 KB (188248 bytes) Detections: 1 Type: Dynamic link library Path: %PROGRAMFILES%\V-bates Group: Malware file Last Updated: April 17, 2014

More files

Registry Details

Adware.V-bates may create the following registry entry or registry entries:

CLSID

{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}

{311D8A4B-5FED-4462-9187-F03C29B5731C}

{42435F6D-E271-4F4C-9D4B-1A58112DC19D}

{82C1E22B-0B13-4959-8E7D-FDACCBCC4391}

{A516C81D-0FB7-4306-BBAE-9E42DA16B804}

{D067E3E4-354F-4F8A-8668-1AA03D22CBA1}

{F77B2773-532F-484B-A43B-09E4017CD66E}

Regexp file mask

%TEMP%\v-bates.exe

HKEY..\..\..\..{RegistryKeys}

Software\Classes\Software\{D9918B13-81CE-4EE4-9D7C-3676F1714BA7}

Software\Microsoft\Internet Explorer\Approved Extensions\{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}

Software\Microsoft\Internet Explorer\Stats\{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}

SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures\FF Watcher {18C2B3B4-33E4-4155-9227-5367ECB0E35D}.job.fp

SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Mext Guard FBE8818C-5B13-48C2-A93E-AD731167DBF2

Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{21EAF666-26B3-4A3C-ABD0-CA2F5A326744}

Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{21EAF666-26B3-4A3C-ABD0-CA2F5A326744}

SOFTWARE\Mozilla\Firefox\Extensions\{20AD702C-661E-4534-8CE9-BA4EC9AD6ECC}

SOFTWARE\Mozilla\Firefox\Extensions\{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}

SOFTWARE\V-bates

SOFTWARE\Wow6432Node\Mozilla\Firefox\Extensions\{20AD702C-661E-4534-8CE9-BA4EC9AD6ECC}

SOFTWARE\Wow6432Node\Mozilla\Firefox\Extensions\{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}

SOFTWARE\Wow6432Node\V-bates

Software\{D9918B13-81CE-4EE4-9D7C-3676F1714BA7}

SYSTEM\ControlSet001\services\Mext Guard

SYSTEM\ControlSet001\services\V-bates Updater

SYSTEM\ControlSet002\services\Mext Guard

SYSTEM\ControlSet002\services\V-bates Updater

SYSTEM\CurrentControlSet\services\Mext Guard

SYSTEM\CurrentControlSet\services\V-bates Updater

HKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}

{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}_is1

Directories

Adware.V-bates may create the following directory or directories:

%LOCALAPPDATA%\Google\Chrome\User Data\Default\Extensions\ihfgncllfpciihmkjhnehcpolclgokea

%PROGRAMFILES%\V-bates

%PROGRAMFILES(x86)%\V-bates

%ProgramFiles%\BojneidguUn

%ProgramFiles(x86)%\BojneidguUn

URLs

Adware.V-bates may call the following URLs:

V-bates

Ranking:	4,185
Threat Level:	20 % (Normal)
Infected Computers:	71,180

First Seen:	April 17, 2014
Last Seen:	April 23, 2024
OS(es) Affected:	Windows

EnigmaSoft's SpyHunter Scores 100% with AV-TEST in 2024

Search

Change Region

Adware.V-bates

Threat Scorecard

EnigmaSoft Threat Scorecard

SpyHunter Detects & Remove Adware.V-bates

File System Details

Registry Details

Directories

URLs

Submit Comment

Trending

Baseauthenticity.co.in

PDFSpark

Uazq Ransomware

Most Viewed

Discord Shows Black Screen when Sharing Screen

How To Fix 'Printer Driver is Unavailable' Error

What is Msedge.exe?