AdWare.Win32.Kwsearchguide

By JubileeX in Adware

Translate To:

AdWare.Win32.Kwsearchguide is an annoying adware infection that can enter systems without permission. AdWare.Win32.Kwsearchguide may spread via file-sharing networks and infected internet downloads. AdWare.Win32.Kwsearchguide will display advertisements in the form of pop-up and pop-under banners. AdWare.Win32.Kwsearchguide will also gather information about a victim's internet activities and then send it to a remote third-party. Remove this threat from your PC as soon as you detect it.

File System Details

AdWare.Win32.Kwsearchguide may create the following file(s):

Expand All | Collapse All

#	File Name	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	%System%\kbd106.dll
Name: %System%\kbd106.dll Type: Dynamic link library
2.	%System%\kbd101b.dll
Name: %System%\kbd101b.dll Type: Dynamic link library
3.	%System%\kbdjpn.dll
Name: %System%\kbdjpn.dll Type: Dynamic link library
4.	%System%\kbd101c.dll
Name: %System%\kbd101c.dll Type: Dynamic link library
5.	%System%\kbdkor.dll
Name: %System%\kbdkor.dll Type: Dynamic link library
6.	%System%\kbd103.dll
Name: %System%\kbd103.dll Type: Dynamic link library

Registry Details

AdWare.Win32.Kwsearchguide may create the following registry entry or registry entries:

HKEY..\..\..\..{RegistryKeys}

[HKEY_CURRENT_USER\Software\Microsoft\CloverPlus\lst]

CLog03 = "8A846DF74233DCCC57C4AC8F4BE3DBF1F03AFA103BA6E177"

CLog06 = "8A7BFC6486EA85C30669B18C4ED4C606813FF7463AA1E25C"

CLog09 = "8A7BF99B870003D052A5F2993D89B23AC732"

CLog12 = "8A7B66F62C0CD7B480AFEF86F0C2B23AF98141D855D8D7E1F05612B406C8C0ED0A523801D5F1C2756D99"

CLog15 = "8A8468F835FF10D07BA8F25C3E85DCF4DD8F47D63BA6E1E9D8330C3EEFBC7CD9000CE103D70ACB5C61AD2A5EBD144A5E"

FLog00 = "8A7BF99B871C87D92C5BA486F0C2B0A0C7824249489FD35D2CE818AAED9272CA67239718F4CCB750779A3347B6"

FLog03 = "8A8466F681E679C7116AA22763F262EAF7875FCE582F63E5F437283AD7937180F01C230BEF263B8C7C9CB5507E"

FLog06 = "8A8465EF2B1B84C4305FA4894DD9640CF5875F3E41A489AA2D06234FD90D537D09118504D80A31"

FLog09 = "432F14"

FLog12 = "8A8466F62B0003D07CABF325598CDDF3F18D"

FLog15 = "8A7B6EFE2F02DDCB8A5DAA2E388AC9076E8A4AE08B365B7928E33AACE00E86670A526B16F2CC298AB59582C5E40BFEB2A01F0E0ED7833BA2C22CAE47E8206D4546115D915C7B7444E2695E139DECCC6EE02FE4A10696330ABA4C64FCBF796056"

FLog18 = "8A7B66F62C0F80E080AFEE2763F2DF0DCB87"

FLog21 = "8A7BFAA287E679DA2C5B99983A88B59BC58141D98F2A5AE92E4C085119A1B143AE1327B62FB6EE46C373F278737D55"

FLog24 = "8A8466F6811649B7617AEF2763FBB49CC43AFA118B365EE5"

FLog27 = "8A7B6AF23533DCC157C4C68D"

FLog30 = "8A7B6EFE43084BCD8A5DAA2E3893DCF4DC8D453C47A2E27928F50C3EF0BABAF21854FBEEDAF1C2750C99B6596940965E0C95E7271F16BC51C22CA74EFF2566DA5F3A6A0A54C3D69208C0480D0FF9CFA3E0"

ietitle = "brainclan SM"

value00 = "00-00-00-00-00-00"

W2KLpk = 0x00000001

CLog01 = "8A8468F82C1C87D92B58A38DA1D5C705F23DF53D3CA3CDE7"

CLog05 = "8A7B6CF42B1073C52B58A252ECCFB339DB875FA7632E63AA2DDD14B6099474F11854CEFE"

CLog08 = "8A7B66F6581546B752A5F39660C2AF9DEA34F41453DED37407E22145D6E6BE756723970703F2BF"

CLog11 = "8A846CF4351AD5B3617AF352ECCFAE9EF98860A7652867E5"

CLog14 = "8A7BFC64511B84D9305F9D884A88E10FE9354D15632E66AE01E22244D6C16FF1021A900CF022298AA8A53256B70A1CB6"

CLog17 = "8A846CF4580003B55360C58F4BE3DAF2DE3CFCE38D3064E2"

FLog02 = "C5793B8F811AD6C57DB5A224EACF64ADF43600"

FLog05 = "8A7B65EF811AD5B32B589E86F0CBB19FF988"

FLog08 = "8A846BED810CD7B480AFEE53EFD6B19FF886"

FLog11 = "8A8465EF35EA85C62ED19D235F7FB59BF933F3A2652868DADD592446D9E6BE75F418E7F9FDF92780A7511E51C0"

FLog14 = "475B37811C0243A80799A61E4A27"

FLog17 = "8A7BF55F7A0D7EB2116AA38C4ED4C8086F3FF74641A47CB1"

FLog20 = "8A8465EF2B1B84D9305FA386F0CBB59BF9824249489FD3DFEE3712B406E58B750119CCFAFEF7BA5D84A8315653F6E865176BA96124F492529F"

FLog23 = "8A846DF72D02DDCB7DA6F3894DD9B59BC638503E41A489E1"

FLog26 = "8A7B66F6581B84C47CABF355E9DCAF9DF88242D99134634C"

FLog29 = "8A8466F6370CD7B47FACF4894DD8B23AF83DF5CC57325FE7D62E0C3EF0BABAF21854FA0602F6CE"

bandtitle = "brainclan SM"

[HKEY_CURRENT_USER\Software\Microsoft\etcman]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\International]

CLog00 = "4C7836A66BD689F7213A29639FBFA4CC9A50880F4BF69BB9"

CLog04 = "8A7B6BED2A1902B6617AEF25598DB19FF833F33B52D9D8E4"

CLog07 = "5075BFCA211BD9D5"

CLog10 = "8A846CF436EA85C602559E88"

CLog13 = "8A846AF258EA85C3305F9F94F6DDB49CC4855DA4489FD6AA"

CLog16 = "8A7B6EFE43048FD106699C2E"

FLog01 = "497203A02E087FCE547EA72EF53466B8BFAA8A407E2C9B51211A061A310C4CDE0D4419C2007CC3646CBD1ABE5A"

FLog04 = "8A8465EF581AD5B67BA8ED24668D650BF687"

FLog07 = "8A7B65EF2A3E11CF52A5F052ECCFB23AC68444A2642B68DFEE592446D9C16FF30E4ECD0BEF223C87B483B0C4BB2E4B209AA8EC24D866"

FLog10 = "8A846DF72D128DDB5360C62E3893B6F6F38949103BA6CB782BE30C3EF1E78D7D0A52C804D80BC67161B0295E2C239074"

FLog13 = "8A7B67112CE576C7116A9924668CAF9DEA374F17462DD47726E416A8E1D8907D1854FA11"

FLog16 = "8A7BFAA286E679DA0255A286F0CBAE9EEA88"

FLog19 = "BD770497790686"

FLog22 = "FE4DCC9421E86B6D1BC8523713EF4AE27E6B6B136DD07BC8FB13A91D50EB29C8FA22681B1F123EB9A6B1"

FLog25 = "C15FCB8D482F28DA600F7F683DB3AB01DF8C9617ABA05B4C"

FLog28 = "8A8465EF2BE972C32C5BA3894DD9B19FC671F14854DBD7AE010913FF099371F1000CF209ED291354A9A53256B63105B1931D1028CC8149A8D123723489CE5D954A216DC149CA824B"

[HKEY_CURRENT_USER\Software\Microsoft\CloverPlus]

sidebar_loaddate = "10-27"

Enigma Software Group Prevails Over Malwarebytes at the Ninth Circuit

Search

Change Region

AdWare.Win32.Kwsearchguide

File System Details

Registry Details

Submit Comment

Trending

Rzfu Ransomware

'YouPorn' Email Scam

Rzkd Ransomware

Most Viewed

Is Lookmovie.io Safe?

How To Fix 'Printer Driver is Unavailable' Error

Discord Shows Black Screen when Sharing Screen