Scan Spyware on Twitter
Friday, December 19, 2014

Bookmark and Share



whazit


        Download

Type: adware, hijacker

Alias: adware.whazit

Description: Whazit is IE hijacker program implemented as an Internet Explorer toolbar. It resets Internet Explorer home, search and error page to point them at its controlling server whazit.com.

whazit

Warning: A spy-ware removal software uses certain rules for detection and removal of spy-ware, malware, ad-ware and trojan from your PC. ScanSpyware.Net provides this information "AS IS" without warranty of any kind. Your use of this information is at your own risk. We strictly restrict you from using this information if you are not sure about what you are doing.


Recommendation 1: We recommend you to take a backup of Windows Registry before following these manual spyware removal instructions to fix your PC. You can do this by either creating a Restore Point using System Restore Utility in Windows System Tools or using the Export feature of regedit.exe.


Recommendation 2: By trying to remove spy-ware from your PC without getting any help from an expert may produce unexpected results. In case you suspect that your PC is infected with some spy-ware, ad-ware, malware or virus, just follow the instructions available at http://how-to.scanspyware.net/diagnose-and-fix.html to contact us for abolutely FREE help.


Files

  • C:\Windows\wms1.ini
  • C:\Windows\cards.ico
  • C:\Windows\whattt.dll
  • C:\Windows\whattn.dll
  • C:\Windows\WANOBSI.exe
  • C:\Windows\outones.dll
  • C:\Windows\newones.dll
  • C:\Windows\Downloaded Program Files\downloader.inf
  • C:\Windows\Downloaded Program Files\download_ul.inf

Registry Keys

  • HKEY_LOCAL_MACHINE\Software\wms
  • HKEY_CURRENT_USER\Software\Whazit
  • HKEY_CLASSES_ROOT\\wharederer.class1
  • HKEY_CLASSES_ROOT\\BrowserHelper.CBrowserHelper
  • HKEY_CLASSES_ROOT\\BrowserHelper.CBrowserHelper.1
  • HKEY_LOCAL_MACHINE\Software\Classes\wharederer.class1
  • HKEY_CLASSES_ROOT\CLSID\{CE156487-4D41-4E86-98CF-56115B9185CE}
  • HKEY_CLASSES_ROOT\CLSID\{304CAF09-8A6C-449A-8101-5C9AA80BCCAE}
  • HKEY_CLASSES_ROOT\CLSID\{DCF49866-8F81-4F5F-8193-7EC75A2AB321}
  • HKEY_CLASSES_ROOT\CLSID\{D5B72AED-E54A-11D6-B1B2-444553540000}
  • HKEY_CLASSES_ROOT\CLSID\{267D5BD3-0DC2-4724-A196-7F4794FBB9EB}
  • HKEY_CLASSES_ROOT\CLSID\{66F67511-2665-4C34-9E20-FAC2C0954EF2}
  • HKEY_CLASSES_ROOT\CLSID\{C9176930-9C9F-4cba-9723-0F58C3E7CED6}
  • HKEY_CLASSES_ROOT\CLSID\{10955232-B671-11D7-8066-0040F6F477E4}
  • HKEY_CLASSES_ROOT\CLSID\{D7D7004C-A763-4F8C-B0D4-55A7E017E69D}
  • HKEY_CLASSES_ROOT\CLSID\{DCF0768D-BA7A-101A-B57A-0000C0C3ED5F}
  • HKEY_CLASSES_ROOT\TypeLib\{A71F3264-20CA-4A92-8B70-A046A13EF886}
  • HKEY_CLASSES_ROOT\TypeLib\{D5B72AEB-E54A-11D6-B1B2-444553540000}
  • HKEY_CLASSES_ROOT\TypeLib\{AC2DC0CC-16B8-4C54-86CD-BBF80B3954EB}
  • HKEY_CLASSES_ROOT\TypeLib\{d130f0d2-bcfd-4b15-a5e7-415159ef4969}
  • HKEY_LOCAL_MACHINE\Software\Classes\BrowserHelper.CBrowserHelper
  • HKEY_LOCAL_MACHINE\Software\Classes\BrowserHelper.CBrowserHelper.1
  • HKEY_CLASSES_ROOT\Interface\{F94E9188-BE1D-4582-A384-BCC59D4A77F8}
  • HKEY_CLASSES_ROOT\Interface\{D5B72AEC-E54A-11D6-B1B2-444553540000}
  • HKEY_CLASSES_ROOT\Interface\{2161C9C0-E508-405D-885F-F0BFF531458E}
  • HKEY_CLASSES_ROOT\Interface\{E6770870-1055-4FCE-B925-7E208CF0D544}
  • HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{CE156487-4D41-4E86-98CF-56115B9185CE}
  • HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{304CAF09-8A6C-449A-8101-5C9AA80BCCAE}
  • HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{DCF49866-8F81-4F5F-8193-7EC75A2AB321}
  • HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{D5B72AED-E54A-11D6-B1B2-444553540000}
  • HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{267D5BD3-0DC2-4724-A196-7F4794FBB9EB}
  • HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{66F67511-2665-4C34-9E20-FAC2C0954EF2}
  • HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{C9176930-9C9F-4cba-9723-0F58C3E7CED6}
  • HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{10955232-B671-11D7-8066-0040F6F477E4}
  • HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{D7D7004C-A763-4F8C-B0D4-55A7E017E69D}
  • HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{DCF0768D-BA7A-101A-B57A-0000C0C3ED5F}
  • HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\redwhazit
  • HKEY_LOCAL_MACHINE\Software\Classes\TypeLib\{A71F3264-20CA-4A92-8B70-A046A13EF886}
  • HKEY_LOCAL_MACHINE\Software\Classes\TypeLib\{D5B72AEB-E54A-11D6-B1B2-444553540000}
  • HKEY_LOCAL_MACHINE\Software\Classes\TypeLib\{AC2DC0CC-16B8-4C54-86CD-BBF80B3954EB}
  • HKEY_LOCAL_MACHINE\Software\Classes\TypeLib\{d130f0d2-bcfd-4b15-a5e7-415159ef4969}
  • HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\whazit tools
  • HKEY_LOCAL_MACHINE\Software\Classes\Interface\{F94E9188-BE1D-4582-A384-BCC59D4A77F8}
  • HKEY_LOCAL_MACHINE\Software\Classes\Interface\{D5B72AEC-E54A-11D6-B1B2-444553540000}
  • HKEY_LOCAL_MACHINE\Software\Classes\Interface\{2161C9C0-E508-405D-885F-F0BFF531458E}
  • HKEY_LOCAL_MACHINE\Software\Classes\Interface\{E6770870-1055-4FCE-B925-7E208CF0D544}
  • HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\whazit toolbar
  • HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\whazitwhazit toolbar
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DCF49866-8F81-4F5F-8193-7EC75A2AB321}
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D5B72AED-E54A-11D6-B1B2-444553540000}
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{267D5BD3-0DC2-4724-A196-7F4794FBB9EB}
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{66F67511-2665-4C34-9E20-FAC2C0954EF2}
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C9176930-9C9F-4cba-9723-0F58C3E7CED6}
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10955232-B671-11D7-8066-0040F6F477E4}
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D7D7004C-A763-4F8C-B0D4-55A7E017E69D}
  • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DCF0768D-BA7A-101A-B57A-0000C0C3ED5F}
  • HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{CE156487-4D41-4E86-98CF-56115B9185CE}
  • HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{304CAF09-8A6C-449A-8101-5C9AA80BCCAE}
  • HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{CE156487-4D41-4E86-98CF-56115B9185CE}
  • HKEY_LOCAL_MACHINE\Software\Microsoft\Code Store Database\Distribution Units\{DCF0768D-BA7A-101A-B57A-0000C0C3ED5F}
  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DCF49866-8F81-4F5F-8193-7EC75A2AB321}
  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D5B72AED-E54A-11D6-B1B2-444553540000}
  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{304CAF09-8A6C-449A-8101-5C9AA80BCCAE}
  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{267D5BD3-0DC2-4724-A196-7F4794FBB9EB}
  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{66F67511-2665-4C34-9E20-FAC2C0954EF2}
  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10955232-B671-11D7-8066-0040F6F477E4}
  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D7D7004C-A763-4F8C-B0D4-55A7E017E69D}

Registry Values

  • HKEY_LOCAL_MACHINE\software\microsoft\internet explorer\toolbar\{C9176930-9C9F-4cba-9723-0F58C3E7CED6}
  • HKEY_CURRENT_USER\software\microsoft\internet explorer\toolbar\WebBrowser\{C9176930-9C9F-4cba-9723-0F58C3E7CED6}

Clsids

  • {CE156487-4D41-4E86-98CF-56115B9185CE}
  • {DCF49866-8F81-4F5F-8193-7EC75A2AB321}
  • {D5B72AED-E54A-11D6-B1B2-444553540000}
  • {304CAF09-8A6C-449A-8101-5C9AA80BCCAE}
  • {267D5BD3-0DC2-4724-A196-7F4794FBB9EB}
  • {66F67511-2665-4C34-9E20-FAC2C0954EF2}
  • {10955232-B671-11D7-8066-0040F6F477E4}
  • {D7D7004C-A763-4F8C-B0D4-55A7E017E69D}
  • {DCF0768D-BA7A-101A-B57A-0000C0C3ED5F}
  • {C9176930-9C9F-4cba-9723-0F58C3E7CED6}