Virus

Adware/CommanderNET

Analysis

The downloader program for this adware goes by the filename dbc_crack.exe. When executed, it drops two files: msiev32.dll and winvbie.dll. These two files will then be registered in the registry under the Folder "InprocServer32."
Once the registry is patched and when the Internet Explorer is opened, the dll files will be executed. This will inturn download additional files from http://get.inetbar.com. Then, it creates new entries in registry using the name Network Synergy.

ID	63344
Released	Jun 26, 2005
Description Updated	Jul 05, 2005
Aliases	AdWare.ToolBar.Visua.a [VBA32], not-a-virus:AdWare.ToolBar.Visua.a [KAV], not-a-virus:AdWare.ToolBar.Visua.a [McAfee], Trj/Downloader.BBQ [Panda], Trojan.Downloader.BBQ [BitDefender]
Platform Profile	.NET file format (usually recognizable by its usage of mscoree.dll)

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Virus

Adware/CommanderNET

Analysis

Telemetry

News/Research

Research Center

PSIRT Center

Services

By Outbreak

By Solution

By Product

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Threat Intelligence Center

Resource Center

About

FortiGuard Labs

Partners

Virus

Adware/CommanderNET

Analysis

Telemetry

Threat Intelligence
Center