BLABBERS-CH.CRX

June 21, 2012 by NightWatcher
Filed under: Not-a-Virus 
: Solved!

Fix it immediately:

The file BLABBERS-CH.CRX is not a virus.
The program BLABBERS-CH.CRX is a system security tool.
But the BLABBERS-CH.CRX tool may be used to compromise computer security by the hacker.
Use the BLABBERS-CH.CRX file at your own risk!
You can delete the BLABBERS-CH.CRX program from your computer with problems.

Malware Analysis of BLABBERS-CH.CRX
Full path on a computer: %Program Files%\BrowserCompanion\blabbers-ch.crx

Detected by UnHackMe:

BLABBERS-CH.CRX
Default location: %Program Files%\BrowserCompanion\blabbers-ch.crx

BLABBERS-CH.CRX is known as:

not-a-virus

BLABBERS-CH.CRX hash:

  • MD5: a0f84f9a9aa3257a389156c6d0a6854a
The file tries to download information from some web sites.
How to quickly detect BLABBERS-CH.CRX presence?

Registry:
  • HKLM\Software\Classes\CLSID\{00cbb66b-1d3b-46d3-9577-323a336acb50}\InprocServer32\: “%Program Files%\BrowserCompanion\jsloader.dll”
  • HKLM\Software\Classes\CLSID\{5ACE96C0-C70A-4A4D-AF14-2E7B869345E1}\InprocServer32\: “%Program Files%\BrowserCompanion\tdataprotocol.dll”
  • HKLM\Software\Classes\CLSID\{963B125B-8B21-49A2-A3A8-E37092276531}\InprocServer32\: “%Program Files%\BrowserCompanion\updatebhoWin32.dll”
  • HKLM\Software\Microsoft\Windows\CurrentVersion\Run\Browser companion helper: “%Program Files%\BrowserCompanion\BCHelper.exe /T=3 /CHI=ibgfbdggapddbjjbopabhlhianklajie”
Folders:
  • %Appdata%\Mozilla\Firefox\Profiles\gi17c3pt.default\extensions\bbrs_002@blabbers.com
  • %Appdata%\Mozilla\Firefox\Profiles\gi17c3pt.default\extensions\bbrs_002@blabbers.com\chrome
  • %Appdata%\Mozilla\Firefox\Profiles\gi17c3pt.default\extensions\bbrs_002@blabbers.com\chrome\content
  • %Appdata%\Mozilla\Firefox\Profiles\gi17c3pt.default\extensions\bbrs_002@blabbers.com\chrome\content\cache
  • %Appdata%\Mozilla\Firefox\Profiles\gi17c3pt.default\extensions\bbrs_002@blabbers.com\components
  • %Temp%\bch_1730.tmp
  • %Temp%\bch_3182.tmp
  • %Temp%\bch_ea72.tmp
  • %Profile%\AppData
  • %Profile%\AppData\LocalLow
  • %Profile%\AppData\LocalLow\bbrs_002.tb
  • %Profile%\AppData\LocalLow\bbrs_002.tb\content
  • %Profile%\AppData\LocalLow\bbrs_002.tb\content\cache
  • %Program Files%\BrowserCompanion
Files:
  • %Appdata%\Mozilla\Firefox\Profiles\gi17c3pt.default\extensions\bbrs_002@blabbers.com\chrome\content\bubble.js
  • %Appdata%\Mozilla\Firefox\Profiles\gi17c3pt.default\extensions\bbrs_002@blabbers.com\chrome\content\bubble.xul
  • %Appdata%\Mozilla\Firefox\Profiles\gi17c3pt.default\extensions\bbrs_002@blabbers.com\chrome\content\fix2.js
  • %Appdata%\Mozilla\Firefox\Profiles\gi17c3pt.default\extensions\bbrs_002@blabbers.com\chrome\content\icon.png
  • %Appdata%\Mozilla\Firefox\Profiles\gi17c3pt.default\extensions\bbrs_002@blabbers.com\chrome\content\jquery4toolbar.js
  • %Appdata%\Mozilla\Firefox\Profiles\gi17c3pt.default\extensions\bbrs_002@blabbers.com\chrome\content\lock.js
  • %Appdata%\Mozilla\Firefox\Profiles\gi17c3pt.default\extensions\bbrs_002@blabbers.com\chrome\content\style.xul
  • %Appdata%\Mozilla\Firefox\Profiles\gi17c3pt.default\extensions\bbrs_002@blabbers.com\chrome\content\witapi.js
  • %Appdata%\Mozilla\Firefox\Profiles\gi17c3pt.default\extensions\bbrs_002@blabbers.com\chrome\content\witmain.js
  • %Appdata%\Mozilla\Firefox\Profiles\gi17c3pt.default\extensions\bbrs_002@blabbers.com\chrome\content\wittoolbar.js
  • %Appdata%\Mozilla\Firefox\Profiles\gi17c3pt.default\extensions\bbrs_002@blabbers.com\chrome\content\witutils.js
  • %Appdata%\Mozilla\Firefox\Profiles\gi17c3pt.default\extensions\bbrs_002@blabbers.com\chrome.manifest
  • %Appdata%\Mozilla\Firefox\Profiles\gi17c3pt.default\extensions\bbrs_002@blabbers.com\components\handleProtocol.js
  • %Appdata%\Mozilla\Firefox\Profiles\gi17c3pt.default\extensions\bbrs_002@blabbers.com\install.rdf
  • %Appdata%\Mozilla\Firefox\Profiles\gi17c3pt.default\extensions\bbrs_002@blabbers.com\log.txt
  • %Temp%\Bla3.tmp
  • %Temp%\blabbers-ff-le.xpi
  • %Profile%\AppData\LocalLow\bbrs_002.tb\content\BCHelper.exe
  • %Profile%\AppData\LocalLow\bbrs_002.tb\content\fix2.js
  • %Profile%\AppData\LocalLow\bbrs_002.tb\content\icon.png
  • %Profile%\AppData\LocalLow\bbrs_002.tb\content\jquery4toolbar.js
  • %Profile%\AppData\LocalLow\bbrs_002.tb\content\lock.js
  • %Profile%\AppData\LocalLow\bbrs_002.tb\content\witapi.js
  • %Profile%\AppData\LocalLow\bbrs_002.tb\content\witmain.js
  • %Profile%\AppData\LocalLow\bbrs_002.tb\content\wittoolbar.js
  • %Profile%\AppData\LocalLow\bbrs_002.tb\content\witwidgetapi.js
  • %Program Files%\BrowserCompanion\BCHelper.exe
  • %Program Files%\BrowserCompanion\blabbers-ch.crx
  • %Program Files%\BrowserCompanion\blabbers-ff-full.xpi
  • %Program Files%\BrowserCompanion\jsloader.dll
  • %Program Files%\BrowserCompanion\logo.ico
  • %Program Files%\BrowserCompanion\sqlite3.dll
  • %Program Files%\BrowserCompanion\tdataprotocol.dll
  • %Program Files%\BrowserCompanion\toolbar.dll
  • %Program Files%\BrowserCompanion\uninstall.exe
  • %Program Files%\BrowserCompanion\updatebhoWin32.dll
  • %Program Files%\BrowserCompanion\updatebhoWin32.dll_1
  • %Program Files%\BrowserCompanion\updater.ini
  • %Program Files%\BrowserCompanion\widgetserv.exe


  • Recommended: UnHackMe anti-rootkit and anti-malware

    Premium software: RegRun Security Suite (Good choice for removal and protection)

    Written by

    Malware Hunter.

    Tags: BLABBERS-CH.CRX

    Comments

    Tell me what you're thinking...
    and oh, if you want a pic to show with your comment, go get a gravatar!

    You must be logged in to post a comment.