Home > Threats > Video ActiveX Object

What is Video ActiveX Object

Posted on 07 December 2007 under Trojans and viruses

1. What is Video ActiveX Object?

It is an infection pretending to be a video codec. User is not allowed to watch video content without this codec, so he is prompted to download it from by Video ActiveX Object Error dialog-box appeared: "Your browser cannot display this video file. You need to download new version of Video ActiveX Object to play this video file." A trojan will be installed on PC as well, that generates fake computer security alerts about virus and spyware found on victims machine. These alerts are being displayed in the effect to scare user and force him into buying rogue anti-spyware software.
After Video ActiveX Object download, Security Toolbar 7.1 has been added in Internet Explorer and home page has been changed to asecurityassurance.com.

Related rogue sites:

1.1. Video ActiveX Object download popups:

1.2. Video ActiveX Object Error:

2. How to remove Video ActiveX Object:

  1. Internet connection might be disabled or Internet browser might be blocked by Video ActiveX Object, so it won't be possible to download any files to infected computer. In this case please download all files required for Video ActiveX Object removal to another computer and then transfer them on the infected one using CD/DVD or USB flash drive.
  2. To remove Video ActiveX Object download Spyware Doctor and install the program (for the installation guide click here). Before installation, make sure all other programs and windows are closed.
  3. After the installation, computer scan should be started automatically. If so, please move to the next step. If not, click "Status" on the left side menu and press "Scan Now" button to run computer scanner as shown in the picture below:

  4. After the scan has been completed and scan results have been generated, press "Fix Checked" button to remove Video ActiveX Object.

  5. Restart the computer to complete Video ActiveX Object removal procedure.

3. Video ActiveX Object files:

ictmdl.dll, iesplugin.dll, isadd.dll, isaddon.dll, isfmdl.dll, VideoAccessCodecInstall.exe (setup file)

4. Hijackthis entries:

O2 Entries:
O2 - BHO: (no name) - {B499D34E-58EF-4927-AB9F-7AF52B2C4C82} - C:\Program Files\Online Video Add-on\isfmdl.dll *
* can also be found under these CLSIDs:
O2 - BHO: (no name) - {1a1ddc19-5893-43ab-a73f-f41a0f34d115} - C:\Program Files\Video ActiveX Object\isaddon.dll
O2 - BHO: (no name) - {A6ACAE64-F798-4930-AD86-BD3FB32038DB} - C:\Program Files\Video ActiveX Object\isadd.dll *
* can also be found under these CLSIDs:
O2 - BHO: (no name) - {D34F5D71-99E4-4D96-91CA-F4104F69B8AE} - C:\Program Files\Video AX Object\bpvol.dll *
* can also be found under these CLSIDs:
O3 Entries:
O3 - Toolbar: IE Custom Tools - {6CA49FDD-4AEB-4F08-A394-C0A1F82CAA16} - C:\Program Files\Video Add-on\ictmdl.dll *
* can also be found under these CLSIDs:
O3 - Toolbar: Protection Bar - {84938242-5C5B-4A55-B6B9-A1507543B418} - C:\Program Files\Video ActiveX Object\iesplugin.dll *
* can also be found under these CLSIDs: