Virus

BHO/DLMax

Analysis

BHO/DLMax is detection for the Browser Helper Object component of the DLMax Software.
The software installs the BHO by creating an entry in the registry in the following path:
SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects.
And, probably will use the key:
         {00000000-59D4-4008-9058-080011001200}
Once installed, it can control information on Internet Explorer Settings and gather user's web browsing information.
BHO/DLMax is a dll file that has the following properties which can be spoofed.
Website: www.DLMax.biz
Program Name: DLMax
Filename and version: DLMax.dll 0.6.4.89

Recommended Action

Check the main screen using the web interface for your FortiGate unit to ensure that the latest AV/NIDS database has been downloaded and installed on your system - if required, enable the "Allow Push Update" option