Preload

Categoria: Adware e PUA Opzioni di protezione ora disponibili:09 ott 2013 17:45:00 (GMT)
Tipo: Adware Ultimo aggiornamento:25 lug 2014 16:40:15 (GMT)

Download Scaricate il nostro Virus Removal Tool: è gratis! - Scoprite le minacce che sono sfuggite al vostro antivirus

Examples of Preload include:

Example 1

File Information

Size
1.3M
SHA-1
000028ef8f0a4eca3e2a12a02d8dcb411db9efea
MD5
7c02842fd1af667935b57d2dff913f39
CRC-32
011a6c9f
File type
Windows executable
First seen
2013-10-28

Runtime Analysis

Dropped Files
  • C:\Program Files\DDownload keeper\HgxCDnqv.x64.dll
    Size
    319K
    SHA-1
    184c60aafbb12d1023b1ce2aff4d3708607a75a1
    MD5
    4f5c722b8686afbea6f09c53171d44ca
    CRC-32
    5288e8e7
    File type
    Windows executable
    First seen
    2013-10-08
  • C:\Program Files\DDownload keeper\HgxCDnqv.dat
  • C:\Documents and Settings\All Users\Application Data\DDownload keeper\haVdmBoYN.exe
    Size
    471K
    SHA-1
    2315be5c129efe4fac36850b225ca2ebeec196ae
    MD5
    297c46f413d3c5c5b46e335adf199c09
    CRC-32
    4ccdef89
    File type
    Windows executable
    First seen
    2013-10-27
  • C:\Documents and Settings\All Users\Application Data\DDownload keeper\haVdmBoYN.dat
  • C:\Documents and Settings\All Users\Application Data\5d5d60c3d6235bf2\{C1A27135-69EB-8D44-7358-34727DD7B820}
  • C:\Program Files\DDownload keeper\HgxCDnqv.dll
    Size
    258K
    SHA-1
    0b9e805077320b0ce1e6620488bd34f1c4d7827e
    MD5
    e1d10cccd5dde588af8ee2cb7309523c
    CRC-32
    d52cba8e
    File type
    Windows executable
    First seen
    2013-10-08
  • C:\Program Files\DDownload keeper\HgxCDnqv.tlb
Registry Keys Created
  • HKCR\CLSID\{58CDAA19-A205-58D0-918A-BCAEA4381C9C}\ProgID
    (Default)
    DownlouaD keeupeerr.1.6
  • HKCR\keeupeerr\CurVer
    (Default)
    DownlouaD keeupeerr.1.6
  • HKCR\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}\TypeLib
    Version
    1.0
  • HKCR\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}\ProxyStubClsid32
    (Default)
    {00020424-0000-0000-C000-000000000046}
  • HKCR\keeupeerr
    (Default)
    DDownload keeper
  • HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C1A27135-69EB-8D44-7358-34727DD7B820}
    _In
    20131029
  • HKCR\CLSID\{58CDAA19-A205-58D0-918A-BCAEA4381C9C}\VersionIndependentProgID
    (Default)
    DownlouaD keeupeerr
  • HKCR\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}\1.0\0\win64
    (Default)
    C:\Program Files\DDownload keeper\HgxCDnqv.tlb
  • HKCR\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}\1.0
    (Default)
    IEPluginLib
  • HKCR\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}\1.0\HELPDIR
    (Default)
    C:\Program Files\DDownload keeper
  • HKCR\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}\ProxyStubClsid32
    (Default)
    {00020424-0000-0000-C000-000000000046}
  • HKCR\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
    (Default)
    IIEPluginMain
  • HKCR\CLSID\{58CDAA19-A205-58D0-918A-BCAEA4381C9C}
    (Default)
    DDownload keeper
  • HKCR\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}\ProxyStubClsid
    (Default)
    {00020424-0000-0000-C000-000000000046}
  • HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Ext\CLSID
    {58CDAA19-A205-58D0-918A-BCAEA4381C9C}
    1
  • HKCR\CLSID\{58CDAA19-A205-58D0-918A-BCAEA4381C9C}\InprocServer32
    ThreadingModel
    Apartment
  • HKCR\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
    (Default)
    ILocalStorage
  • HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{58CDAA19-A205-58D0-918A-BCAEA4381C9C}
    NoExplorer
    0x00000001
  • HKCR\keeupeerr.1.6\CLSID
    (Default)
    {58CDAA19-A205-58D0-918A-BCAEA4381C9C}
  • HKCR\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}\1.0\0\win32
    (Default)
    C:\Program Files\DDownload keeper\HgxCDnqv.dll
  • HKCR\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}\ProxyStubClsid
    (Default)
    {00020424-0000-0000-C000-000000000046}
  • HKCR\keeupeerr.1.6
    (Default)
    DDownload keeper
  • HKCR\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}\1.0\FLAGS
    (Default)
  • HKCR\keeupeerr\CLSID
    (Default)
    {58CDAA19-A205-58D0-918A-BCAEA4381C9C}
  • HKCR\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}\TypeLib
    Version
    1.0
Processes Created
  • c:\docume~1\support\locals~1\temp\00294823\havdmboyn.exe
  • c:\windows\system32\regsvr32.exe

Example 2

File Information

Size
1.2M
SHA-1
0001ee1b75f545cf360e0984416ecf706d4dd7a7
MD5
313c6dac76a00768281eeced2eccc935
CRC-32
814ac56d
File type
Windows executable
First seen
2007-08-23

Runtime Analysis

Dropped Files
  • C:\bin\{C1A27135-69EB-8D44-7358-34727DD7B820}
  • C:\Documents and Settings\All Users\Application Data\DuownlOaedo keepeRR\39.tlb
  • C:\Documents and Settings\All Users\Application Data\DuownlOaedo keepeRR\39.dat
  • C:\Documents and Settings\All Users\Application Data\DuownlOaedo keepeRR\39.dll
    Size
    258K
    SHA-1
    0b9e805077320b0ce1e6620488bd34f1c4d7827e
    MD5
    e1d10cccd5dde588af8ee2cb7309523c
    CRC-32
    d52cba8e
    File type
    Windows executable
    First seen
    2013-10-08
  • C:\Documents and Settings\All Users\Application Data\DuownlOaedo keepeRR\7p2.dat
  • C:\Documents and Settings\All Users\Application Data\DuownlOaedo keepeRR\7p2.exe
    Size
    334K
    SHA-1
    0b55e56a6add6b4dd4ceff475a0018a203d02a5a
    MD5
    8300c91b40229b42301aebc6d8859907
    CRC-32
    b0fcf226
    File type
    Windows executable
    First seen
    2013-09-03
Registry Keys Created
  • HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39E9CDC8-2056-6BFC-2C6F-521CC5040792}
    NoExplorer
    0x00000001
  • HKCR\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}\ProxyStubClsid32
    (Default)
    {00020424-0000-0000-C000-000000000046}
  • HKCR\keeeper.1.6
    (Default)
    DuownlOaedo keepeRR
  • HKCR\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}\ProxyStubClsid32
    (Default)
    {00020424-0000-0000-C000-000000000046}
  • HKCR\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}\TypeLib
    Version
    1.0
  • HKCR\CLSID\{39E9CDC8-2056-6BFC-2C6F-521CC5040792}\VersionIndependentProgID
    (Default)
    DoWnloiad keeeper
  • HKCR\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}\1.0\HELPDIR
    (Default)
    C:\Documents and Settings\All Users\Application Data\DuownlOaedo keepeRR
  • HKCR\CLSID\{39E9CDC8-2056-6BFC-2C6F-521CC5040792}\InprocServer32
    ThreadingModel
    Apartment
  • HKCR\keeeper
    (Default)
    DuownlOaedo keepeRR
  • HKCR\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}\1.0\0\win64
    (Default)
    C:\Documents and Settings\All Users\Application Data\DuownlOaedo keepeRR\39.tlb
  • HKCR\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
    (Default)
    IIEPluginMain
  • HKCR\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}\TypeLib
    Version
    1.0
  • HKCR\CLSID\{39E9CDC8-2056-6BFC-2C6F-521CC5040792}
    (Default)
    DuownlOaedo keepeRR
  • HKCR\keeeper\CurVer
    (Default)
    DoWnloiad keeeper.1.6
  • HKCR\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}\1.0\0\win32
    (Default)
    C:\Documents and Settings\All Users\Application Data\DuownlOaedo keepeRR\39.dll
  • HKCR\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}\ProxyStubClsid
    (Default)
    {00020424-0000-0000-C000-000000000046}
  • HKCR\keeeper\CLSID
    (Default)
    {39E9CDC8-2056-6BFC-2C6F-521CC5040792}
  • HKCR\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
    (Default)
    ILocalStorage
  • HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C1A27135-69EB-8D44-7358-34727DD7B820}
    _In
    20131029
  • HKCR\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}\1.0\FLAGS
    (Default)
  • HKCR\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}\1.0
    (Default)
    IEPluginLib
  • HKCR\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}\ProxyStubClsid
    (Default)
    {00020424-0000-0000-C000-000000000046}
  • HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Ext\CLSID
    {39E9CDC8-2056-6BFC-2C6F-521CC5040792}
    1
  • HKCR\CLSID\{39E9CDC8-2056-6BFC-2C6F-521CC5040792}\ProgID
    (Default)
    DoWnloiad keeeper.1.6
  • HKCR\keeeper.1.6\CLSID
    (Default)
    {39E9CDC8-2056-6BFC-2C6F-521CC5040792}
Processes Created
  • c:\docume~1\support\locals~1\temp\00294823\7p2.exe

Example 3

File Information

Size
1.3M
SHA-1
000224c4eaf28da68751dd1c3ade3100f23dc96d
MD5
62d4d60dba1ca2fb51bcdde554761dde
CRC-32
8eed8e98
File type
Windows executable
First seen
2007-09-01

Runtime Analysis

Dropped Files
  • C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\content.js
  • C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\OHi.js
  • C:\Documents and Settings\Guest\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\manifest.json
  • c:\Documents and Settings\test user\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\manifest.json
  • C:\Documents and Settings\Guest\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\content.js
  • C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\OHi.js
  • c:\Documents and Settings\test user\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\background.html
  • C:\Documents and Settings\Administrator\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\manifest.json
  • c:\Documents and Settings\test user\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\manifest.json
  • C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\lsdb.js
  • C:\Documents and Settings\Administrator\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\lsdb.js
  • C:\Documents and Settings\Guest\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\OHi.js
  • C:\Documents and Settings\Administrator\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\OHi.js
  • c:\Documents and Settings\test user\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\OHi.js
  • C:\Documents and Settings\Administrator\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\OHi.js
  • C:\Documents and Settings\ASPNET\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\content.js
  • C:\Documents and Settings\Guest\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\content.js
  • C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\background.html
  • c:\Documents and Settings\test user\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\background.html
  • c:\Documents and Settings\test user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\content.js
  • C:\Documents and Settings\Administrator\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\manifest.json
  • c:\Documents and Settings\test user\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\background.html
  • c:\Documents and Settings\test user\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\content.js
  • C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\OHi.js
  • C:\Documents and Settings\SophosSAUPC0\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\background.html
  • C:\Documents and Settings\SophosSAUPC0\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\background.html
  • c:\Documents and Settings\test user\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\content.js
  • C:\Documents and Settings\ASPNET\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\OHi.js
  • C:\Documents and Settings\ASPNET\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\content.js
  • C:\Documents and Settings\SophosSAUPC0\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\lsdb.js
  • C:\Documents and Settings\ASPNET\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\manifest.json
  • C:\Documents and Settings\All Users\Application Data\suRf, and keeep\c6.dat
  • C:\Documents and Settings\Administrator\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\content.js
  • C:\Documents and Settings\Guest\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\manifest.json
  • C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\background.html
  • C:\Documents and Settings\Guest\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\OHi.js
  • C:\Documents and Settings\Guest\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\background.html
  • C:\Documents and Settings\SophosSAUPC0\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\OHi.js
  • C:\Documents and Settings\Administrator\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\background.html
  • C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\OHi.js
  • C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\background.html
  • C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\lsdb.js
  • C:\Documents and Settings\Guest\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\lsdb.js
  • C:\Documents and Settings\Administrator\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\background.html
  • c:\Documents and Settings\test user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\OHi.js
  • C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\manifest.json
  • c:\Documents and Settings\test user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\background.html
  • C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\manifest.json
  • C:\Documents and Settings\SophosSAUPC0\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\manifest.json
  • c:\Documents and Settings\test user\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\lsdb.js
  • C:\Documents and Settings\Guest\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\OHi.js
  • c:\Documents and Settings\test user\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\lsdb.js
  • C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\background.html
  • C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\content.js
  • C:\Documents and Settings\ASPNET\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\content.js
  • C:\Documents and Settings\All Users\Application Data\5d5d60c3d6235bf2\{A35CA8FF-CB7D-8361-1CB9-83219CD11C78}
  • C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\content.js
  • C:\Documents and Settings\ASPNET\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\background.html
  • c:\Documents and Settings\test user\AppData\LocalLow\{1086E010-0BEB-1962-763C-DE963FF42587}\suRf, and keeep.2.7.dat
  • C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\manifest.json
  • C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\manifest.json
  • c:\Documents and Settings\test user\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\OHi.js
  • c:\Documents and Settings\test user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\manifest.json
  • C:\Documents and Settings\Guest\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\OHi.js
  • c:\Documents and Settings\test user\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\OHi.js
  • C:\Documents and Settings\ASPNET\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\OHi.js
  • C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\background.html
  • C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\lsdb.js
  • C:\Documents and Settings\SophosSAUPC0\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\content.js
  • c:\Documents and Settings\test user\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\manifest.json
  • C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\background.html
  • C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\OHi.js
  • C:\Documents and Settings\Guest\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\content.js
  • C:\Documents and Settings\ASPNET\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\lsdb.js
  • C:\Documents and Settings\ASPNET\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\background.html
  • C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\OHi.js
  • C:\Documents and Settings\SophosSAUPC0\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\content.js
  • C:\Documents and Settings\Administrator\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\lsdb.js
  • C:\Documents and Settings\ASPNET\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\lsdb.js
  • C:\Documents and Settings\ASPNET\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\lsdb.js
  • C:\Documents and Settings\ASPNET\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\lsdb.js
  • c:\Documents and Settings\test user\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\lsdb.js
  • C:\Program Files\suRf, and keeep\E.dat
  • C:\Documents and Settings\ASPNET\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\OHi.js
  • C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\manifest.json
  • C:\Documents and Settings\Guest\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\background.html
  • C:\Documents and Settings\ASPNET\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\content.js
  • C:\Documents and Settings\Guest\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\background.html
  • C:\Documents and Settings\ASPNET\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\background.html
  • C:\Documents and Settings\Guest\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\content.js
  • C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\lsdb.js
  • C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\lsdb.js
  • C:\Documents and Settings\SophosSAUPC0\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\manifest.json
  • C:\Documents and Settings\SophosSAUPC0\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\OHi.js
  • C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\manifest.json
  • C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\background.html
  • C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\lsdb.js
  • C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\lsdb.js
  • C:\Documents and Settings\Guest\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\manifest.json
  • C:\Documents and Settings\ASPNET\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\OHi.js
  • C:\Documents and Settings\ASPNET\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\manifest.json
  • C:\Documents and Settings\Guest\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\lsdb.js
  • C:\Documents and Settings\Guest\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\lsdb.js
  • C:\Documents and Settings\Guest\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\manifest.json
  • C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\content.js
  • C:\Documents and Settings\Guest\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\background.html
  • C:\Documents and Settings\SophosSAUPC0\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\content.js
  • C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\OHi.js
  • C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\lsdb.js
  • C:\Documents and Settings\SophosSAUPC0\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\manifest.json
  • C:\Documents and Settings\SophosSAUPC0\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\content.js
  • C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\background.html
  • C:\Documents and Settings\SophosSAUPC0\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\lsdb.js
  • C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\OHi.js
  • C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\manifest.json
  • C:\Documents and Settings\SophosSAUPC0\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\lsdb.js
  • C:\Documents and Settings\SophosSAUPC0\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\background.html
  • C:\Program Files\suRf, and keeep\E.dll
  • C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\background.html
  • C:\Program Files\suRf, and keeep\E.tlb
  • C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\content.js
  • C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\manifest.json
  • C:\Documents and Settings\SophosSAUPC0\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\manifest.json
  • C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\content.js
  • C:\Program Files\suRf, and keeep\E.x64.dll
  • C:\Documents and Settings\SophosSAUPC0\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\OHi.js
  • C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\content.js
  • C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\OHi.js
  • C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\manifest.json
  • C:\Documents and Settings\SophosSAUPC0\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\background.html
  • C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\OHi.js
  • C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\lsdb.js
  • C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\manifest.json
  • C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\content.js
  • C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\lsdb.js
  • C:\Documents and Settings\ASPNET\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\background.html
  • C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\content.js
  • C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\content.js
  • C:\Documents and Settings\SophosSAUPC0\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\OHi.js
  • c:\Documents and Settings\test user\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\content.js
  • C:\Documents and Settings\ASPNET\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\manifest.json
  • C:\Documents and Settings\Guest\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\lsdb.js
  • c:\Documents and Settings\test user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\lsdb.js
  • C:\Documents and Settings\SophosSAUPC0\Local Settings\Application Data\Torch\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\lsdb.js
  • C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\background.html
  • C:\Documents and Settings\Administrator\Local Settings\Application Data\Comodo\Dragon\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\content.js
  • C:\Documents and Settings\All Users\Application Data\suRf, and keeep\c6.exe
  • C:\Documents and Settings\ASPNET\Local Settings\Application Data\Google\Chrome SxS\User Data\Default\Extensions\ffjohndjiifmmfcmefamnonhipjkabnl\2.3\manifest.json
Registry Keys Created
  • HKCR\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}\TypeLib
    Version
    1.0
  • HKCR\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}\ProxyStubClsid32
    (Default)
    {00020424-0000-0000-C000-000000000046}
  • HKCR\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}\ProxyStubClsid32
    (Default)
    {00020424-0000-0000-C000-000000000046}
  • HKCR\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
    (Default)
    IRegistry
  • HKCR\keoePP\CLSID
    (Default)
    {1086E010-0BEB-1962-763C-DE963FF42587}
  • HKCR\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}\TypeLib
    Version
    1.0
  • HKCR\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
    (Default)
    ILocalStorage
  • HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A35CA8FF-CB7D-8361-1CB9-83219CD11C78}
    _In
    20140124
  • HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Ext\CLSID
    {1086E010-0BEB-1962-763C-DE963FF42587}
    1
  • HKCR\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}\1.0\0\win32
    (Default)
    C:\Program Files\suRf, and keeep\E.tlb
  • HKCR\CLSID\{1086E010-0BEB-1962-763C-DE963FF42587}\ProgID
    (Default)
    surf annd keoePP.2.3
  • HKCR\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}\ProxyStubClsid
    (Default)
    {00020424-0000-0000-C000-000000000046}
  • HKCR\keoePP.2.3\CLSID
    (Default)
    {1086E010-0BEB-1962-763C-DE963FF42587}
  • HKCR\keoePP
    (Default)
    suRf, and keeep
  • HKCR\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}\ProxyStubClsid32
    (Default)
    {00020424-0000-0000-C000-000000000046}
  • HKCR\CLSID\{1086E010-0BEB-1962-763C-DE963FF42587}\InprocServer32
    ThreadingModel
    Apartment
  • HKCR\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}\ProxyStubClsid
    (Default)
    {00020424-0000-0000-C000-000000000046}
  • HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1086E010-0BEB-1962-763C-DE963FF42587}
    NoExplorer
    0x00000001
  • HKCR\CLSID\{1086E010-0BEB-1962-763C-DE963FF42587}
    (Default)
    suRf, and keeep
  • HKCR\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}\1.0\FLAGS
    (Default)
  • HKCR\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
    (Default)
    IIEPluginMain
  • HKCR\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}\1.0
    (Default)
    IEPluginLib
  • HKCR\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}\TypeLib
    Version
    1.0
  • HKCR\keoePP.2.3
    (Default)
    suRf, and keeep
  • HKCU\Software\RegisteredApplicationsEx
    f2ead4b48f91863dc51e7cb356c2759d
    1
  • HKCR\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}\1.0\HELPDIR
    (Default)
    C:\Program Files\suRf, and keeep
  • HKCR\keoePP\CurVer
    (Default)
    surf annd keoePP.2.3
  • HKCR\CLSID\{1086E010-0BEB-1962-763C-DE963FF42587}\VersionIndependentProgID
    (Default)
    surf annd keoePP
  • HKCR\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}\ProxyStubClsid
    (Default)
    {00020424-0000-0000-C000-000000000046}
Processes Created
  • c:\docume~1\support\locals~1\temp\00294823\c6.exe

scarica Prova gratuita dei prodotti Sophos
Scarica subito