IRCFast2 Installer

Category: Adware and PUAs
Type: Unspecified PUA

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Examples of IRCFast2 Installer include:

Example 1

File Information

Size
674K
SHA-1
00b91ef2a76c8bc099bbaf2f3d782fd73b8718e7
MD5
b9fa404eeff35143caad1b38db8028cd
CRC-32
33795dcf
File type
application/x-ms-dos-executable
First seen
2011-03-22

Runtime Analysis

HTTP Requests
  • http://downloads.sourceforge.net/sourceforge/azureus/Azureus_3.0.4.2_windows.exe
  • http://norwegian.toggle.com/lv/software/info.htm
  • http://norwegian.toggle.com/terms_raw.php
  • http://sourceforge.net/project/downloading.php
  • http://sourceforge.net/projects/azureus/files/x_obsolete/azureus-3.0.4.2/Azureus_3.0.4.2_windows.exe/download
  • http://ufpr.dl.sourceforge.net/sourceforge/azureus/Azureus_3.0.4.2_windows.exe
DNS Requests
  • downloads.sourceforge.net
  • norwegian.toggle.com
  • sourceforge.net
  • ufpr.dl.sourceforge.net

Example 2

File Information

Size
674K
SHA-1
0415f1d0ef9e962e249e0c5adbf65f76d8bc0a10
MD5
5913b8a7e1bade5b470792e9dd4a1b76
CRC-32
f1ab7ccc
File type
application/x-ms-dos-executable
First seen
2011-03-21

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Favorites\Traducteur.url
  • c:\Documents and Settings\test user\Desktop\Traducteur.url
    Size
    408
    SHA-1
    29d33930998d5a964e6a9bb1bdc74eaa05677583
    MD5
    0ea2d64eea7fb6ccf43d528c6b6b6177
    CRC-32
    b3f011ef
    File type
    application/octet-stream
    First seen
    2011-03-16
  • c:\Documents and Settings\test user\Start Menu\Programs\Jeux.url
  • c:\Documents and Settings\test user\Desktop\Jeux.url
  • c:\Documents and Settings\test user\Favorites\T□l□charger les programmes.url
    Size
    316
    SHA-1
    062115cebc73534f332edf7a77a61f6cf5a4c68d
    MD5
    c57cb193e8cad088acd0fed44e9b64c7
    CRC-32
    4ba55dfb
    First seen
    2011-03-16
  • c:\Documents and Settings\test user\Start Menu\Programs\T□l□charger les programmes.url
    Size
    316
    SHA-1
    062115cebc73534f332edf7a77a61f6cf5a4c68d
    MD5
    c57cb193e8cad088acd0fed44e9b64c7
    CRC-32
    4ba55dfb
    First seen
    2011-03-16
  • c:\Documents and Settings\test user\Start Menu\Programs\Vid□os.url
    Size
    394
    SHA-1
    d179d69e4205ef2b7365343bbe4444a186a439a5
    MD5
    05feeafefd75cbc327c5c81b2bc1980a
    CRC-32
    26891f46
    First seen
    2011-03-16
  • c:\Documents and Settings\test user\Desktop\T□l□charger les programmes.url
    Size
    316
    SHA-1
    062115cebc73534f332edf7a77a61f6cf5a4c68d
    MD5
    c57cb193e8cad088acd0fed44e9b64c7
    CRC-32
    4ba55dfb
    First seen
    2011-03-16
  • c:\Documents and Settings\test user\Local Settings\Temp\log.tmp
    Size
    65
    SHA-1
    6a5768f771289895be61a5ea01e2209314447524
    MD5
    b876dfcd6eaed9ea54ea1dd754b80ed9
    CRC-32
    b0195331
    File type
    application/octet-stream
    First seen
    2011-03-22
  • c:\Documents and Settings\test user\Favorites\Jeux.url
  • c:\Documents and Settings\test user\Start Menu\Programs\Traducteur.url
  • c:\Documents and Settings\test user\Favorites\Vid□os.url
    Size
    394
    SHA-1
    d179d69e4205ef2b7365343bbe4444a186a439a5
    MD5
    05feeafefd75cbc327c5c81b2bc1980a
    CRC-32
    26891f46
    First seen
    2011-03-16
  • c:\Documents and Settings\test user\Desktop\Vid□os.url
    Size
    394
    SHA-1
    d179d69e4205ef2b7365343bbe4444a186a439a5
    MD5
    05feeafefd75cbc327c5c81b2bc1980a
    CRC-32
    26891f46
    First seen
    2011-03-16
Registry Keys Created
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\MSHist012011032220110323
    CacheOptions
    0x0000000b
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\MSHist012011031420110321
    CacheOptions
    0x0000000b
Registry Keys Modified
  • HKCU\Software\Microsoft\Internet Explorer\Main
    Start Page
    http://french.ircfast2.com/index.php?rvs=hompag
HTTP Requests
  • http://connect.facebook.net/fr_FR/all.js
  • http://french.ircfast2.com/
  • http://french.ircfast2.com/index.php
  • http://french.ircfast2.com/javascript/fb_integration.js
  • http://french.ircfast2.com/lv/software/info.htm
  • http://french.ircfast2.com/terms_raw.php
  • http://media.ircfast2.com/javascript/jquery-1.4.2.min.js
  • http://media.ircfast2.com/javascript/jquery.cookie.js
  • http://media.ircfast2.com/javascript/jquery.getUrlParam.js
  • http://media.ircfast2.com/javascript/jquery.highlight-3.js
  • http://media.ircfast2.com/realircfast2/files/style/style.css
DNS Requests
  • connect.facebook.net
  • french.ircfast2.com
  • media.ircfast2.com

Example 3

File Information

Size
674K
SHA-1
1e50e830fad3fffd043290b58a1e94bbd14242e2
MD5
db6e2063ae60932aa3cbd430ac19d077
CRC-32
bb090f64
File type
application/x-ms-dos-executable
First seen
2011-01-26

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Start Menu\Programs\Jeux.url
    Size
    386
    SHA-1
    b23cbbc78531572d5a31ed98836f57908e9c0b7e
    MD5
    345c98cc4990d905a2640319b3016d07
    CRC-32
    5062bd9e
    File type
    application/octet-stream
    First seen
    2010-09-03
  • c:\Documents and Settings\test user\Desktop\Traducteur.url
    Size
    404
    SHA-1
    ece1dabecef740de375a213575006fdd2059d203
    MD5
    018a69a5807f618b6bb6ffe48702f4af
    CRC-32
    b80f13bc
    File type
    application/octet-stream
    First seen
    2010-09-03
  • c:\Documents and Settings\test user\Desktop\Jeux.url
    Size
    386
    SHA-1
    b23cbbc78531572d5a31ed98836f57908e9c0b7e
    MD5
    345c98cc4990d905a2640319b3016d07
    CRC-32
    5062bd9e
    File type
    application/octet-stream
    First seen
    2010-09-03
  • c:\Documents and Settings\test user\Start Menu\Programs\T□l□charger les programmes.url
    Size
    312
    SHA-1
    9162d74c2e74a763c831eadf7d68d1c511347898
    MD5
    08a96c9b10f77517602199334293bdd0
    CRC-32
    3090a6f6
    File type
    application/octet-stream
    First seen
    2010-09-03
  • c:\Documents and Settings\test user\Start Menu\Programs\Traducteur.url
    Size
    402
    SHA-1
    40b00128f0b785886b109b73d5940bd677f54a6b
    MD5
    bf74703c94fd7b96d5888a322008f974
    CRC-32
    d06977a6
    File type
    application/octet-stream
    First seen
    2010-09-03
  • c:\Documents and Settings\test user\Favorites\T□l□charger les programmes.url
    Size
    312
    SHA-1
    9162d74c2e74a763c831eadf7d68d1c511347898
    MD5
    08a96c9b10f77517602199334293bdd0
    CRC-32
    3090a6f6
    File type
    application/octet-stream
    First seen
    2010-09-03
  • c:\Documents and Settings\test user\Favorites\Vid□os.url
    Size
    390
    SHA-1
    e2ad1bc7fcd7cbf51de9c5a127d76557890a7a8a
    MD5
    319636b555f649b1f5de253245f71e4a
    CRC-32
    73ff6014
    File type
    application/octet-stream
    First seen
    2010-09-03
  • c:\Documents and Settings\test user\Desktop\T□l□charger les programmes.url
    Size
    312
    SHA-1
    9162d74c2e74a763c831eadf7d68d1c511347898
    MD5
    08a96c9b10f77517602199334293bdd0
    CRC-32
    3090a6f6
    File type
    application/octet-stream
    First seen
    2010-09-03
  • c:\Documents and Settings\test user\Desktop\Vid□os.url
    Size
    390
    SHA-1
    e2ad1bc7fcd7cbf51de9c5a127d76557890a7a8a
    MD5
    319636b555f649b1f5de253245f71e4a
    CRC-32
    73ff6014
    File type
    application/octet-stream
    First seen
    2010-09-03
  • c:\Documents and Settings\test user\Start Menu\Programs\Vid□os.url
    Size
    390
    SHA-1
    e2ad1bc7fcd7cbf51de9c5a127d76557890a7a8a
    MD5
    319636b555f649b1f5de253245f71e4a
    CRC-32
    73ff6014
    File type
    application/octet-stream
    First seen
    2010-09-03
  • c:\Documents and Settings\test user\Local Settings\Temp\log.tmp
    Size
    64
    SHA-1
    2e901def1d0cc5ae1418b54222f7802e308d56fb
    MD5
    3a777dd28a1896cbb44d32167e7ea22a
    CRC-32
    9b4f5414
    File type
    application/octet-stream
    First seen
    2011-01-27
  • c:\Documents and Settings\test user\Favorites\Jeux.url
    Size
    386
    SHA-1
    b23cbbc78531572d5a31ed98836f57908e9c0b7e
    MD5
    345c98cc4990d905a2640319b3016d07
    CRC-32
    5062bd9e
    File type
    application/octet-stream
    First seen
    2010-09-03
  • c:\Documents and Settings\test user\Favorites\Traducteur.url
    Size
    402
    SHA-1
    40b00128f0b785886b109b73d5940bd677f54a6b
    MD5
    bf74703c94fd7b96d5888a322008f974
    CRC-32
    d06977a6
    File type
    application/octet-stream
    First seen
    2010-09-03
Registry Keys Created
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\Cache\Extensible Cache\MSHist012011012720110128
    CacheRepair
    0x00000000
Registry Keys Modified
  • HKCU\Software\Microsoft\Internet Explorer\Main
    Start Page
    http://french.icrfast.com/index.php?rvs=hompag
HTTP Requests
  • http://french.icrfast.com/
  • http://french.icrfast.com/index.php
  • http://french.icrfast.com/lv/software/info.htm
  • http://french.icrfast.com/terms_raw.php
  • http://media.icrfast.com/ircfast/files/style/style.css
  • http://media.icrfast.com/javascript/jquery-1.4.2.min.js
  • http://media.icrfast.com/javascript/jquery.getUrlParam.js
  • http://media.icrfast.com/javascript/jquery.highlight-3.js
  • http://media.icrfast.com/javascript/jquery.ui.button.js
  • http://media.icrfast.com/javascript/jquery.ui.core.js
  • http://media.icrfast.com/javascript/jquery.ui.datepicker.min.js
  • http://media.icrfast.com/javascript/jquery.ui.dialog.js
  • http://media.icrfast.com/javascript/jquery.ui.draggable.js
  • http://media.icrfast.com/javascript/jquery.ui.mouse.js
  • http://media.icrfast.com/javascript/jquery.ui.position.js
  • http://media.icrfast.com/javascript/jquery.ui.widget.js
  • http://widgets.twimg.com/j/2/widget.js
DNS Requests
  • french.icrfast.com
  • media.icrfast.com
  • widgets.twimg.com

download Try Sophos products for free
Download now