AdWare.MailSkinner
|
Description:
|
Adware
|
|
Risk Level:
|
High
|
|
Date of First Occurence:
|
Monday, April 14, 2008
|
|
Software Developer:
|
(unknown)
|
|
Brief Info:
|
Adaware
Software that is displaying pop-up/pop-under windows containing advertisements when the primary user interface is not visible or displayed advertisements are not related to the product.
|
|
Removal:
|
This threat can be removed using "Spyware
Terminator"
|
SCAN & REMOVE NOW »
Geographical Distribution of Threat "AdWare.MailSkinner"
Threat Info
View All
Detected Items
- Detected Files:
%PROGRAMFILES%\Mailskinner\olskinner.dll
MD5: D23A7AC46BE84F97DD212B1828AF8DBF Size:74240
MD5: DA330A82DF6034EA1BBAE2C29A1F12EB Size:73728
%PROGRAMFILES%\Mailskinner\uninst.exe
MD5: C4C6EE6427331846A00D133CA61F8A9F Size:71678
%PROGRAMFILES%\MailSkinner\OLSkinner.dll
MD5: 18C0DEBFC596D1E4A93D25F52408D173 Size:69120
MD5: 0FE70B1B9603295A7EF72086280FA7D5 Size:35840
%PROGRAMFILES%\Mailskinner\oeskinner.dll
MD5: 3D978C7F75107927CCBD721190A15A31 Size:39936
MD5: 01078EF5AE2E202076F151DF291FC1EA Size:28160
MD5: C33327510B16E67AF281DD396CE3CB0A Size:44032
%PROGRAMFILES%\mailskinner\mailskinner.exe
MD5: 57D050D71B00AD8767AC8CC44AF82C24 Size:34816
- Detected Files with variable Filenames:
Detecting items list:
- Files by Name
%sysdir%\rdwidorbxb.exe
%sysdir%\oiqjrlengp.exe
%windir%\temp\msksetup.log
%windir%\msskinner\msbackup.dat
%programfiles%\Mailskinner\mailskinner.exe
%programfiles%\Mailskinner\olskinner.dll
%programfiles%\Mailskinner\oeskinner.dll
- Files by MD5
MD5: D3AA2ED8F2B7A8F6E5E2E084D034FD52 Size: 758432
MD5: 87F2E9DA73599CEC113A7B8962DDC207 Size: 357952
MD5: CCE120684AC0DB0CBD60BDD35A131E9A Size: 352768
MD5: 8C36AC4555D727A99D99DDFE3B1BF085 Size: 198656
MD5: D23A7AC46BE84F97DD212B1828AF8DBF Size: 74240
- Files by Directories
%windir%\msskinner
%programfiles%\Mailskinner
- Files by CLSID or Name
CLSID=180B4EE9-1795-4429-9651-F17A6515726D
- Registry Keys
HKCU\Software\mailskinner
HKLM\SOFTWARE\MailSkinner
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MailSkinner.exe
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MailSkinner
- Registry Values
HKCU\Software\Microsoft\Windows\CurrentVersion\Run ValueName=MailSkinner Value=%programfiles%\Mailskinner\mailskinner.exe
«
Go to Software Database