CasinoClient
|
Description:
|
Adware
|
|
Risk Level:
|
High
|
|
Date of First Occurence:
|
Tuesday, April 29, 2008
|
|
Software Developer:
|
(unknown)
|
|
Brief Info:
|
CasinoClient is an adware program that logs keywords typed in Web-based search engines, such as Google.
|
|
Removal:
|
This threat can be removed using "Spyware
Terminator"
|
ENTFERNEN SPYWARE »
Geographical Distribution of Threat "CasinoClient"
Threat Info
View All
Detected Items
- Detected Files:
%WINDIR%\PF78.EXE
MD5: 2750A38B611B673F1777F59D06392BC9 Size:229554
MD5: DF6E826AE5B417EC24DBC698A92D953C Size:219080
MD5: 35CC2134573AA8229062A6495EE96223 Size:229288
MD5: 307A6531C83B5957493548C596BE39D1 Size:232749
%WINDIR%\PF79.EXE
MD5: 4D7FCEDE83357A30C78C2F2DA1F19814 Size:52104
%PROGRAMFILES%\cmsystem\Uninstall.exe
MD5: 578D01289E215A31DE47DD6515BAED85 Size:33630
%PROGRAMFILES%\cmsystem\cmappupdate.exe
MD5: 2543D7691E330F08917F553E6E5E9F7A Size:220665
%PROGRAMFILES%\cmsystem\cmsystem.exe
MD5: 434D52F7C5F6AA3E716CBB13C3CA8707 Size:290816
%PROGRAMFILES%\CMSystem\plugin.dll
MD5: 84A9F24C9963C038A8D7ADDC130163BB Size:90112
%PROGRAMFILES%\cmapp\client\uninstall.exe
MD5: ACD1F5542044CA37DE9FE08C4630EA58 Size:33623
%PROGRAMFILES%\cmapp\client\cmappupdate.exe
MD5: 07E13264ED75F0A47B811AD305CB3272 Size:152071
MD5: 915AEAE76F089DB01ED3626262DFCB5C Size:175214
MD5: 96CC331AF82D316C72505B1B59DC7716 Size:229705
%PROGRAMFILES%\cmapp\client\cmappclient.exe
MD5: 830E600DE6E728DD48D4D254623E6BB3 Size:290816
%WINDIR%\SYSC00.EXE
MD5: DDA0E48B94A163AB6CE6FC0705B27F2C Size:98304
%PROGRAMFILES%\cmapp\client\cmappmf.dll
MD5: 19A2F2201C0140DA63030C8BA47FDAA7 Size:90112
- Detected Files with variable Filenames:
MD5: DF6E826AE5B417EC24DBC698A92D953C Size: 219080
%WINDIR%\PF78.EXE
%SystemDiskRoot%\QooBox\Quarantine\C\WINDOWS\pf78.exe.vir
Detecting items list:
- Files by Name
%programfiles%\cmapp\client\cmappclient.exe
%programfiles%\cmapp\client\cmappmf.dll
%programfiles%\cmapp\client\cmappupdate.exe
%programfiles%\cmapp\client\uninstall.exe
%programfiles%\cmsystem\cmsystem.exe
%programfiles%\cmsystem\plugin.dll
%programfiles%\cmsystem\uninstall.exe
%programfiles%\system files\plugin.dll
%programfiles%\system files\system.exe
%programfiles%\system files\upd2.exe
%programfiles%\system files\uninstall.exe
%windir%\KGFBEKZA.EXE
%windir%\PF79.EXE
%windir%\SYSC00.EXE
%windir%\MS05648048-1744.EXE
%windir%\CHECKS02.EXE
%WINDIR%\ksdmum*.exe
%windir%\PF78.EXE
- Files by MD5
MD5: B25038B5287626F88D9A5D80F4AC7101 Size: 515280
- Files by Directories
%programfiles%\cmsystem
- Files by CLSID or Name
CLSID=8253d547-38dd-4325-b35a-f1817edfa5f5
- Registry Keys
HKCU\software\cas
HKCU\software\cas2
«
Go to Software Database
