IGetNet.v5
|
Description:
|
Spyware
|
|
Risk Level:
|
High
|
|
Date of First Occurence:
|
Wednesday, April 16, 2008
|
|
Software Developer:
|
IgetNet, LLC
|
|
Brief Info:
|
IGetNet is an adware program that redirects certain Web pages to www.igetnet.com.
|
|
Removal:
|
This threat can be removed using "Spyware
Terminator"
|
ELIMINAR SPYWARE »
Geographical Distribution of Threat "IGetNet.v5"
Threat Info
View All
Detected Items
- Detected Files:
%WINDIR%\SYSTEM\WINSTART001.EXE
MD5: 5E12960E1AB263BBE1D3DF2E8BB3FAC6 Size:90112
%WINDIR%\system\Winstart001.exe
MD5: 1D2DDE93AC16DDAE9978FCCBAF5EA9A3 Size:90112
%SYSDIR%\BHO001.DLL
MD5: 74D80B55349231A8F46E6856A0EF3124 Size:45056
%SYSDIR%\NLNP13.exe
MD5: 45EA7432D0670F7E3CA987855A806589 Size:113648
- Detected Files with variable Filenames:
Detecting items list:
- Files by Name
%SYSDIR%\BHO001.dll
%SYSDIR%\RSP001.dll
%SYSDIR%\Winstart001.exe
%winDIR%\system\Winstart001.exe
%SYSDIR%\Update_Com.DLL
%SYSDIR%\NLNP13.exe
- Files by Directories
%Temp%\etherXXXXa01400
- Files by CLSID or Name
CLSID=730F2451-A3FE-4A72-938C-FC8A74F15978
CLSID=676058E4-89BD-11D6-8A8C-0050BA8452C0
CLSID=60E78CAC-E9A7-4302-B9EE-8582EDE22FBF
CLSID=676058E3-89BD-11D6-8A8C-0050BA8452C0
CLSID=F94C0089-9394-4E44-B4EA-58DBA1F7B84E
CLSID=3c8cde30-d013-4093-b00e-adbc74f33315
CLSID=676058DB-89BD-11D6-8A8C-0050BA8452C0
CLSID=974CC25E-D62C-4278-84E6-A806726E37BC
CLSID=ACBA087F-1547-41DE-8E9E-3F0963CE4BEF
- Registry Values
HKLM\Software\Microsoft\Windows\CurrentVersion\Run ValueName=Winstart001.exe
«
Go to Software Database
