WeirdOnTheWeb
|
Description:
|
Adware
|
|
Risk Level:
|
High
|
|
Date of First Occurence:
|
Monday, April 21, 2008
|
|
Software Developer:
|
(unknown)
|
|
Brief Info:
|
Adaware
Software that is displaying pop-up/pop-under windows containing advertisements when the primary user interface is not visible or displayed advertisements are not related to the product.
|
|
Removal:
|
This threat can be removed using "Spyware
Terminator"
|
ELIMINAR SPYWARE »
Geographical Distribution of Threat "WeirdOnTheWeb"
Threat Info
View All
Detected Items
- Detected Files:
%PROGRAMFILES%\AltPayments\AltPayments.exe
MD5: B1586301FB72E66495D1AAE4EA5B7843 Size:405504
MD5: 36BEFDA741A1CFF602F8C6F1F6286548 Size:401408
%PROGRAMFILES%\WeirdOnTheWeb\weirdontheweb.exe
MD5: E027695277ABC2B1AFDF0D9204E292EB Size:393216
MD5: B89AC5F4E1ACE8FC738F1BB506EAF3A7 Size:405504
MD5: 64A940EB2D505883A60BB44F9DC51B25 Size:405504
%PROGRAMFILES%\AltPayments\Agent.dll
MD5: D88486A1C496207A7D2DFC832F25CE92 Size:122880
%PROGRAMFILES%\WeirdOnTheWeb\WeirdOnTheWeb.exe
MD5: 8DA56EE4062D11C5F63A777A62AF64E3 Size:405504
- Detected Files with variable Filenames:
Detecting items list:
- Files by Name
%FAVORITES%\WeirdOnTheWeb.url
%ProgramFiles%\WeirdOnTheWeb\terms.txt
%ProgramFiles%\WeirdOnTheWeb\weirdontheweb.exe
%ProgramFiles%\AltPayments\AltPayments.exe
- Files by Directories
%ProgramFiles%\WeirdOnTheWeb
%ProgramFiles%\AltPayments
- Registry Keys
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WeirdOnTheWeb
HKLM\SOFTWARE\Revisions
HKLM\SOFTWARE\AltPayments
HKLM\SOFTWARE\WeirdOnTheWeb
- Registry Values
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ValueName=WeirdOnTheWeb
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ValueName=AltPayments
«
Go to Software Database
