AdWarePatrol
|
Description:
|
Rogue Security Program
|
|
Risk Level:
|
Medium
|
|
Date of First Occurence:
|
Monday, April 14, 2008
|
|
Software Developer:
|
(unknown)
|
|
Brief Info:
|
Rogue/Suspect Anti-Spyware Product
"Rogue/Suspect" means that these products are of unknown, questionable, or dubious value as anti-spyware protection.
|
|
Removal:
|
This threat can be removed using "Spyware
Terminator"
|
SCAN & REMOVE NOW »
Geographical Distribution of Threat "AdWarePatrol"
Threat Info
View All
Detected Items
- Detected Files:
- Detected Files with variable Filenames:
MD5: D2433871FC0C69888BED8AB0FE6E5B4A Size: 79195
%PROGRAMFILES%\Antivirus Protection\SpyWares\spydb.exe
%PROGRAMFILES%\Antivirus Protection\SpyWares\spydb.exe.ren
%SystemDiskRoot%\System Volume Information\_restore{4ACDFF6F-D5EC-48E9-A9E6-42E3236630DA}\RP54\A0010716.exe
%SystemDiskRoot%\System Volume Information\_restore{4ACDFF6F-D5EC-48E9-A9E6-42E3236630DA}\RP45\A0006476.exe
%USERPROFILE%\Local Settings\Temporary Internet Files\Content.IE5\CS4ZZ52A\spydb[1].exe
%USERPROFILE%\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RHX2O0X7\spydb[1].exe
%USERPROFILE%\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KG8OJNB9\spydb[1].exe
%PROGRAMFILES%\SpyDestroy Pro\SpyWares\spydb.exe
%SystemDiskRoot%\Users\chrissy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\J7AFRYL2\spydb[1].exe
%SystemDiskRoot%\RECYCLER\NPROTECT\00013281.exe
%USERPROFILE%\Local Settings\Temporary Internet Files\Content.IE5\G36B4TEJ\spydb[1].exe
and next 24 variations.
Detecting items list:
- Files by Name
%PROGRAMFILES%\Adware Patrol\AdwarePatrol.exe
%PROGRAMFILES%\Adware Patrol\SpyWares\spydb.exe
%START_PROGRAMS%\Adware Patrol\Adware Patrol.lnk
%START_PROGRAMS%\Adware Patrol\Uninstall.lnk
%START_PROGRAMS%\Adware Patrol\Website.lnk
%DESKTOP%\Adware Patrol.lnk
- Files by MD5
MD5: 6790FBFB852A5BE8F8D9F656792DC659 Size: 402324
MD5: DB25508480A098303633637338B298EA Size: 749568
MD5: D2433871FC0C69888BED8AB0FE6E5B4A Size: 79195
- Files by Directories
%PROGRAMFILES%\Adware Patrol
%START_PROGRAMS%\Adware Patrol
- Registry Keys
HKLM\SOFTWARE\Mandel Enterprise\Adware Patrol
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\AdwarePatrol.exe
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Adware Patrol
HKCU\Software\Local AppWizard-Generated Applications\Adware Patrol
«
Go to Software Database