AproposMedia
|
Description:
|
Adware
|
|
Risk Level:
|
High
|
|
Date of First Occurence:
|
Thursday, April 17, 2008
|
|
Software Developer:
|
PeopleOnPage, Inc.
|
|
Brief Info:
|
AproposMedia is an advert-showing part of the ??PeopleOnPage?? program (peopleonpage.com), an Internet Explorer sidebar which claims to show a list of other users of the current site.
|
|
Removal:
|
This threat can be removed using "Spyware
Terminator"
|
RIMUOVI SPYWARE »
Geographical Distribution of Threat "AproposMedia"
Threat Info
View All
Detected Items
- Detected Files:
%TEMP%\midaddle.exe
MD5: F82709BFC8BAD8DFA721E0318A780ADD Size:218695
MD5: 6096366159A9BDC68847C35EE38AC953 Size:124882
MD5: B618658257F8367E3EDF7E5F9BCABC9F Size:175022
%PROGRAMFILES%\sysai\wingenerics.dll
MD5: 0BAB7E2C6325E469280B9D6F67D56364 Size:573440
MD5: B54E34F74047C3820D74F76D3EB07C30 Size:581632
MD5: 7FC31CC3B699DD684D0E5F668FD86EAB Size:573440
MD5: 23A28EAFF36F4243DDAFD88D5FF9E267 Size:581632
%PROGRAMFILES%\sysai\uninstaller.exe
MD5: 7139F48F02F2AD989D69ADC54B759F8C Size:151552
MD5: D94AAF9E3A036538D2A87BF059C2D8B6 Size:151552
MD5: A5353D15F5DA7694C8DBC7D22A252BBB Size:151552
MD5: ADFC7E112E63E9F89C17CC2E452F0FC2 Size:139264
%PROGRAMFILES%\sysai\pstub0\proxystub.dll
MD5: 00AF80C735DEDB47632C2540599636B2 Size:28672
MD5: DFAFE0B93419C1E5C123BF40D669C2B4 Size:28672
%PROGRAMFILES%\sysai\proxystub.dll
MD5: EAE1DACC4175E471E85058C0DF478E1A Size:28672
MD5: 384A2A5A05AF8E7DA48D791F7A241F96 Size:28672
MD5: 444E346AC2B8F422E9E99B0814A48091 Size:28672
MD5: 093121682BF8C845C44F38F159AABFEB Size:28672
%PROGRAMFILES%\sysai\plg0\aproposplugin.dll
MD5: 3330B50DFAE6AA0A6E95D33A6C7C59C0 Size:61440
MD5: 337A2655CAA19353C279DEF5DA6B40E6 Size:61440
%PROGRAMFILES%\sysai\aproposplugin.dll
MD5: 74F563339288CFAF96BA9E1AEE401B18 Size:61440
MD5: BA4A6180BE98BF7CF2420FAFDFF56AD6 Size:61440
MD5: 9CD73C3B7507DBADCF083169240F8A5F Size:61440
MD5: 568BC85764BBF0A84CB9C548D022B9B6 Size:65536
%TEMP%\~apropos0\atla.dll
MD5: 7D9FE192EFCFCBCEB30EF9AB14E24014 Size:73785
MD5: 2DD076D4A384271F1F05E403290D0FA4 Size:73785
%TEMP%\magicinlayinstall.exe
MD5: 00ECDB36B10A718162AAFC5AB0977A5D Size:5709440
MD5: 31ACB72613F88A7FBCFA26B3AFA1DC54 Size:4128768
%PROGRAMFILES%\AUTOUPDATE\AUTOUPDATE.EXE
MD5: 72A0A7D7281246DF57AB1BCEC5D38504 Size:402906
MD5: BBA48A351A4E00CFBC3D5E196DC935B2 Size:23564
%TEMP%\cxtpls_loader.exe
MD5: DD6FE8F5D54368F1857C566F5A8CB280 Size:192512
MD5: 262CF7EBD18BDBC6D08A0AFE1339B326 Size:90112
MD5: B8D9184173AD6D4C69BF21CDFD8EB0DF Size:172072
%WINDIR%\temp\update_1.exe
MD5: 21032541A27FD96D8C4D8D5B8E09539F Size:143027
MD5: EB0959ADC821E1EB40EA59A6B53A0664 Size:143034
MD5: 50022FB235B6C77342DF77E2E51A5BA8 Size:142614
%WINDIR%\temp\updater.exe
MD5: F75A0B2611752E5D6BE2DDC2C7C390A2 Size:200704
MD5: 96A77134DFD099EC7124AFC131B74E86 Size:36864
MD5: 0C72055CE1F803A354346C2C3AEE3DFA Size:328976
MD5: 599E42C2C408A756D155DD2BFBC7BB84 Size:200704
MD5: 00035865441FFC5A1532518842049096 Size:151552
%WINDIR%\temp\all_files10.exe
MD5: ACC385DAD91FE73012F651E511FEC5F3 Size:796158
MD5: 1F67D64890EA394FE2C430486392AD61 Size:761432
MD5: 8DEDC67ADC9EAFB61A9A04F1C499E7BD Size:484360
%WINDIR%\temp\addit.exe
MD5: E3AE10391B1A5E71D0F9BF07CAFE829F Size:200598
MD5: A9FBA9C2E625E1B73899BEF9E69A5658 Size:244777
MD5: 856602A6041CC5C7D133549D27360061 Size:191807
MD5: 7453EC9398D0640CC84A0D48FB25B4B2 Size:197411
MD5: C4A89398AE40959A6FDD6B1055B3BE31 Size:177782
MD5: D6F7EF738AB6CD96F5AFC5AB364FFE19 Size:191813
%PROGRAMFILES%\autoupdate\autoupdate.exe
MD5: 4AEE00F2C19CB17B76599830AC4C7ECC Size:229376
MD5: 17995DDC0EE8AB0CC92EFFB5D9586A60 Size:402906
%PROGRAMFILES%\sysai\sysai.exe
MD5: 9C991531A041C7E31C7A2235AD1C8E76 Size:540672
MD5: D91B3DB2930C84879C446ED958AE7A1F Size:540672
MD5: 0BD625B11710397135D23D753694A86A Size:626688
MD5: 43FA6C22C81489B7F23A8E10A5DA0675 Size:528384
%TEMP%\~apropos0\atlw.dll
MD5: 608960C98DD375D437748987AFD1DABC Size:74810
%WINDIR%\temp\sepinst.exe
MD5: 223CDBF9E59B50A1B512C9452CD991E9 Size:150719
%WINDIR%\temp\mw_4s_stub.exe
MD5: 437EB15A9B43799D185EF41F83C81EF7 Size:87970
%TEMP%\autoupdate0\auto_update_install.exe
MD5: CCFFED8DD85604B2661C0362858490D8 Size:266240
%WINDIR%\temp\_ps_inst.exe
MD5: F0A70BFD2E133EF7E3E87371ED5ED61D Size:73892
- Detected Files with variable Filenames:
MD5: E9F6412028B0F255D50EA69C7E111CFE Size: 253952
%TEMP%\autoupdate0\auto_update_install.exe
%WINDIR%\temp\autoupdate0\auto_update_install.exe
MD5: 31F0A6748435BA00F71C06839AFDF38F Size: 74810
%TEMP%\~apropos0\atlw.dll
%USERPROFILE%\local settings\temp\~apropos0\atlw.dll
MD5: 52DBD1A63DFAE9EE1AC348527699DE99 Size: 73785
%TEMP%\~apropos0\atla.dll
%WINDIR%\temp\~apropos0\atla.dll
%USERPROFILE%\local settings\temp\~apropos0\atla.dll
MD5: 0B491A091F3CA5A6AE78B106C16A8D31 Size: 225280
%PROGRAMFILES%\AutoUpdate\AutoUpdate.exe
C:\Program Files\AutoUpdate\AutoUpdate.exe
MD5: 384A2A5A05AF8E7DA48D791F7A241F96 Size: 28672
%PROGRAMFILES%\sysai\proxystub.dll
%PROGRAMFILES%\sysai\pstub0\proxystub.dll
MD5: 444E346AC2B8F422E9E99B0814A48091 Size: 28672
%PROGRAMFILES%\sysai\proxystub.dll
%PROGRAMFILES%\sysai\pstub0\proxystub.dll
MD5: DFAFE0B93419C1E5C123BF40D669C2B4 Size: 28672
%PROGRAMFILES%\sysai\pstub0\proxystub.dll
%PROGRAMFILES%\sysai\proxystub.dll
MD5: 568BC85764BBF0A84CB9C548D022B9B6 Size: 65536
%PROGRAMFILES%\sysai\aproposplugin.dll
%PROGRAMFILES%\SysAI\plg0\AproposPlugin.dll
MD5: 337A2655CAA19353C279DEF5DA6B40E6 Size: 61440
%PROGRAMFILES%\sysai\plg0\aproposplugin.dll
%PROGRAMFILES%\sysai\aproposplugin.dll
Detecting items list:
- Files by Name
%TEMP%\~apropos0\atla.dll
%TEMP%\~apropos0\atlw.dll
%TEMP%\autoupdate0\auto_update_install.exe
%TEMP%\magicinlayinstall.exe
%TEMP%\midaddle.exe
%TEMP%\mv7dizbww.exe
%TEMP%\qnqyiee.dll
%TEMP%\qnqyiee.exe
%TEMP%\cxtpls_loader.exe
%TEMP%\sfl.exe
%programfiles%\autoupdate\autoupdate.exe
%programfiles%\sysai\aproposplugin.dll
%programfiles%\sysai\plg0\aproposplugin.dll
%programfiles%\sysai\proxystub.dll
%programfiles%\sysai\pstub0\proxystub.dll
%programfiles%\sysai\sysai.exe
%programfiles%\sysai\uninstaller.exe
%programfiles%\sysai\wingenerics.dll
%sysdir%\ororoxid.exe
%windir%\aproposplugin.dll
%sysdir%\aproposplugin.dll
%sysdir%\dx8iext.exe
%sysdir%\rcisp.exe
%sysdir%\shmhupnp.exe
%sysdir%\sm1ay.exe
%sysdir%\wrifo.exe
%windir%\temp\_ps_inst.exe
%windir%\temp\~apropos0\atla.dll
%windir%\temp\~apropos0\setup.inf
%windir%\temp\6ktkk.dll
%windir%\temp\7ggoo.dll
%windir%\temp\addit.exe
%windir%\temp\all_files10.exe
%windir%\temp\aut3cde.tmp.htm
%windir%\temp\autoupdate0\auto_update_install.exe
%windir%\temp\mw.exe
%windir%\temp\mw_4s_stub.exe
%windir%\temp\sepinst.exe
%windir%\temp\update_1.exe
%windir%\temp\updater.exe
%windir%\temp\wus10e4.bat
%windir%\temp\z.dll
%windir%\temp\z.exe
%windir%\temp\zga.dll
%windir%\temp\zga.exe
- Files by CLSID or Name
CLSID=01C5BF6C-E699-4CD7-BEA1-786FA05C83AB
«
Go to Software Database
