Onflow
|
Description:
|
Spyware
|
|
Risk Level:
|
High
|
|
Date of First Occurence:
|
Tuesday, April 15, 2008
|
|
Software Developer:
|
Onflow Corporation
|
|
Brief Info:
|
Onflow is a player for ??rich media?? content. This is currently principally advertising with 3D animation.
|
|
Removal:
|
This threat can be removed using "Spyware
Terminator"
|
SCAN & REMOVE NOW »
Geographical Distribution of Threat "Onflow"
Threat Info
View All
Detected Items
- Detected Files:
%PROGRAMFILES%\onflow\uninstall onflow.exe
MD5: 22D5FD53BB07A54D2429321D0F1C7ECF Size:82944
MD5: AE26D85C420BC7D9D727E4A61B09857B Size:290816
MD5: 0A7182DEB26F4795206B79A19229D542 Size:82944
MD5: 837DD955F12C8D32C55F46D2B1F1C1C2 Size:82944
MD5: 1A7A2827C32BDF08CD7D616DD8846B01 Size:82944
%PROGRAMFILES%\internet explorer\plugins\ieonflow.dll
MD5: 8BC6371672562BDC372BFFF1060B3EFE Size:34304
MD5: AAADFD7DA6D3B9AB336531B61D79A92B Size:29868
%WINDIR%\temp\of_stub_ins_w_2071.exe
MD5: A03FB9B1248282A75FB043CC99679C1E Size:112640
%PROGRAMFILES%\internet explorer\plugins\onflowreport.exe
MD5: 7BCFCDBB89ED75220708D00E47B6B927 Size:9728
MD5: 0ECF5C561B13870A2AD4327C1F609901 Size:17408
MD5: E825681196588013BB7B9C3513EB5BDD Size:17408
MD5: D2A87A4B9116F6A528FECF7D32807E0A Size:15360
- Detected Files with variable Filenames:
MD5: 17072D66498A7884CA452D989F9C11B1 Size: 24064
%PROGRAMFILES%\internet explorer\plugins\nponflow.dll
%PROGRAMFILES%\intern~1\plugins\nponflow.dll
MD5: 044B3BFCFBD6D467D5B3FAFE6925AF81 Size: 32768
%PROGRAMFILES%\internet explorer\plugins\nponflow.dll
%PROGRAMFILES%\intern~1\plugins\nponflow.dll
MD5: 03970DFF2696F0D2A9F07630CA08CC01 Size: 51200
%PROGRAMFILES%\internet explorer\plugins\nponflow.dll
%PROGRAMFILES%\intern~1\plugins\nponflow.dll
%PROGRAMFILES%\internet explorer\plugins\ieonflow.dll
MD5: F7188869AB8E3B192A6E202CAA0AEC74 Size: 363520
%PROGRAMFILES%\internet explorer\plugins\onflowplayer0.dll
%PROGRAMFILES%\intern~1\plugins\onflowplayer0.dll
MD5: 4C107D5187EB566CA5DB0E87B5E8583D Size: 25600
%PROGRAMFILES%\internet explorer\plugins\nponflow.dll
%PROGRAMFILES%\intern~1\plugins\nponflow.dll
MD5: 3F0997C209E328D1086B60D600A5A4BF Size: 466432
%PROGRAMFILES%\internet explorer\plugins\onflowplayer0.dll
%PROGRAMFILES%\intern~1\plugins\onflowplayer0.dll
MD5: D5B782690F3B61573408B0CFDC130DA2 Size: 26112
%PROGRAMFILES%\internet explorer\plugins\nponflow.dll
%PROGRAMFILES%\intern~1\plugins\nponflow.dll
MD5: FE859CD3C2C2B03A23FBA5039EAC330C Size: 102400
%PROGRAMFILES%\internet explorer\plugins\nponflow.dll
%PROGRAMFILES%\intern~1\plugins\nponflow.dll
MD5: 778024FCBC98C077F1D9FD614426D067 Size: 51200
%PROGRAMFILES%\internet explorer\plugins\nponflow.dll
%PROGRAMFILES%\intern~1\plugins\nponflow.dll
MD5: 32F21EFED4E6AEB26311ACA11463878C Size: 414208
%PROGRAMFILES%\internet explorer\plugins\onflowplayer0.dll
%PROGRAMFILES%\intern~1\plugins\onflowplayer0.dll
MD5: 9294B896C8367E1A8B9F61D987EC8763 Size: 32768
%PROGRAMFILES%\internet explorer\plugins\nponflow.dll
%PROGRAMFILES%\intern~1\plugins\nponflow.dll
Detecting items list:
- Files by Name
%programfiles%\intern~1\plugins\nponflow.dll
%programfiles%\intern~1\plugins\onflowplayer0.dll
%programfiles%\internet explorer\plugins\ieonflow.dll
%programfiles%\internet explorer\plugins\nponflow.dll
%programfiles%\internet explorer\plugins\onflowplayer0.dll
%programfiles%\internet explorer\plugins\onflowreport.exe
%programfiles%\onflow\uninstall onflow.exe
%windir%\temp\of_stub_ins_w_2071.exe
- Files by CLSID or Name
CLSID=0CEF79D8-D373-11D3-A7D3-00062962BF17
CLSID=0cef79cb-d373-11d3-a7d3-00062962bf17
- Registry Keys
HKLM\software\onflow
«
Go to Software Database