Look2Me

Description: Spyware
Risk Level: High
Date of First Occurence: Tuesday, April 15, 2008
Software Developer: (unknown)
Brief Info: Look2Me is a spyware program that monitors Web sites visited and submits the logged information to a server. It also downloads several other Adware and Spyware Threats.
Removal: This threat can be removed using "Spyware Terminator"

SCAN & REMOVE NOW »

Geographical Distribution of Threat "Look2Me"

Threat Info

View All

Detected Items

  1. Detected Files: %SYSDIR%\G4LM0E31EH.DLL MD5: BB62DC48F2AF32E17803B006E75D8EA7 Size:234205 MD5: E996E38E622748B644617C0031BE09AE Size:234067 %SYSDIR%\dsnpp106.dll MD5: 1549CAB6E491E66D0606B46A7BA45F8A Size:61440 MD5: 24D86ADA35ED1E5727F320A591256B98 Size:57344 MD5: 92A0BE093B1D8E534F7E19CF5ECF7264 Size:61440 MD5: B42545DC3DA48206550567191FDB4415 Size:61440 %WINDIR%\system\UpdInstall.exe MD5: 46EF7B898C9B304B71ED6BF9A602708E Size:261120 MD5: EF9A5AFF13A96B39291C7EB8D104C046 Size:243138 MD5: DA90E99C37B81C3DE937C79BD4694C03 Size:261120 MD5: 816B92FBB25CE199FCE446B5CBA0453D Size:261120 MD5: 7F6F55EC098BB28A7803C507284C4E8B Size:224540 MD5: C1B66E5075BA05CFF6CB7C75678C27B4 Size:12770 MD5: BE8A649870EA6D51044A2EFFB70EE2FB Size:244736 MD5: 059D5766285489FD6EE74FCAFE8609E8 Size:261120 MD5: 72F243DCB2126A20A001EEBE57B9BFD3 Size:261120 MD5: 59E2B3333BD5FB3A17FAF3BB473EE080 Size:242176 MD5: 17FFA872F143C5B91C54287BE5ECFDA9 Size:610304 MD5: E31BF767057A32526494010272E14E66 Size:261120 and more.... %PROGRAMFILES%\Recommended Hotfix - 421701D\v15\RH.exe MD5: D24257BBFFB7261ED9514901D14BFBE1 Size:356352 MD5: 3D0CE178E591A3F3CE9B2B1BD12F58FA Size:360448 MD5: 6888535F4E3F300B20F614DA1D46F033 Size:533984 %PROGRAMFILES%\Recommended Hotfix - 421701D\v15\RH.DLL MD5: 1A7AA073FDE367CA44B78C75ABAEFF90 Size:118784 %SYSDIR%\dn6601jse.dll MD5: 983A22AE8911792CCCB9CB3209F58150 Size:223107 %PROGRAMFILES%\SED\uninst.exe MD5: CF1AED5338E848EBC739B28C695B726D Size:42248 %PROGRAMFILES%\SED\SED.exe MD5: 418221A093AA9B7F7DAA0EBC07583C55 Size:49152 %PROGRAMFILES%\SED\SE.exe MD5: 985FF0D1D47544E45D77D7C0518E7F81 Size:475549 %WINDIR%\warebundle.exe MD5: 8722100D4911BF07E4B5379C98F8E67C Size:216812 MD5: 8DFE75BCE7BBACC50FEA0DC43FBA0682 Size:177568 %SystemDiskRoot%\warebundle.exe MD5: BBACEAF412EA7CABE4D577076C82DB3A Size:471128 MD5: B5FBE6F8A6AEF9BE6C4C2C0C89F713CF Size:342381 %SYSDIR%\DSNPP106.DLL MD5: 65713A5CB7FF47D3B79D81487DA4D059 Size:61440 MD5: 6E92A572EEB561D7E2C65A89F3A5A914 Size:57344 MD5: 9C9EE4C715CB6F9AB751427683784AB8 Size:61440 %SYSDIR%\InetFuel.exe MD5: A11DE8976D93336FC0A40F489BA01AEB Size:50220 %SYSDIR%\m2lslc371f.dll MD5: 9F8FF7989B347A0533FBDE9F0C10550E Size:234663 %SYSDIR%\MUWMDMSP.DLL MD5: B4F4E764BC70B44698F376D57CF6B876 Size:223079 %SYSDIR%\E602LGDO160C.DLL MD5: F159AFB003134210828E0B5CBF83CAF0 Size:223022 MD5: 06AD4E240242200786E8641155A86792 Size:235478 %SYSDIR%\E2JM0C11EF.DLL MD5: B373486C85F6CDDADAE867F6E2043DA4 Size:224985 %WINDIR%\system\UpdInstall.exe MD5: 6981AFE361D645F64CDAB443A6889FA4 Size:238080 MD5: B3E992007EEE375F7F405F80F6BEC65E Size:238080 MD5: D0A5F24CF9EA604481B4C8F3ECA3767E Size:69003 MD5: C6EDBB64BB1ED511A228ABBEE9B2BBEB Size:91580 MD5: 3D694403B463BC7F6A8CB0345C9E1759 Size:260608 MD5: 5C04D3BFD2E4A055269242CC9E4AF2DB Size:197632 MD5: 68CB7B1B36590A0531F47BCB89A2B612 Size:245860 %SYSDIR%\jt2207foe.dll MD5: 768A2305DA0D20B5EF6F4D76A45BD46F Size:235469 %SYSDIR%\IR0OL5D31.DLL MD5: 00D04C565DA3CABE608556CC067808D5 Size:236293 %SYSDIR%\IRL2L53O1.DLL MD5: 4BD47268113A06942A1D2AB51FF17821 Size:233865 %SYSDIR%\O0ROLA931D.DLL MD5: 1A91C0363AA36D0C6A77BA4D8A54D51D Size:235597 %SYSDIR%\q8680ijue8o80.dll MD5: F8FC8F45F8C293A4332FF898BDA25583 Size:225440 %SYSDIR%\j86mlij118o.dll MD5: 63BE862E4167A7660EF4DED2469CFC5B Size:224292 %SYSDIR%\e602lgdo160c.dll MD5: 5B98D0DA066C0413E2D8007E22F20F91 Size:236863
  2. Detected Files with variable Filenames: MD5: 5E9F0D2E428DE87F15D98D44C963EA13 Size: 417792 %SYSDIR%\WXPCORE.DLL %SYSDIR%\guard.tmp MD5: 242A20BAE9CF9CB816A447150378C02D Size: 578560 %SystemDiskRoot%\warebundlenewer.exe %SystemDiskRoot%\warebundle3.exe %SystemDiskRoot%\Installer3.exe %SystemDiskRoot%\Installer.exe %SystemDiskRoot%\Documents and Settings\Welcome\Local Settings\Temporary Internet Files\Content.IE5\6ZGZ8BYP\Installer[1].exe MD5: B9E4A8D57CB2CEA013F01D87AEBDC571 Size: 234272 %SYSDIR%\wK2topl.dll %SYSDIR%\sRfrcdlg.dll %SYSDIR%\nemsmgr.dll %SYSDIR%\mzxdm.dll %SYSDIR%\myieftp.dll %SYSDIR%\lv2009fme.dll %SYSDIR%\kidus.dll %SYSDIR%\j60s0gd7e60.dll %SYSDIR%\ihagx5.dll %SYSDIR%\i0nmla511d.dll %SYSDIR%\eg.dll and next 47 variations. MD5: FB6C4A420D7E07AE1173390720020C1A Size: 223069 %SYSDIR%\Q8RQ0I95E8.DLL %SYSDIR%\guard.tmp

Detecting items list:

  1. Files by Name %sysdir%\r6r60g9se6.dll %ProgramFiles%\SED\SE.exe %ProgramFiles%\SED\SED.exe %Windir%\system\UpdInstall.exe %TEMP%\Upd210.exe %Sysdir%\InetFuel.exe %Sysdir%\guard.tmp %sysdir%\kvdtuf.dll %sysdir%\j26m0cj1efo.dll %sysdir%\remps.dll %ProgramFiles%\Recommended Hotfix*\v15\RH.DLL %ProgramFiles%\Recommended Hotfix*\v15\RH.exe %sysdir%\NGOPENAL.DLL %sysdir%\JT8607LSE.DLL %sysdir%\AJWAV.DLL %sysdir%\E2JM0C11EF.DLL %sysdir%\BLEKGOOG.DLL %sysdir%\I0LOLA331D.DLL %sysdir%\FPLU0339E.DLL %sysdir%\NRWDMCPL.DLL %sysdir%\AZFSIPC.DLLL %sysdir%\DLRAWEX.DLL %sysdir%\CSMOCX.DLL.DLL %sysdir%\LWDIS12N.DLL %sysdir%\J42Q0EF5EH2.DLL %sysdir%\KGDKYR.DLL %sysdir%\IRL2L53O1.DLL %sysdir%\WZAUDSDK.DLL %sysdir%\SDFRSLV.DLL %sysdir%\H60QLGD5160.DLL %sysdir%\pptp16.dll %sysdir%\dqnput.dll %sysdir%\DSNPP106.DLL %sysdir%\ORETHK32.DLL %sysdir%\MYASTMIB.DLL %sysdir%\WFNSRV.DLL %sysdir%\q8680ijue8o80.dll %sysdir%\jt2207foe.dll %sysdir%\n6r20g9oe6.dll %sysdir%\K4PMLE711H.DLL %sysdir%\Q8RQ0I95E8.DLL %sysdir%\J86MLIJ118O.DLL %sysdir%\pptp32.dll %sysdir%\GPR2L39O1.DLL %sysdir%\WXPCORE.DLL %sysdir%\WCMLOGON.DLL %sysdir%\G2JO0C13EF.DLL %sysdir%\LV2Q09F5E.DLL %sysdir%\KT4QL7H51.DLL %sysdir%\NLTRAP.DLL %sysdir%\IR0OL5D31.DLL %sysdir%\pptp64.sys %sysdir%\LEGIF11N.DLL %sysdir%\E602LGDO160C.DLL %sysdir%\FWAMEBUF.DLL %sysdir%\KXDLV1.DLL %sysdir%\LV0009DME.DLL %sysdir%\G4LM0E31EH.DLL %sysdir%\j22q0cf5ef2.dll %SYSDIR%\frdrclnr.dll %sysdir%\F0J2LA1O1D.DLL %sysdir%\m2lslc371f.dll %sysdir%\PYCHDPRF.DLL %sysdir%\JT2407FQE.DLL %sysdir%\jchnudb.dll %sysdir%\svssetup.dll %sysdir%\LV6409JQE.DLL %sysdir%\I2NMLC511F.DLL %sysdir%\cpetcfg.dll %sysdir%\O0ROLA931D.DLL %sysdir%\MUWMDMSP.DLL %sysdir%\DOKQUOTA.DLL %sysdir%\enj6l11s1.dll %sysdir%\k0jsla171d.dll %sysdir%\wyvcore.dll %sysdir%\fneploy.dll %sysdir%\dq8vb.dll %sysdir%\KQDCR.DLL %sysdir%\HUPERTRM.DLL %sysdir%\dn6601jse.dll %sysdir%\5A612E3C.EXE %SystemDiskRoot%\warebundle.exe %windir%\warebundle.exe %sysdir%\aaifil32.dll %sysdir%\f62mlgf1162.dll
  2. Files by MD5 MD5: A04E4A7D22340E33B24D3D4B4B26221C Size: 576000 MD5: 242A20BAE9CF9CB816A447150378C02D Size: 578560 MD5: AF8A2940CC9398CEFBD65B22BE5BE92A Size: 231320 MD5: E63C955E5855F197C80285A8030F341C Size: 235066 MD5: 7318EB1A1DC88EE8D546D441091705E1 Size: 582944 MD5: B9E4A8D57CB2CEA013F01D87AEBDC571 Size: 234272 MD5: BEE8ED6FB425F01C9690F5E5DB84B835 Size: 234295 MD5: B9E4A8D57CB2CEA013F01D87AEBDC571 Size: 234280 MD5: B9E4A8D57CB2CEA013F01D87AEBDC571 Size: 236268 MD5: 9DA7C3E7534B757EC90CF5A71D44C8A1 Size: 235046 MD5: 399EA642C451491F95D4628B88EEEACA Size: 235280 MD5: E63C955E5855F197C80285A8030F341C Size: 235066 MD5: 1C6275DA5BF5F6BE656687270E443489 Size: 235685 MD5: 8A84814214100098B0FF59FF57B7A30B Size: 236537 MD5: 242A20BAE9CF9CB816A447150378C02D Size: 578560
  3. Files by Directories %ProgramFiles%\SED
  4. Files by CLSID or Name CLSID=48EFB750-F64E-4727-A903-12594B044FC6 CLSID=8A5768B6-6B3F-4DF1-989F-5A271797FA71 CLSID=48EFB750-F64E-4727-A903-12594B044FC6 CLSID=A073CC97-48EF-4901-B0FE-6B617ECC6B2E CLSID=07F98BB1-A666-8620-6FD3-72AE7E6CFE09 CLSID=2BB02E6C-2EC6-B03A-DF95-7EF6B57EEDF6 CLSID=2963ECFC-4E5C-2f3b-B334-D67434FC72E0 CLSID=2596AB5E-AC3A-4248-9567-DE8CB1E288B7 CLSID=99A6D73F-96AB-48A8-AA2F-24117E3870CB CLSID=79BC6805-0C87-4375-908D-75F82ECA0F43 CLSID=B857939F-6346-4742-832A-D55A348B08BD CLSID=5DD7EF5F-A68C-46C6-8620-1884DA48C3F6 CLSID=D97C0622-AC5A-46CB-A85B-776926C57621 CLSID=6A6F1DCA-1553-4C75-9B95-C92A5B8501CB CLSID=A84F8C25-ED35-40C0-B427-1D72CA5E9ED4 CLSID=1D4C38F2-DADC-42E0-9802-E0249D2BDF2A CLSID=63FD44F6-EF02-497A-A99D-59EF47229783 CLSID=5BBEC706-C24D-463C-901C-0824C05EBBD7 CLSID=56B9B0A5-80A6-43F5-8AD7-730D898593A3 CLSID=54AC6E98-CE3B-4FE1-BA40-49FB9484D7BF CLSID=E8B96385-2180-4F8F-9785-D64F5C91F657 CLSID=651963FA-A24F-4ACE-A648-50DE3DD77C0D CLSID=223D89F8-FF92-49EC-9BDB-0C2A4F994091 CLSID=22145D9A-76E4-4290-AB2C-D97CB533C4C4 CLSID=8DECCAB4-62C7-4D4C-8CD8-C29A63A81A7B CLSID=1BF22AFF-9A77-4A9A-8489-6B6D64F28820 CLSID=F3C92246-00A7-4E40-B065-27E325EC9D3C CLSID=A3F6D86D-B337-4C37-BDCA-68E23F8612D6 CLSID=D1EE5F54-DC0F-4B4E-8F0C-E1504B49B67F CLSID=94A6E167-AE9F-4040-8E01-DE9C182EEADB
  5. Registry Keys HKCU\Software\Look2Me HKCU\Software\Hopper HKLM\Software\Look2Me HKLM\Software\Hopper

« Go to Software Database