PPRich
|
Description:
|
Adware
|
|
Risk Level:
|
Low
|
|
Date of First Occurence:
|
Tuesday, November 25, 2008
|
|
Software Developer:
|
(unknown)
|
|
Brief Info:
|
Adware
Software that is displaying pop-up/pop-under windows containing advertisements when the primary user interface is not visible or displayed advertisements are not related to the product.
|
|
Removal:
|
This threat can be removed using "Spyware
Terminator"
|
REMOVER SPYWARE »
Geographical Distribution of Threat "PPRich"
Threat Info
View All
Detected Items
- Detected Files:
%WINDIR%\SysPPHash.dll
MD5: 97BA4DE988226911248DC98F64B1F018 Size:1176
%WINDIR%\SysPPMultThd.dll
MD5: E5F2892E7C6E0A6C916FA9380B7393A2 Size:975
%PROGRAMFILES%\SystemInspect\Down\down.ocx
MD5: D59DDBB9F2A74CA175D8EE623CE4EFA0 Size:1107208
- Detected Files with variable Filenames:
MD5: 2893441954DE39896546F433872F9954 Size: 186880
%PROGRAMFILES%\PPRich\Temp\PPRichFileSource.ax
%PROGRAMFILES%\PPRich\PPRichFileSource.ax
MD5: EA73EF4E6275A069397E91FF922FB71D Size: 332152
%PROGRAMFILES%\PPRich\Temp\PPRich.ocx
%PROGRAMFILES%\PPRich\PPRich.ocx
MD5: B2BE4C01C43791D1616425DD01F60C00 Size: 826368
%PROGRAMFILES%\PPRich\Temp\MiniPPGou.exe
%PROGRAMFILES%\PPRich\MiniPPGou.exe
MD5: C192AB99537BDB973660740001B5E8A6 Size: 16
%PROGRAMFILES%\PPRich\Temp\MiniPPGou.dll
%PROGRAMFILES%\PPRich\MiniPPGou.dll
Detecting items list:
- Files by Name
%PROGRAMFILES%\PPRich\MiniPPGou.dll
%PROGRAMFILES%\PPRich\MiniPPGou.exe
%PROGRAMFILES%\PPRich\MiniPPGou2Core.dll
%PROGRAMFILES%\PPRich\PPRich.ocx
%PROGRAMFILES%\PPRich\PPRichFileSource.ax
%PROGRAMFILES%\PPRich\Temp\Install.exe
%PROGRAMFILES%\PPRich\Temp\PPRichFileSource.ax
%ProgramFiles%\SystemInspect\iexplore.exe
%ProgramFiles%\SystemInspect\SVCHAST.exe
%ProgramFiles%\SystemInspect\SystemInspect1.dll
%ProgramFiles%\SystemInspect\download\iexplore.exe
%ProgramFiles%\SystemInspect\download\SVCHAST.exe
%ProgramFiles%\SystemInspect\download\SystemInspect.dll
%Windir%\SysPPMultThd.dll
%Windir%\SysPPHash.dll
- Files by Directories
%PROGRAMFILES%\PPRich %ProgramFiles%\SystemInspect
- Files by CLSID or Name
CLSID=4CCBC79C-7F0D-4BE0-94D7-E69E236488CF
CLSID=9D966685-3D58-4170-B008-05BD7C1628B0
CLSID=A4CA69A9-5CA7-4110-9922-62DFDD902A07
- Registry Keys
HKCR\PPRich.Player
HKLM\SOFTWARE\Classes\MiniPPGou.CoMiniPPGou
HKLM\SOFTWARE\Classes\PPRich.Player
HKLM\SYSTEM\CurrentControlSet\Services\SystemInspect
HKLM\SYSTEM\CurrentControlSet\Services\SystemInspect
«
Go to Software Database
