FlashTrack
|
Description:
|
Spyware
|
|
Risk Level:
|
High
|
|
Date of First Occurence:
|
Tuesday, May 13, 2008
|
|
Software Developer:
|
Flashpoint Media, Ltd.
|
|
Brief Info:
|
FlashTrack is a browser helper object that monitors web pages viewed and terms entered into forms on search engines.
|
|
Removal:
|
This threat can be removed using "Spyware
Terminator"
|
REMOVER SPYWARE »
Geographical Distribution of Threat "FlashTrack"
Threat Info
View All
Detected Items
- Detected Files:
%SYSDIR%\flacpy.exe
MD5: 585C4E712379FE1E2C08390404800D84 Size:24064
%COMMONFILES%\java\Xcpy1.exe
MD5: 040CA770ED6EF612885C6B14D883C352 Size:53248
%PROGRAMFILES%\reg2\reg2.dll
MD5: 6E382B87EA0FE40AFB4EAF2025B84864 Size:94208
%PROGRAMFILES%\xml\xcpy1_inst.exe
MD5: B8F72292FF15676779E348149A062105 Size:77855
%WINDIR%\temp\r.exe
MD5: B9318B001923F7D420330934302CCF25 Size:77684
MD5: 5F4EC215F6F0F5669317D0D89BE6CC97 Size:23552
%PROGRAMFILES%\flt\flt.dll
MD5: B865EB96C93CE7D2D4BB2C2697D99ED6 Size:69632
%PROGRAMFILES%\flt\uninst.exe
MD5: 1BA3F14642BBF7F9131E37C275C65220 Size:35696
%PROGRAMFILES%\Flt\Flt.dll
MD5: 97EE8FE32AA41E6B89D95071C4ABBDA8 Size:69632
MD5: AC9121FE5C4D7C8F11F3BC8C2E3A315C Size:77824
- Detected Files with variable Filenames:
MD5: 0C61C43704A14DBDD806DFE5326C4CD5 Size: 32875
%COMMONFILES%\java\xclean.exe
%PROGRAMFILES%\xml\xclean.exe
Detecting items list:
- Files by Name
%sysdir%\bcre.exe
%sysdir%\fen.dll
%sysdir%\flacpy.exe
%sysdir%\flashtrack.dll
%sysdir%\flt.mon.exe
%sysdir%\ftk.dll
%sysdir%\ftkclean.exe
%sysdir%\ftkcpy.exe
%sysdir%\ftkcpy_inst.exe
%sysdir%\jreg2b.exe
%windir%\bcre.exe
%windir%\fen.dll
%windir%\flacpy.exe
%windir%\flashtrack.dll
%windir%\flt.mon.exe
%windir%\ftk.dll
%windir%\ftkclean.exe
%windir%\ftkcpy.exe
%windir%\ftkcpy_inst.exe
%windir%\jreg2b.exe
%programfiles%\flt\flt.dll
%programfiles%\flt\flt.mon
%programfiles%\flt\uninst.exe
%programfiles%\ftapp\ftapp.dll
%programfiles%\reg2\install.txt
%programfiles%\reg2\reg2.cfg
%programfiles%\reg2\reg2.dll
%programfiles%\xml\xclean.exe
%programfiles%\xml\xcpy1_inst.exe
%programfiles%\xmod\flt.mon
%programfiles%\xmod\persbytes.exe
%programfiles%\xmod\t.bak
%programfiles%\xmod\uninst.exe
%programfiles%\xmod\xclean.exe
%programfiles%\xmod\xm320.dll
%windir%\system\flcp.dll
%windir%\system\flt.dll
%windir%\system\ftapp.dll
%sysdir%\flcp.dll
%sysdir%\flt.dll
%sysdir%\ftapp.dll
%windir%\temp\r.exe
%commonfiles%\java\xclean.exe
%commonfiles%\java\Xcpy1.exe
- Files by CLSID or Name
CLSID=665ACD90-4541-4836-9FE4-062386BB8F05
CLSID=63CF97E8-4133-438A-A831-CC9C6D47D673
CLSID=7371f073-ac0f-4b80-bb2f-96a488cefb32
CLSID=d7e588ab-a5d9-4422-b313-22a3470f9700
CLSID=06542764-7bb2-412b-80d6-d103d1474c93
CLSID=6e83ae1c-f69c-4aed-af98-d23c24c6fa4b
CLSID=db9f4c00-65e8-4fa1-917b-e4844ddf5909
CLSID=e6c71e83-e02b-4bc4-958d-a9194916ec19
CLSID=63cf97e8-4133-438a-a831-cc9c6d47d673
CLSID=6e83ae1c-f69c-4aed-af98-d23c24c6fa4b
CLSID=baef4039-3c02-4c9e-a2f4-87b513ab0e87
CLSID=7955ea20-e0d6-4a77-88b6-120674d979ea
CLSID=665acd90-4541-4836-9fe4-062386bb8f05
- Registry Keys
HKLM\software\flt
HKLM\software\ftapp
HKLM\software\netfilter
HKLM\software\persistent bytes
HKLM\software\rvp
«
Go to Software Database
