 |
Home
Articles
Spyware Research
Support
Scan Now
Purchase
F.A.Q.
Top 25 Spyware:
Glossary Latest Detections  |
 |
Backdoor/Key Logger/Dialer/AproposAlias: Adware/Apropos, Apropos
Description: Apropos.bho is a browser helper object, variant of the PeopleOnPage software. Apropos Ads may be displayed in a variety of formats including: -- Pop-Up or Pop-Under Windows which will appear as windows on top of or beneath other windows on the computer screen. -- Sliding Skyscraper Windows which will appear as sliding images displayed over POP! content. Threat type: Backdoor - A Backdoor is an undocumented or secret means that can be used to obtain unauthorized access to your computer, or a malicious program that uses such a means to penetrate a computer system. Backdoor applications exploit vulnerabilities of installed programs or operating system and allow attackers to gain control over your computer system. Backdoor works in the background and hides from the user. It is always a high security risk. Dialer - A Dialer is a software application that dials long distance phone numbers. Dialers modify your dial-up settings and make very expensive long distance phone calls without user's permission. The user will be billed for the time used. Dialer authors share the revenues shady long distance providers. Downloader - A Downloader is a software application or part of the program which is designed to retrieve (download) and install additional files from the Internet. Malware programs often include Downloaders which allow the Malware to continually update themselves, thereby eluding detection. Exploit - Exploit is a general term describing a way of breaking into a system. Exploits take advantage of a weakness in a computer system in order to hack it. Flooder - A Flooder is any software application that tries to overload a connection by any intrusive mechanism, such as fast pinging, causing a Denial of Service attacks, Ping of Death attacks, ICMP attacks, http overload attacks, etc. Key Logger - A Key logger is a software application that runs in the background and records any keyboard activity. Logged information is stored in the machine and can be retrieved later by the attacker through the internet connection. Key loggers can record sensitive information such as passwords, credit card numbers, personal identification numbers, etc. Key loggers are commonly included as parts of other spyware programs. Advice: Remove This is a very high risk threat and should be removed immediately as to prevent harm to your computer or your privacy. Detection: SpyNoMore detects Backdoor/Key Logger/Dialer/Apropos: Yes Threat risk: High Risk  Very dangerous malware. Can log user's keyboard activity and take snapshots of the user's screen. Uses stealth installation and removal is very difficult. Category includes spyware programs, adware programs and trojans. Symptoms:
Running Process Signatures: N/A File Signatures: %PROFILE%\local settings\temp\wk_395.exe %WINDOWS%\system32\ulioci.exe %PROFILE%\local settings\temp\wk_13a.exe %PROFILE%\local settings\temp\wk_12d.exe %PROFILE%\local settings\temp\wk_12a.exe %PROFILE%\local settings\temp\wk_12b.exe c:\july14_loader.exe %PROFILE%\local settings\temp\cxtpls_loader.exe %PROFILE%\local settings\temp\wk_122.exe %PROFILE%\local settings\temp\wk_123.exe Registered Dll (Dynamic Link Library) Signatures: N/A Folder Signatures: %PROFILE%\local settings\temp\autoupdate0 %PROGRAM_FILES%\cxtpls %PROGRAM_FILES%\aprps Registry Signatures: HKLM\software\aprps\client HKU\.default\software\microsoft\windows\currentversion\internet settings\zonemap\domains\apropos-media.com HKCR\clsid\{016235be-59d4-4ceb-add5-e2378282a1d9} HKLM\software\microsoft\windows\currentversion\explorer\browser helper objects\{016235be-59d4-4ceb-add5-e2378282a1d9} HKLM\software\apropos HKCU\software\apropos HKCR\clsid\{bc333116-6ea1-40a1-9d07-ecb192db8cea} HKCR\interface\{bc333116-6ea1-40a1-9d07-ecb192db8cea} SpyNoMore Collected Residual File Signatures: N/A
| | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| ||||
|
||||
 |
|
 | ||