 |
Home
Articles
Spyware Research
Support
Scan Now
Purchase
F.A.Q.
Top 25 Spyware:
Glossary Latest Detections  |
 |
P2P/KaZaAAlias: Adware/Medload, Kazaa Media Desktop, KaZaA
Description: P2P/KaZaA is peer-to-peer file-sharing service with which you can search and download media files from other Kazaa users. You can also organize, view, and play your media files through an integrated media jukebox, publish your own work, reach an audience, and communicate with other Kazaa users. Threat type: P2P - P2P is any peer-to-peer file swapping program. The following software applications are typical examples: Audiogalaxy, Bearshare, Blubster, E-Mule, Gnucleus, Grokster, Imesh, KaZaa, KaZaa Lite, Limewire, Morpheus, Shareaza, WinMX, Xolox, etc. P2P software may pose security issues because outsiders are granted access to you files. P2P can degrade network performance, consume vast amounts of storage and be bundled with adware and/or spyware programs. Advice: Remove This is a very high risk threat and should be removed immediately as to prevent harm to your computer or your privacy. Detection: SpyNoMore detects P2P/KaZaA: Yes Threat risk: Medium Risk  Potentially dangerous malware. May collect sensitive user information and broadcast data back to a server with "opt-out" permission. Category includes most adware programs. Symptoms: P2P/KaZaA displays commercial advertisements. P2P/KaZaA stays resident in background.
Running Process Signatures: N/A File Signatures: %WINDOWS%\system32\p2pnetworking.exe %COMMON_PROGRAMS%\kazaa media desktop\kazaa media desktop.lnk %WINDOWS%\cache371\b_371_2_1_756100.htm %PROGRAM_FILES%\kazaa\my shared folder\desktop.ini %COMMON_PROGRAMS%\kazaa.lnk %PROFILE%\administrator\start menu\programs\altnet\peer points manager.lnk %WINDOWS%\cache371\b_371_0_1_664000.htm %WINDOWS%\cache371\b_371_2_1_655600.htm %PROGRAM_FILES%\kazaa\kazaa.exe %WINDOWS%\cache371\b_371_2_1_777800.htm %WINDOWS%\cache371\b_371_2_1_775400.htm %WINDOWS%\cache371\t_b_743700.htm c:\logiciel\kazaa\help\myplaylists.htm %WINDOWS%\cache371\t_b_371_0_1_592000.htm %PROFILE%\local settings\temp\p2psetup.exe %WINDOWS%\cache371\b_371_2_1_566600.htm c:\logiciel\kazaa\promotions\netflix.url %PROGRAM_FILES%\kazaa\kazaa.url %WINDOWS%\cache371\b_371_2_1_574200.htm %WINDOWS%\cache371\b_371_0_1_592200.htm %WINDOWS%\cache371\b_647400.htm %DESKTOPDIRECTORY%\play poker now!.lnk %WINDOWS%\cache371\t_b_753400.htm %WINDOWS%\cache371\t_b_790700.htm %PROGRAM_FILES%\kazaa\my shared folder\audio - electronica.kpl %WINDOWS%\cache371\t_b_371_2_2_712000.htm %PROGRAM_FILES%\kazaa\my shared folder\jlo- jennie form the block.lnk %PROGRAM_FILES%\kazaa\my shared folder\audio - hip hop.kpl %WINDOWS%\cache371\b_371_2_2_712000.htm %WINDOWS%\cache371\b_371_2_3_778600.htm c:\logiciel\kazaa\help\mymedia.htm %WINDOWS%\cache371\t_b_525900.htm %WINDOWS%\cache371\b_371_2_1_577800.htm %WINDOWS%\cache371\t_b_371_2_1_635400.htm %WINDOWS%\cache371\t_b_371_2_3_642300.htm %PROFILE%\local settings\temp\altnet\msvcirt.dll %WINDOWS%\system32\marshal.dll %WINDOWS%\cache371\b_371_2_1_755100.htm %PROGRAM_FILES%\kazaa\plugins.htm %WINDOWS%\cache371\b_371_2_1_567900.htm c:\logiciel\kazaa\kmd.exe %WINDOWS%\cache371\b_371_2_1_738900.htm %WINDOWS%\cache371\b_371_2_1_746100.htm %WINDOWS%\cache371\b_775700.htm %WINDOWS%\cache371\b_743700.htm %WINDOWS%\cache371\b_371_2_1_667100.htm %WINDOWS%\system32\p2p networking v125.cpl %WINDOWS%\system32\cd_clint.dll %WINDOWS%\cache371\b_371_0_1_737400.htm %PROFILE%\local settings\temp\altnet\admdloader.dll %WINDOWS%\cache371\b_371_2_2_576000.htm %WINDOWS%\cache371\t_b_371_2_1_775400.htm %WINDOWS%\cache371\b_371_2_1_649800.htm %PROGRAM_FILES%\kazaa\my shared folder\audio - funk.kpl %WINDOWS%\cache371\b_371_2_1_755600.htm %PROGRAM_FILES%\kazaa\kzscan.dll c:\logiciel\kazaa\promotions\readme.lnk %PROGRAM_FILES%\kazaa\my shared folder\audio - jazz.kpl %WINDOWS%\cache371\b_371_0_1_589500.htm %WINDOWS%\cache371\b_371_2_2_703900.htm %WINDOWS%\cache371\b_371_2_2_570100.htm c:\logiciel\kazaa\help\mykazaa.htm %WINDOWS%\cache371\b_371_2_3_558300.htm %WINDOWS%\cache371\b_371_2_2_572300.htm %WINDOWS%\cache371\b_371_0_1_586300.htm %WINDOWS%\cache371\b_371_2_3_563900.htm %WINDOWS%\cache371\b_371_2_1_593200.htm c:\logiciel\kazaa\promotions\directtv.url %WINDOWS%\system32\irqy.exe %PROGRAM_FILES%\kazaa\my shared folder\audio - public enemy revolverlution album.kpl %PROGRAM_FILES%\kazaa\libfn.dll %WINDOWS%\cache371\b_790700.htm %WINDOWS%\cache371\b_727700.htm %PROGRAM_FILES%\kazaa\my shared folder\audio - reggae.kpl %WINDOWS%\cache371\t_b_647400.htm %WINDOWS%\cache371\t_b_500600.htm %PROGRAM_FILES%\kazaa\my shared folder\audio - pop rock.kpl %WINDOWS%\cache371\b_371_0_1_589300.htm %WINDOWS%\cache371\b_371_0_1_648100.htm %PROGRAM_FILES%\kazaa\my shared folder\en_kmd260.exe %PROGRAM_FILES%\kazaa\magnet.exe %PROGRAM_FILES%\kazaa\my shared folder\audio - the honey palace album.kpl %WINDOWS%\cache371\t_b_754300.htm %PROGRAM_FILES%\kazaa\search\kazaaad.htm %DESKTOPDIRECTORY%\my shared folder.lnk c:\logiciel\kazaa\my shared folder\kmd202_fr.exe %WINDOWS%\cache371\t_b_775700.htm c:\logiciel\kazaa\kazaa.url %PROGRAM_FILES%\kazaa\my shared folder\kmd260_en (1).exe %WINDOWS%\cache371\t_b_371_2_1_662100.htm %WINDOWS%\cache371\b_501000.htm %PROFILE%\local settings\temp\altnet\adm25.dll %WINDOWS%\cache371\b_371_0_1_794100.htm %WINDOWS%\cache371\b_371_2_3_642300.htm %PROGRAM_FILES%\kazaa\my shared folder\audio - barrington levy.kpl %WINDOWS%\cache371\b_371_2_3_670700.htm %WINDOWS%\cache371\b_371_2_1_536000.htm %WINDOWS%\cache371\t_b_647800.htm %PROGRAM_FILES%\kazaa\my shared folder\audio - alternative rock.kpl %DESKTOPDIRECTORY%\my shared folder.url %PROGRAM_FILES%\kazaa\my shared folder\kmd202_en.exe %DESKTOPDIRECTORY%\kazaa media desktop.lnk c:\logiciel\kazaa\help\mykazaa.css %WINDOWS%\cache371\t_b_371_2_2_778600.htm %WINDOWS%\cache371\b_753400.htm %DESKTOPDIRECTORY%\kza.lnk %DESKTOPDIRECTORY%\kazaa promotions.url %WINDOWS%\cache371\b_371_0_1_592000.htm %WINDOWS%\cache371\b_754300.htm %WINDOWS%\cache371\b_371_2_1_663900.htm %WINDOWS%\cache371\b_371_2_1_635400.htm %PROGRAM_FILES%\kazaa\my shared folder\audio - r&b.kpl %DESKTOPDIRECTORY%\kazaa shop.lnk c:\logiciel\kazaa\promotions\earn money.url %PROGRAM_FILES%\kazaa\my shared folder\kazaa300_en.exe %WINDOWS%\cache371\b_371_2_3_532200.htm %WINDOWS%\cache371\b_371_2_3_679500.htm %WINDOWS%\cache371\b_371_2_1_662100.htm %PROFILE%\local settings\temp\altnet\admdata.dll %COMMON_PROGRAMS%\kazaaliyr.lnk %DESKTOPDIRECTORY%\kazaalite.lnk %WINDOWS%\cache371\b_371_2_2_649600.htm %DESKTOPDIRECTORY%\your free casino chips!.lnk %WINDOWS%\cache371\b_500600.htm %WINDOWS%\cache371\t_b_670300.htm %WINDOWS%\cache371\t_b_604700.htm %WINDOWS%\cache371\b_647800.htm %WINDOWS%\cache371\b_371_2_2_731300.htm c:\logiciel\kazaa\kazaa.exe %WINDOWS%\system32\bifq5x5n.exe %WINDOWS%\cache371\t_b_371_2_1_574200.htm %WINDOWS%\cache371\b_371_2_2_730800.htm %WINDOWS%\cache371\b_371_0_1_668500.htm %PROGRAM_FILES%\kazaa\ecdc_v5.3.2.34_basic_enu.exe %COMMON_PROGRAMS%\kza.lnk %PROGRAM_FILES%\kazaa\bdcore.dll %PROFILE%\local settings\temp\altnet\admfdi.dll %WINDOWS%\cache371\b_604700.htm %PROFILE%\local settings\temp\altnet\atl.dll %WINDOWS%\cache371\b_371_2_2_568100.htm c:\logiciel\kazaa\kzscan.dll %WINDOWS%\cache371\b_371_0_1_591900.htm %WINDOWS%\cache371\t_b_371_2_1_576200.htm %WINDOWS%\cache371\b_371_2_1_739900.htm %PROFILE%\local settings\temp\altnet\setup.exe %WINDOWS%\cache371\b_371_0_1_589600.htm %PROGRAM_FILES%\kazaa\my shared folder\begin the beguine.html %WINDOWS%\cache371\b_371_0_1_775900.htm %PROGRAM_FILES%\kazaa\my shared folder\audio - folk.kpl %WINDOWS%\cache371\b_371_2_3_519700.htm %PROGRAM_FILES%\kazaa\search\kazaa.css %WINDOWS%\cache371\b_371_2_2_573900.htm %WINDOWS%\cache371\b_371_2_1_576200.htm %DESKTOPDIRECTORY%\kazza.lnk %DESKTOPDIRECTORY%\kazaa shop.url c:\logiciel\kazaa\promotions\kazaa shop.url %PROGRAM_FILES%\kazaa\bdupd.dll %WINDOWS%\cache371\b_670300.htm %PROGRAM_FILES%\kazaa\my shared folder\kmd210_en.exe %PROGRAM_FILES%\kazaa\search\websearch.htm %WINDOWS%\cache371\b_371_2_2_778600.htm %WINDOWS%\cache371\b_605800.htm %DESKTOPDIRECTORY%\kli.lnk %WINDOWS%\cache371\t_b_371_2_3_558300.htm %WINDOWS%\cache371\t_b_727700.htm %PROGRAM_FILES%\kazaa\my shared folder\audio - fine arts militia album.kpl %PROGRAM_FILES%\kazaa\my shared folder\kmd263_en.exe %WINDOWS%\cache371\b_525900.htm %WINDOWS%\cache371\t_b_371_0_1_592200.htm %WINDOWS%\cache371\b_371_2_3_588100.htm %WINDOWS%\cache371\b_371_0_1_646000.htm %WINDOWS%\cache371\t_b_371_0_1_591900.htm %PROGRAM_FILES%\kazaa\my shared folder\kmd260_en.exe %WINDOWS%\cache371\b_605600.htm Registered Dll (Dynamic Link Library) Signatures: N/A Folder Signatures: %PROGRAM_FILES%\kazaa\bgp2p %COMMON_PROGRAMS%\kazaa %PROGRAM_FILES%\kazaa\promotions %PROGRAM_FILES%\kazaa\help %PROGRAM_FILES%\kazaa\my channels %PROFILE%\local settings\temp\admcache %PROFILE%\start menu\programs\kazaa media desktop %PROGRAM_FILES%\kazaa\my search agents %WINDOWS%\browserxtras\pn %WINDOWS%\cache329 %PROGRAM_FILES%\kazaa\skins Registry Signatures: HKLM\software\microsoft\windows\currentversion\uninstall\kza HKLM\software\p2p networking HKLM\software\magnet HKCR\clsid\{c91e8926-d4be-4685-99f4-0d996b96bac0} HKLM\software\microsoft\windows\currentversion\app management\arpcache\kazaa HKLM\software\microsoft\windows\currentversion\app paths\d:\installshield\kazaa HKLM\software\classes\appid\{99a8e2b2-3405-4c0d-9110-131c14caaf62} HKCR\clsid\{66fc8717-efa7-4546-8c4a-e224f3a80c76} HKLM\software\microsoft\windows\currentversion\uninstall\p2p networking HKLM\software\classes\webp2pinstaller.installer.1 HKLM\software\classes\adm4.adm4 HKLM\software\classes\adm.adm HKLM\software\classes\signingmodule.signingmodule.1 HKLM\software\classes\adm25.adm25 HKCR\clsid\{f78b32d6-d6d8-4137-a18f-91ebe1a4aedb} HKLM\software\microsoft\windows\currentversion\uninstall\kazaa HKLM\software\classes\clsid\{66fc8717-efa7-4546-8c4a-e224f3a80c76} HKLM\software\microsoft\windows\currentversion\uninstall\{726c99d0-50c5-404f-9efd-7b2834dfed50} HKLM\software\classes\clsid\{c91e8926-d4be-4685-99f4-0d996b96bac0} HKLM\software\classes\jcde_stack.1 HKLM\software\classes\adm.adm.1 HKLM\software\classes\jcde_stack HKLM\software\microsoft\windows\currentversion\uninstall\kli HKLM\software\lcaleb HKLM\software\microsoft\windows\currentversion\uninstall\{01083175-01cc-42aa-9090-81dd0f88f28f} HKCU\software\p2p networking HKLM\software\sharman networks ltd HKLM\software\kazaa HKCU\software\kazaa HKLM\software\microsoft\windows\currentversion\uninstall\{38c76428-6c9c-4cc6-b747-3ab6a4770225} HKLM\software\classes\signingmodule.signingmodule HKLM\software\microsoft\windows\currentversion\app management\arpcache\p2p networking HKLM\software\classes\appid\{8b0fef15-54dc-49f5-8377-8172de975f75} HKCR\clsid\{726c99d0-50c5-404f-9efd-7b2834dfed50} HKCU\software\kazaa tmp 0 HKLM\software\classes\adm4.adm4.1 HKLM\software\classes\webp2pinstaller.installer HKLM\software\classes\adm25.adm25.1 HKLM\software\microsoft\windows\currentversion\app management\arpcache\kza SpyNoMore Collected Residual File Signatures: N/A
| | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| ||||
|
||||
 |
|
 | ||