Home / Spyware Encyclopedia / Adware.AdMoke
 Adware.AdMoke Technical Details
Category Adware
Discovered 8/5/2006 5:20:00 PM
Modified 12/15/2009 3:55:54 PM
Threat Level Critical
Category Description

Adware are programs that facilitate delivery for advertising content to the user and in some cases gather information from the user's computer, including information related to Internet browser usage or other computer habits. They can take up your computers resources and are largely responsible for the countless popup ads you receive on the web. Adware is often bundled with or embedded within freeware programs like such as clocks, messengers, alerts, weather, and so on.
Notice
Summary

The following http urls were started:
•www.baidu.com/baidu?tn=5gocom_2_dg&word=¶¨ÖÝÃÅ»§
•www.baidu.com/baidu?tn=5gocom_2_dg&word=ÎÒÊÇһֻССÄñ
•www.baidu.com/baidu?tn=5gocom_2_dg&word=Ó׶ù԰ȤÊÂ
The hosts file was updated with the following url-to-ip mappings: NA
The following internet connection was established:
59.63.41.213 : 80
211.99.212.117 : 80
202.108.22.5 : 80

The following Files were created:

NameVersionPublisherSignature (MD5)File Size (in KB)
..\¾wÊÅï¨ÔƲËÄñרÓÃ×¥¼¦Æ÷.exe1.0.0.0網逝铷云VIP抓鸡器4db7a9188b30c99f2dd974f5a9b4e9961596416
..\9E0B130E.DLL1.0.0.1Thunder Networking Technologies,LTDd41c0e599f280d6ff0793b68c1f4bc3835840
..\Temp\D8BE73F9.EXE1.0.0.5skype.tom.com13b4922bcbd2f07a5909427a84ba8b4a417280
..\Temp\01B1BF39.EXE1.0.0.482skype8650c55d4cfd5d5b4ff393b705e0c3ea421888
..\8C3C3318.EXE1.1.0.11MOYEA SOFTWARE CO., LTD.cd8b13a78f79cda38abb5a0433903c163528164
..\temp\speeder3.0.exe0.0.0.0microsword studio 35604758eb4bfd7980a3d88b7375a2a0926616
..\Temp\iexpl0re.exe1.0.0.0Lenovo (Beijing) Limited36d67ae38f1e348dc1d7ff11d5b9b420167936
..\33C95815.DLL1.0.0.0guidetoolbar inc118a6857c1cb62536e7a7384e22c6eb7618496
..\b6b51d25.dll   295424
..\96282f9c.dll   1054208
..\d5a39498.dll   616448
..\74658a9b.dll   294400
..\96282f9c.dll   1054208
..\70e2691a.exe  3dc8dd330919b625cced2e66e6d38e162382116
..\windows..exe    
..\server_setup.exe  57d3d480953ccec3bcf79919ceacf9a2761344
..\temp\70e2691a.exe  3dc8dd330919b625cced2e66e6d38e162382116
..\424005ca.dll   1051136
..\80b833c2.exe  854eeac97506a34e5af84aaa00927810636416
..\AutoPahRun5.exe  15e5ae63be701000d124fa0f1870ee53230912
..\424005ca.dll   1051136
..\wkxlbo.dll   69
..\7F08uDi1.dll   2438
..\hcsguhthug.dll    
..\wjwjz.dat   9343
..\d786f65f.dll1.0.0.0  749056
..\arfvm.dll   69

The following Registry Entries were created:

..\Software\Classes\iehpr.invoke.1
..\Software\Classes\iehpr.invoke
..\Software\ad
..\Software\clndll
..\Software\msad
..\Software\Microsoft\Windows\CurrentVersion\Uninstall\XIAOIALERTS
..\Software\INCESOFT
..\Software\Classes\Clsid\{78D7500C-652A-4A5F-8DDD-D85D38B577EE}
..\Software\Classes\Interface\{0C9C188D-FFF2-492C-AF37-3BF95A4B1092}
..\System\CurrentControlSet\Services\GPXFYVDJSB
..\System\CurrentControlSet\Services\VXWHIIGGGQOPPP
..\System\CurrentControlSet\Services\NTWYAC
..\System\CurrentControlSet\Services\RYELTZGMT
..\Software\Microsoft\Windows\CurrentVersion\policies\explorer\run\"yawinrun"\"%DAS%\admin\Local Settings\Temp\40905C6B.EXE"
..\System\CurrentControlSet\Services\UGSHUH
..\System\CurrentControlSet\Services\EKRXFLRYGNUBJQ
..\System\CurrentControlSet\Services\NTAGOW
..\System\CurrentControlSet\Services\SNSCYXOJKALAQQB
..\System\CurrentControlSet\Services\SZGHXOB
..\System\CurrentControlSet\Services\RDOBPBNYKWHUFRD
..\System\CurrentControlSet\Services\ZJQXFMSZFMS
..\System\CurrentControlSet\Services\AGMQYMZJ
..\System\CurrentControlSet\Services\TYCYORITDB
Recommendation to remove Adware.AdMoke

Spyware Detector can remove Adware.AdMoke, and thousands of other Spyware automatically and instantly. Click here to download Spyware Detector and scan for free.
Download Spyware Detector and Scan for FREE
 
Search Threats
Customer Service Rating by LivePerson