Wednesday, December 10, 2008

MediaPipe Adware

Removing MediaPipe
Categories: Adware,Worm
Adware are programs that facilitate delivery for advertising content
to the user and in some cases gather information from the user's computer.

Worms can be classified according to the propagation method they use,
i.e. how they deliver copies of themselves to new victim machines.
Worms can also be classified by installation method, launch method and finally according
to characteristics standard to all malware: polymorphism, stealth etc.

Many of the worms which managed to cause significant outbreaks use more then
one propagation method as well as more than one infection technique.
The methods are listed separately below.
MediaPipe Also known as:

[Other]Mediapipe
Visible Symptoms:
Files in system folders:
[%SYSTEM%]\Access.0ll
[%SYSTEM%]\Access.dll
[%DESKTOP%]\ Terms.lnk
[%DESKTOP%]\.url
[%DESKTOP%]\movieland terms.lnk
[%DESKTOP%]\movieland.url
[%DESKTOP%]\movieland_access_g.exe
[%PROGRAMS%]\247Cams.lnk
[%PROGRAMS%]\downloadmanager.lnk
[%PROGRAM_FILES%]\ Terms.html
[%PROGRAM_FILES%]\downloadmanager\agent.dll
[%PROGRAM_FILES%]\downloadmanager\api.exe
[%PROGRAM_FILES%]\downloadmanager\dm.exe
[%PROGRAM_FILES%]\downloadmanager\downloadmanager.exe
[%PROGRAM_FILES%]\downloadmanager\downloadmanager.ini
[%PROGRAM_FILES%]\downloadmanager\insdl.dll
[%PROGRAM_FILES%]\downloadmanager\install.log
[%PROGRAM_FILES%]\downloadmanager\mptray.exe
[%PROGRAM_FILES%]\downloadmanager\mpupdate.exe
[%PROGRAM_FILES%]\downloadmanager\p2pinst.exe
[%PROGRAM_FILES%]\downloadmanager\p2pl.exe
[%PROGRAM_FILES%]\downloadmanager\uninst.exe
[%PROGRAM_FILES%]\movieland terms.html
[%SYSTEM%]\mplic.dll
[%SYSTEM%]\Access.0ll
[%SYSTEM%]\Access.dll
[%DESKTOP%]\ Terms.lnk
[%DESKTOP%]\.url
[%DESKTOP%]\movieland terms.lnk
[%DESKTOP%]\movieland.url
[%DESKTOP%]\movieland_access_g.exe
[%PROGRAMS%]\247Cams.lnk
[%PROGRAMS%]\downloadmanager.lnk
[%PROGRAM_FILES%]\ Terms.html
[%PROGRAM_FILES%]\downloadmanager\agent.dll
[%PROGRAM_FILES%]\downloadmanager\api.exe
[%PROGRAM_FILES%]\downloadmanager\dm.exe
[%PROGRAM_FILES%]\downloadmanager\downloadmanager.exe
[%PROGRAM_FILES%]\downloadmanager\downloadmanager.ini
[%PROGRAM_FILES%]\downloadmanager\insdl.dll
[%PROGRAM_FILES%]\downloadmanager\install.log
[%PROGRAM_FILES%]\downloadmanager\mptray.exe
[%PROGRAM_FILES%]\downloadmanager\mpupdate.exe
[%PROGRAM_FILES%]\downloadmanager\p2pinst.exe
[%PROGRAM_FILES%]\downloadmanager\p2pl.exe
[%PROGRAM_FILES%]\downloadmanager\uninst.exe
[%PROGRAM_FILES%]\movieland terms.html
[%SYSTEM%]\mplic.dll

How to detect MediaPipe:

Files:
[%SYSTEM%]\Access.0ll
[%SYSTEM%]\Access.dll
[%DESKTOP%]\ Terms.lnk
[%DESKTOP%]\.url
[%DESKTOP%]\movieland terms.lnk
[%DESKTOP%]\movieland.url
[%DESKTOP%]\movieland_access_g.exe
[%PROGRAMS%]\247Cams.lnk
[%PROGRAMS%]\downloadmanager.lnk
[%PROGRAM_FILES%]\ Terms.html
[%PROGRAM_FILES%]\downloadmanager\agent.dll
[%PROGRAM_FILES%]\downloadmanager\api.exe
[%PROGRAM_FILES%]\downloadmanager\dm.exe
[%PROGRAM_FILES%]\downloadmanager\downloadmanager.exe
[%PROGRAM_FILES%]\downloadmanager\downloadmanager.ini
[%PROGRAM_FILES%]\downloadmanager\insdl.dll
[%PROGRAM_FILES%]\downloadmanager\install.log
[%PROGRAM_FILES%]\downloadmanager\mptray.exe
[%PROGRAM_FILES%]\downloadmanager\mpupdate.exe
[%PROGRAM_FILES%]\downloadmanager\p2pinst.exe
[%PROGRAM_FILES%]\downloadmanager\p2pl.exe
[%PROGRAM_FILES%]\downloadmanager\uninst.exe
[%PROGRAM_FILES%]\movieland terms.html
[%SYSTEM%]\mplic.dll
[%SYSTEM%]\Access.0ll
[%SYSTEM%]\Access.dll
[%DESKTOP%]\ Terms.lnk
[%DESKTOP%]\.url
[%DESKTOP%]\movieland terms.lnk
[%DESKTOP%]\movieland.url
[%DESKTOP%]\movieland_access_g.exe
[%PROGRAMS%]\247Cams.lnk
[%PROGRAMS%]\downloadmanager.lnk
[%PROGRAM_FILES%]\ Terms.html
[%PROGRAM_FILES%]\downloadmanager\agent.dll
[%PROGRAM_FILES%]\downloadmanager\api.exe
[%PROGRAM_FILES%]\downloadmanager\dm.exe
[%PROGRAM_FILES%]\downloadmanager\downloadmanager.exe
[%PROGRAM_FILES%]\downloadmanager\downloadmanager.ini
[%PROGRAM_FILES%]\downloadmanager\insdl.dll
[%PROGRAM_FILES%]\downloadmanager\install.log
[%PROGRAM_FILES%]\downloadmanager\mptray.exe
[%PROGRAM_FILES%]\downloadmanager\mpupdate.exe
[%PROGRAM_FILES%]\downloadmanager\p2pinst.exe
[%PROGRAM_FILES%]\downloadmanager\p2pl.exe
[%PROGRAM_FILES%]\downloadmanager\uninst.exe
[%PROGRAM_FILES%]\movieland terms.html
[%SYSTEM%]\mplic.dll

Folders:
[%PROGRAM_FILES%]\247Cams
[%PROGRAM_FILES%]\itbill
[%PROGRAM_FILES%]\License_Manager
[%PROGRAM_FILES%]\mediapipe
[%PROGRAM_FILES%]\p2pnetworks

Registry Keys:
HKEY_CLASSES_ROOT\amnotifier.hubawindow
HKEY_CLASSES_ROOT\amnotifier.hubawindow.1
HKEY_CLASSES_ROOT\appid\amnotifier.exe
HKEY_CLASSES_ROOT\appid\mpagent.dll
HKEY_CLASSES_ROOT\appid\{4c0b0548-ae0b-4008-999d-db33b8b2eb90}
HKEY_CLASSES_ROOT\appid\{626873ac-27f3-4d48-be81-535cf2360071}
HKEY_CLASSES_ROOT\appid\{7911272a-a32a-404e-8a51-ee18b99b18c4}
HKEY_CLASSES_ROOT\appid\{9236268d-8b29-49e5-96d9-daf5fe76941c}
HKEY_CLASSES_ROOT\appid\{99c4f93d-42a7-478d-8746-4afb6c10bc26}
HKEY_CLASSES_ROOT\appid\{ccebbeb5-d011-41b5-9f92-01f88a38dc0d}
HKEY_CLASSES_ROOT\clsid\{1e9adaf2-4eda-4074-96ce-c9972e675c88}
HKEY_CLASSES_ROOT\clsid\{48bb16aa-3f6c-4b28-9884-1fcec1c5da65}
HKEY_CLASSES_ROOT\clsid\{7bf58804-e672-4b96-8eec-bfcce6492c9a}
HKEY_CLASSES_ROOT\clsid\{b3e19860-0cd5-4991-a066-4fca2704de59}
HKEY_CLASSES_ROOT\clsid\{dfe95408-fd86-4818-a30a-bc859d9658e1}
HKEY_CLASSES_ROOT\downloadmanager.manager
HKEY_CLASSES_ROOT\downloadmanager.manager.1
HKEY_CLASSES_ROOT\interface\{1a7bcc8e-b65d-409a-bb67-57e8226d1780}
HKEY_CLASSES_ROOT\interface\{873209c1-1118-4246-be69-1b903862e061}
HKEY_CLASSES_ROOT\interface\{8e33f539-11bc-44e5-80bf-057fa1e511a6}
HKEY_CLASSES_ROOT\interface\{9a395c6c-e42e-4777-b8ef-fddeb705f3fb}
HKEY_CLASSES_ROOT\interface\{afe46cdd-00ce-45ee-bb73-8349d624f7af}
HKEY_CLASSES_ROOT\interface\{cf1e4638-637f-499d-8309-fd71b9750abc}
HKEY_CLASSES_ROOT\interface\{de2bf8da-a159-4758-8199-0b2435268212}
HKEY_CLASSES_ROOT\mediapipe.gui
HKEY_CLASSES_ROOT\mediapipe.gui.1
HKEY_CLASSES_ROOT\mpagent.agent
HKEY_CLASSES_ROOT\mpagent.agent.1
HKEY_CLASSES_ROOT\sp2p.sp2p
HKEY_CLASSES_ROOT\sp2p.sp2p.1
HKEY_CLASSES_ROOT\typelib\{45c2360e-bfdf-439b-a3ea-65e8383f9353}
HKEY_CLASSES_ROOT\typelib\{555fb512-9f3b-4359-9d2a-3c10e750ce5e}
HKEY_CLASSES_ROOT\typelib\{913422c5-c92b-4e4f-85ac-241fa700a971}\1.0
HKEY_CLASSES_ROOT\typelib\{97d860c4-f072-477b-b241-409f7cffb954}
HKEY_CLASSES_ROOT\typelib\{ab3b59a5-8bb4-46ab-a878-dfdb237d5bd5}
HKEY_CLASSES_ROOT\typelib\{afdbb222-dea9-4c12-b3a3-a13c2985e3ee}
HKEY_CLASSES_ROOT\typelib\{ccebbeb5-d011-41b5-9f92-01f88a38dc0d}
HKEY_CURRENT_USER\software\247cams
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\uninstall\247cams
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\uninstall\notify
HKEY_CURRENT_USER\software\notify
HKEY_LOCAL_MACHINE\software\downloadmanager
HKEY_LOCAL_MACHINE\software\mediapipe

Registry Values:
HKEY_CLASSES_ROOT\appid\downloadmanager.exe
HKEY_CLASSES_ROOT\appid\mediapipe.exe
HKEY_CLASSES_ROOT\appid\sp2p.exe
HKEY_CLASSES_ROOT\appid\trayicon.exe
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\itbill
HKEY_LOCAL_MACHINE\software\itbill
HKEY_LOCAL_MACHINE\software\itbill
HKEY_LOCAL_MACHINE\software\itbill
HKEY_LOCAL_MACHINE\software\itbill
HKEY_LOCAL_MACHINE\software\itbill
HKEY_LOCAL_MACHINE\software\itbill\config
HKEY_LOCAL_MACHINE\software\itbill\config
HKEY_LOCAL_MACHINE\software\itbill\config
HKEY_LOCAL_MACHINE\software\itbill\config
HKEY_LOCAL_MACHINE\software\itbill\config
HKEY_LOCAL_MACHINE\software\itbill\config
HKEY_LOCAL_MACHINE\software\itbill\config
HKEY_LOCAL_MACHINE\software\itbill\update
HKEY_LOCAL_MACHINE\software\itbill\update
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\itbill
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\itbill
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\mediapipe
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\mediapipe
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\p2pnetworks
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\p2pnetworks
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list

Removing MediaPipe:

You can download trial version of "Exterminate-It" antivirus software here, to check your computer instantly.

Or buy it to remove ALL viruses from your computer.

Also Be Aware of the Following Threats:
Removing Vxidl.AUY Trojan
ProBot.Activity.Monitor Spyware Cleaner
Spectre Spyware Cleaner
DeepThroat Trojan Cleaner
MailSpam.Squad Hacker Tool Cleaner

Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)