Threat Information for "Acceso Group S.L. 123Mania"
| Summary | Top |
- Name: Acceso Group S.L. 123Mania
- Aliases:Adware.123Mania.0FEC, W32/123Mania.C, Win32/Adware.Sipspi.A, Adware-Sipspi, AdWare.Win32.123Mania.c, AdWare.123Mania.C
- Date Discovered: 2006-08-10
- Protection Added: 2006-08-16
| Description | Top |
-- Ease of Removal 1: Uses running processes 2: Runs as a BHO or shell extension 3: Consistent file contents 4: Consistently named 5: Creates new registry entries with consistent data -- Privacy Risks/Security Changes 1: Attempts to dial a phone number -- Damage/Intrusion/Annoyance 1: Displays a toolbar [SPYWARE ONLY] 2: Changes browser home page 3: Displays targeted popup advertisements [SPYWARE ONLY] 4: Autoruns at startup without an option to be disabled 5: Modifies noncritical registry entries 6: Creates other user visible icons [SPYWARE ONLY] 7: Creates taskbar notification area icons [SPYWARE ONLY] 8: Creates third-party icons on desktop [SPYWARE ONLY] -- Propagation/Saturation 1: Creates new files 2: Infects by Active-X Control
| Technical Details | Top |
- Added Directory/File:
FilePath: %USERSTARTMENU%\FunnyChat.lnk - Added Directory/File:
FilePath: %TEMPDIR%\FunnyChat.per - Added Directory/File:
FilePath: %USERAPPDATA%\ToolsAndMusic\TextosTMP.txt - Added Directory/File:
FilePath: %USERAPPDATA%\FunnyChat\TextosTMP.txt - Added Directory/File:
FilePath: %USERAPPDATA%\DownloadsAndMP3\DownloadsAndMP3.ico - Added Directory/File:
FilePath: %SYSTEMDIR%\HaveFun.lnk - Added Directory/File:
FilePath: %CACHE%\Content.IE5\IABU456P\update*.cab - Added Directory/File:
FilePath: %USERFAVORITES%\FunnyChat.lnk - Added Directory/File:
FilePath: %USERAPPDATA%\HaveFun\TextosTMP.txt - Added Directory/File:
FilePath: %USERAPPDATA%\FunnyChat\FunnyChat.ico - Added Directory/File:
FilePath: %USERSTARTMENU%\ToolsAndMusic.lnk - Added Directory/File:
FilePath: %TEMPDIR%\HaveFun.per - Added Directory/File:
FilePath: %USERAPPDATA%\ToolsAndMusic\ToolsAndMusicTMP.ico - Added Directory/File:
FilePath: %USERAPPDATA%\HaveFun\HaveFun.ico - Added Directory/File:
FilePath: %USERAPPDATA%\DownloadsAndMP3\Licencia.txt - Added Directory/File:
FilePath: %CACHE%\Content.IE5\L3NPYBK0\PToolsAndMusic*.cab - Added Directory/File:
FilePath: %USERFAVORITES%\ToolsAndMusic.lnk - Added Directory/File:
FilePath: %USERAPPDATA%\ToolsAndMusic\Licencia.txt - Added Directory/File:
FilePath: %USERAPPDATA%\FunnyChat\Licencia.txt - Added Directory/File:
FilePath: %WINDIR%\Downloaded Program Files\mshtmpre.inf - Added Directory/File:
FilePath: %TEMPDIR%\Telefonos.txt - Added Directory/File:
FilePath: %USERDESKTOP%\DownloadsAndMP3.lnk - Added Directory/File:
FilePath: %USERAPPDATA%\HaveFun\Licencia.txt - Added Directory/File:
FilePath: %USERAPPDATA%\DownloadsAndMP3\Telefonos.txt - Added Directory/File:
FilePath: %CACHE%\Content.IE5\Q0AKUDW6\PFunnyChat*.cab - Added Directory/File:
FilePath: %TEMPDIR%\DownloadsAndMP3.cab - Added Directory/File:
FilePath: %USERAPPDATA%\ToolsAndMusic\Telefonos.txt - Added Directory/File:
FilePath: %USERAPPDATA%\FunnyChat\Telefonos.txt - Added Directory/File:
FilePath: %SYSTEMDIR%\GIDCAI32.dll - Added Directory/File:
FilePath: %SYSTEMDIR%\de42s.ico - Added Directory/File:
FilePath: %TEMPDIR%\ToolsAndMusic.cab - Added Directory/File:
FilePath: %USERDESKTOP%\HaveFun.lnk - Added Directory/File:
FilePath: %USERAPPDATA%\HaveFun\Telefonos.txt - Added Directory/File:
FilePath: %USERAPPDATA%\DownloadsAndMP3\Textos.txt - Added Directory/File:
FilePath: %USERSTARTMENU%\DownloadsAndMP3.lnk - Added Directory/File:
FilePath: %TEMPDIR%\FunnyChat.cab - Added Directory/File:
FilePath: %USERAPPDATA%\ToolsAndMusic\Textos.txt - Added Directory/File:
FilePath: %USERAPPDATA%\FunnyChat\Textos.txt - Added Directory/File:
FilePath: %SYSTEMDIR%\SIPSPI32.dll - Added Directory/File:
FilePath: %SYSTEMDIR%\FunnyChat.lnk - Added Directory/File:
FilePath: %CACHE%\PDownloadsAndMP3*.cab - Added Directory/File:
FilePath: %USERFAVORITES%\DownloadsAndMP3.lnk - Added Directory/File:
FilePath: %USERAPPDATA%\HaveFun\Textos.txt - Added Directory/File:
FilePath: %USERAPPDATA%\DownloadsAndMP3 - Added Directory/File:
FilePath: %USERSTARTMENU%\HaveFun.lnk - Added Directory/File:
FilePath: %TEMPDIR%\HaveFun.cab - Added Directory/File:
FilePath: %USERAPPDATA%\ToolsAndMusic\ToolsAndMusic.ico - Added Directory/File:
FilePath: %USERAPPDATA%\FunnyChat - Added Directory/File:
FilePath: %USERAPPDATA%\DownloadsAndMP3\DownloadsAndMP3TMP.ico - Added Directory/File:
FilePath: %SYSTEMDIR%\ToolsAndMusic.lnk - Added Directory/File:
FilePath: %CACHE%\Content.IE5\L3NPYBK0\GIDCAI32*.cab - Added Directory/File:
FilePath: %USERFAVORITES%\HaveFun.lnk - Added Directory/File:
FilePath: %USERAPPDATA%\HaveFun - Added Directory/File:
FilePath: %USERAPPDATA%\FunnyChat\FunnyChatTMP.ico - Added Directory/File:
FilePath: %WINDIR%\Downloaded Program Files\msapasrc.inf - Added Directory/File:
FilePath: %TEMPDIR%\Licencia.txt - Added Directory/File:
FilePath: %USERAPPDATA%\ToolsAndMusic - Added Directory/File:
FilePath: %USERAPPDATA%\HaveFun\HaveFunTMP.ico - Added Directory/File:
FilePath: %USERAPPDATA%\DownloadsAndMP3\LicenciaTMP.txt - Added Directory/File:
FilePath: %CACHE%\Content.IE5\L3NPYBK0\SIPSPI32*.cab - Added Directory/File:
FilePath: %TEMPDIR%\Aplicacion.ico - Added Directory/File:
FilePath: %USERAPPDATA%\ToolsAndMusic\LicenciaTMP.txt - Added Directory/File:
FilePath: %USERAPPDATA%\FunnyChat\LicenciaTMP.txt - Added Directory/File:
FilePath: %WINDIR%\Downloaded Program Files\MSNSA32.inf - Added Directory/File:
FilePath: %TEMPDIR%\Textos.txt - Added Directory/File:
FilePath: %USERDESKTOP%\FunnyChat.lnk - Added Directory/File:
FilePath: %USERAPPDATA%\HaveFun\LicenciaTMP.txt - Added Directory/File:
FilePath: %USERAPPDATA%\DownloadsAndMP3\TelefonosTMP.txt - Added Directory/File:
FilePath: %CACHE%\Content.IE5\Q0AKUDW6\PHaveFun*.cab - Added Directory/File:
FilePath: %TEMPDIR%\DownloadsAndMP3.per - Added Directory/File:
FilePath: %USERAPPDATA%\ToolsAndMusic\TelefonosTMP.txt - Added Directory/File:
FilePath: %USERAPPDATA%\FunnyChat\TelefonosTMP.txt - Added Directory/File:
FilePath: %SYSTEMDIR%\MSNSA32.dll - Added Directory/File:
FilePath: %SYSTEMDIR%\DownloadsAndMP3.lnk - Added Directory/File:
FilePath: %TEMPDIR%\ToolsAndMusic.per - Added Directory/File:
FilePath: %USERDESKTOP%\ToolsAndMusic.lnk - Added Directory/File:
FilePath: %USERAPPDATA%\HaveFun\TelefonosTMP.txt - Added Directory/File:
FilePath: %USERAPPDATA%\DownloadsAndMP3\TextosTMP.txt - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\Interface\{FC02833E-9FDE-4862-974F-828887716A28} - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\AutoSearch1.BHOsrc - Added Registry Key:
Key: HKLM\%BHOREG%\{9C5B2F29-1F46-4639-A6B4-828942301D3E} - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\CLSID\{44515AE5-25B3-46cf-833B-0D816C602868} - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\TypeLib\{B8F9DD56-4FFA-47B0-B9D7-42F45A752F4E} - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\AutoSearch1.SrchHook - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\CLSID\{9C5B2F29-1F46-4639-A6B4-828942301D3E} - Added Registry Key:
Key: HKCU\Software\MSN\DownloadsAndMP3 - Added Registry Key:
Key: HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{15651C7C-E812-44A2-A9AC-B467A2233E7D} - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\Bho1.html - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\Interface\{16F6A635-09F8-44E6-953E-81D037647255} - Added Registry Key:
Key: HKCU\Software\MSN\HaveFun - Added Registry Key:
Key: HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{9C5B2F29-1F46-4639-A6B4-828942301D3E} - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\PTPSA32.PTPSAWeb - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\Interface\{88DA3CE3-CAF2-4B82-80DC-D689B6688BE2} - Added Registry Key:
Key: HKCU\Software\MSN - Added Registry Key:
Key: HKLM\%BHOREG%\{622CC208-B014-4FE0-801B-874A5E5E403A} - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\CLSID\{15651C7C-E812-44a2-A9AC-B467A2233E7D} - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\TypeLib\{636DFAA9-78A0-4825-9E54-FCCECD1D7B35} - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\AutoSearch1.BHOsrc.1 - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\CLSID\{622CC208-B014-4FE0-801B-874A5E5E403A} - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\TypeLib\{E9A45914-275E-4866-BB75-5D65CBC3F311} - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\AutoSearch1.SrchHook.1 - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\Interface\{08675693-0BCE-44A4-9571-A7A9A9B77006} - Added Registry Key:
Key: HKCU\Software\MSN\FunnyChat - Added Registry Key:
Key: HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{44515AE5-25B3-46CF-833B-0D816C602868} - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\Bho1.html.1 - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\Interface\{34DCDBDB-60EF-4281-92C6-68C299AAB8E5} - Added Registry Key:
Key: HKCU\Software\MSN\ToolsAndMusic - Added Registry Key:
Key: HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{76DD9E77-F06C-4471-AB6C-CF03C5C6B5B0} - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\PTPSA32.PTPSAWeb.1 - Added Registry Value:
Key: HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks Value: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - Added Registry Value:
Key: HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks Value: {15651C7C-E812-44a2-A9AC-B467A2233E7D} - Added Registry Value:
Key: HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks Value: {15651C7C-E812-44a2-A9AC-B467A2233E7D} - Added Registry Data:
Key: HKCU\%CURRENTVERSIONREG%\Run Value: [RANDOM VALUE] Data: %SYSTEMDIR%\MSNSA32.dll - Added Registry Data:
Key: HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs Value: [RANDOM VALUE] Data: %SYSTEMDIR%\SIPSPI32.dll - Added Registry Data:
Key: HKCU\%CURRENTVERSIONREG%\Run Value: [RANDOM VALUE] Data: %SYSTEMDIR%\MSNSA32.dll - Added Registry Data:
Key: HKCU\%CURRENTVERSIONREG%\Run Value: [RANDOM VALUE] Data: %SYSTEMDIR%\MSNSA32.dll - Added Registry Data:
Key: HKLM\%CURRENTVERSIONREG%\Run Value: [RANDOM VALUE] Data: %SYSTEMDIR%\SIPSPI32.dll - Added Registry Data:
Key: HKCU\%CURRENTVERSIONREG%\Run Value: [RANDOM VALUE] Data: %SYSTEMDIR%\MSNSA32.dll
