Deal Keeper

By GoldSparrow in Adware

Threat Scorecard

Ranking:	5,622
Threat Level:	20 % (Normal)
Infected Computers:	8,033

First Seen:	July 17, 2014
Last Seen:	September 12, 2023
OS(es) Affected:	Windows

Deal Keeper is an adware program acting as a browser extension that may generate random advertisements and allow redirects to questionable sites. Through Deal Keeper ads, your system may automatically load up various ads in different formats, such as banners and pop-ups. The Deal Keeper ads may offer various savings or coupon deals for products through shopping over the internet. Stopping the Deal Keeper ads may require finding all components related to Deal Keeper and removing each of them.

Table of Contents

SpyHunter Detects & Remove Deal Keeper

File System Details

Deal Keeper may create the following file(s):

Expand All | Collapse All

#	File Name	MD5	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	{55dce8ba-9dec-4013-937e-adbf9317d990}w64.sys	5eb81e620027c97394b1a2cf1c00c0c9	3
Name: {55dce8ba-9dec-4013-937e-adbf9317d990}w64.sys MD5: 5eb81e620027c97394b1a2cf1c00c0c9 Size: 61.07 KB (61072 bytes) Detections: 3 Type: System file Path: system32\drivers Group: Malware file Last Updated: September 29, 2014
2.	{55dce8ba-9dec-4013-937e-adbf9317d990}w64.sys	e28a89d82006bc1a0a81d20c16e9518d	3
Name: {55dce8ba-9dec-4013-937e-adbf9317d990}w64.sys MD5: e28a89d82006bc1a0a81d20c16e9518d Size: 48.78 KB (48784 bytes) Detections: 3 Type: System file Path: system32\drivers Group: Malware file Last Updated: September 29, 2014
3.	{55dce8ba-9dec-4013-937e-adbf9317d990}w64.sys	d695bdb7b1d4746b696232533791a75b	2
Name: {55dce8ba-9dec-4013-937e-adbf9317d990}w64.sys MD5: d695bdb7b1d4746b696232533791a75b Size: 48.78 KB (48784 bytes) Detections: 2 Type: System file Path: system32\drivers Group: Malware file Last Updated: September 29, 2014
4.	{55dce8ba-9dec-4013-937e-adbf9317d990}w64.sys	df715cb572378a993668026621282fab	1
Name: {55dce8ba-9dec-4013-937e-adbf9317d990}w64.sys MD5: df715cb572378a993668026621282fab Size: 48.78 KB (48784 bytes) Detections: 1 Type: System file Path: system32\drivers Group: Malware file Last Updated: September 29, 2014

Registry Details

Deal Keeper may create the following registry entry or registry entries:

CLSID

{0B645528-4337-4580-8C82-8686D3B8A8B2}

{17E7D28C-6BBC-4411-83BE-730663C0E130}

{1ec8187a-6435-44e3-bbe4-6ce6d3c69254}

{3D62014A-A3A3-45C4-AAD8-754A3B854048}

{66c4d8f8-66d0-4eca-8946-d0f47b781e94}

{BA0AB49B-34A1-4C36-BB3B-E6F458974507}

{CBC803E3-0620-4BD1-9994-FFE9EDBFCEED}

{cdcb9930-a7f0-4aa9-8004-94481380a3df}

{EF1E31FC-BB9B-4698-BF93-BC5A1035B8B6}

HKEY..\..\..\..{RegistryKeys}

Software\Deal Keeper

Software\Microsoft\Internet Explorer\Approved Extensions\{1EC8187A-6435-44E3-BBE4-6CE6D3C69254}

Software\Microsoft\Internet Explorer\Approved Extensions\{66c4d8f8-66d0-4eca-8946-d0f47b781e94}

Software\Microsoft\Internet Explorer\Approved Extensions\{CDCB9930-A7F0-4AA9-8004-94481380A3DF}

SOFTWARE\Microsoft\Tracing\DealKeeper_RASAPI32

SOFTWARE\Microsoft\Tracing\DealKeeper_RASMANCS

SOFTWARE\Microsoft\Tracing\updateDealKeeper_RASAPI32

SOFTWARE\Microsoft\Tracing\updateDealKeeper_RASMANCS

SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{1ec8187a-6435-44e3-bbe4-6ce6d3c69254}

SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{66c4d8f8-66d0-4eca-8946-d0f47b781e94}

Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1EC8187A-6435-44E3-BBE4-6CE6D3C69254}

Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{66c4d8f8-66d0-4eca-8946-d0f47b781e94}

Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{CDCB9930-A7F0-4AA9-8004-94481380A3DF}

Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1EC8187A-6435-44E3-BBE4-6CE6D3C69254}

Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{66c4d8f8-66d0-4eca-8946-d0f47b781e94}

Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CDCB9930-A7F0-4AA9-8004-94481380A3DF}

Software\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\{1ec8187a-6435-44e3-bbe4-6ce6d3c69254}

SOFTWARE\Wow6432Node\Deal Keeper

SOFTWARE\Wow6432Node\Microsoft\Tracing\DealKeeper_RASAPI32

SOFTWARE\Wow6432Node\Microsoft\Tracing\DealKeeper_RASMANCS

SOFTWARE\Wow6432Node\Microsoft\Tracing\updateDealKeeper_RASAPI32

SOFTWARE\Wow6432Node\Microsoft\Tracing\updateDealKeeper_RASMANCS

SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{1ec8187a-6435-44e3-bbe4-6ce6d3c69254}

SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{66c4d8f8-66d0-4eca-8946-d0f47b781e94}

SYSTEM\ControlSet001\services\eventlog\Application\Update Deal Keeper

SYSTEM\ControlSet001\services\eventlog\Application\Util Deal Keeper

SYSTEM\ControlSet001\services\Update Deal Keeper

SYSTEM\ControlSet001\services\Util Deal Keeper

SYSTEM\CurrentControlSet\services\eventlog\Application\Update Deal Keeper

SYSTEM\CurrentControlSet\services\eventlog\Application\Util Deal Keeper

SYSTEM\CurrentControlSet\services\Update Deal Keeper

SYSTEM\CurrentControlSet\services\Util Deal Keeper

HKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}

Deal Keeper

Directories

Deal Keeper may create the following directory or directories:

%ALLUSERSPROFILE%\Application Data\d7a0fe93-7bf3-4f3d-89c3-fe4e144b2eb8

%ALLUSERSPROFILE%\d7a0fe93-7bf3-4f3d-89c3-fe4e144b2eb8

%PROGRAMFILES%\Deal Keeper

%PROGRAMFILES(x86)%\Deal Keeper

%TEMP%\Deal Keeper

Enigma Software Group Prevails Over Malwarebytes at the Ninth Circuit

Search

Change Region

Deal Keeper

Threat Scorecard

EnigmaSoft Threat Scorecard

SpyHunter Detects & Remove Deal Keeper

File System Details

Registry Details

Directories

Submit Comment

Trending

'YouPorn' Email Scam

Safe Search Eng

Findtheirreport.com

Most Viewed

Is Lookmovie.io Safe?

How To Fix 'Printer Driver is Unavailable' Error

Discord Shows Black Screen when Sharing Screen