Threat Database Adware Adware.Deals Plugin

Adware.Deals Plugin

By CagedTech in Adware

Threat Scorecard

Ranking: 16,938
Threat Level: 20 % (Normal)
Infected Computers: 3,095
First Seen: March 11, 2013
Last Seen: October 18, 2023
OS(es) Affected: Windows

Aliases

4 security vendors flagged this file as malicious.

Anti-Virus Software Detection
GData Win32:Adload-NB
Avast Win32:Adload-NB [Adw]
GData Win32:Adload-MU
Avast Win32:Adload-MU [Adw]

File System Details

Adware.Deals Plugin may create the following file(s):
# File Name MD5 Detections
1. Deals Plugin Extension.dll f63c4146ccd6b06c654363812386d89c 1,728
2. Deals Plugin Extension.dll 28867b8f0d8ab8be395fad6b1949f9e0 222
3. Deals Plugin Extension.dll 7a5b58a9cd111e2e77ddd8decfe90abb 22
4. Deals Plugin Extension.dll de70630ca24c84fd2961dc9d532cf465 10
5. DealsPlugin.exe fe8f7cb9e6a18fa1a6ae068de12a1feb 2
6. Deals Plugin Extension-bg.exe 4224f212e23bd5934aae5e75d3e13767 0
7. Uninstall.exe 257ee0a2b3ec0693e8f79e1c40667d6b 0

Registry Details

Adware.Deals Plugin may create the following registry entry or registry entries:
CLSID
{11111111-1111-1111-1111-110211181106}
{22222222-2222-2222-2222-220222182206}
{44444444-4444-4444-4444-440244184406}
{55555555-5555-5555-5555-550255185506}
{66666666-6666-6666-6666-660266186606}
Regexp file mask
%windir%\System32\Tasks\Updater21806.exe
SOFTWARE\38922
Software\AppDataLow\Software\Crossrider\onBeforeNavigate\21806
Software\AppDataLow\Software\Crossrider\onRequest\21806
Software\AppDataLow\Software\Deals Plugin Extension
SOFTWARE\Classes\CrossriderApp0021806.BHO
SOFTWARE\Classes\CrossriderApp0021806.BHO.1
SOFTWARE\Classes\CrossriderApp0021806.Sandbox
SOFTWARE\Classes\CrossriderApp0021806.Sandbox.1
Software\Cr_Installer\21806
SOFTWARE\Deals Plugin
SOFTWARE\Deals Plugin Extension
Software\InstalledBrowserExtensions\Innovative Apps\21806
Software\Microsoft\Internet Explorer\Approved Extensions\{11111111-1111-1111-1111-110211181106}
SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION\Deals Plugin Extension-bg.exe
SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Updater21806.exe
Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110011461137}
SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110211181106}
Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110211181106}
Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110211181106}
SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\{11111111-1111-1111-1111-110211181106}
SOFTWARE\Proxy\Installations\Deals Plugin
SOFTWARE\Wow6432Node\38922
SOFTWARE\Wow6432Node\Deals Plugin
SOFTWARE\Wow6432Node\Deals Plugin Extension
SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION\Deals Plugin Extension-bg.exe
SOFTWARE\Wow6432Node\Microsoft\Tracing\Deals Plugin Extension_RASAPI32
SOFTWARE\Wow6432Node\Microsoft\Tracing\Deals Plugin Extension_RASMANCS
Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110011461137}
SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{11111111-1111-1111-1111-110211181106}
SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110211181106}
SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\{11111111-1111-1111-1111-110211181106}

Directories

Adware.Deals Plugin may create the following directory or directories:

%APPDATA%\Microsoft\Windows\Start Menu\Programs\Deals Plugin
%LOCALAPPDATA%\Deals Plugin
%LOCALAPPDATA%\Deals Plugin Extension
%LOCALAPPDATA%\Updater21806
%PROGRAMFILES%\Deals Plugin
%PROGRAMFILES%\Deals Plugin Extension
%PROGRAMFILES(x86)%\Deals Plugin
%PROGRAMFILES(x86)%\Deals Plugin Extension
%USERPROFILE%\Local Settings\Application Data\Updater21806
%UserProfile%\Local Settings\Application Data\Deals Plugin

URLs

Adware.Deals Plugin may call the following URLs:

Deals Plugin

Trending

Most Viewed

Loading...