Snap.do
Threat Scorecard
EnigmaSoft Threat Scorecard
EnigmaSoft Threat Scorecards are assessment reports for different malware threats which have been collected and analyzed by our research team. EnigmaSoft Threat Scorecards evaluate and rank threats using several metrics including real-world and potential risk factors, trends, frequency, prevalence, and persistence. EnigmaSoft Threat Scorecards are updated regularly based on our research data and metrics and are useful for a wide range of computer users, from end users seeking solutions to remove malware from their systems to security experts analyzing threats.
EnigmaSoft Threat Scorecards display a variety of useful information, including:
Ranking: The ranking of a particular threat in EnigmaSoft’s Threat Database.
Severity Level: The determined severity level of an object, represented numerically, based on our risk modeling process and research, as explained in our Threat Assessment Criteria.
Infected Computers: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
See also Threat Assessment Criteria.
Ranking: | 188 |
Threat Level: | 50 % (Medium) |
Infected Computers: | 1,974,527 |
First Seen: | October 12, 2012 |
Last Seen: | April 25, 2024 |
OS(es) Affected: | Windows |
The Snap.do website is associated with the Smartbar toolbar for your web browser. This toolbar is actually an adware component. Even though Snap.do claims that Snap.do can simplify the way you access your favorite websites, this website and its associated toolbar have several unwanted behaviors that are more closely associated with known malware infections than with legitimate applications. Most of the time, the Snap.do toolbar will be bundled along with freeware programs, included in the installation process.
Reading the 'official' description of Snap.do, it would be hard to guess that this website is linked to malware. The people behind Snap.do claim that this website's vision is to become an industry leader in providing simple, smart web solutions to their clients as well as complementary programs that improve browser efficiency and make browsing simply with interfaces and technologies that computer users are already used to utilize. However, this vision does not match up well to reality, since products associated with Snap.do have various components that are more commonly associated with adware. There are three reasons why products associated with Snap.do are considered unsafe for your computer:
- Products associated with Snap.do may have spyware capabilities. That is, this website and software associated with Snap.do will collect your personal data and then distribute it to a third party without your authorization.
- The Snap.do website and software associated with Snap.do may also be considered adware. This is because Snap.do is designed to deliver intrusive advertisements based on private data collected about your browsing behaviors. These advertisements may appear as pop-up windows or embedded in web pages.
- Snap.do is also linked to browser hijackers. These kinds of components are designed to change your web browser's settings, affecting which websites you are able to visit and alters the way you browse the Internet.
While many websites associated with browser hijackers may, in themselves, be perfectly safe, this is not the case with Snap.do and software associated with this website. Due to their adware and browser hijacker components, any contact with the Snap.do website or with software associated with Snap.do should be followed with a thorough scan of your machine with a capable anti-malware application.
Table of Contents
Aliases
2 security vendors flagged this file as malicious.
Anti-Virus Software | Detection |
---|---|
Symantec | Bloodhound.MalPE |
AhnLab-V3 | PUP/Win32.Toolbar |
SpyHunter Detects & Remove Snap.do
File System Details
# | File Name | MD5 |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
---|---|---|---|
1. | uninstall.dat | 9a26a027205072779ac084dfa1073751 | 16,254 |
2. | uninstall.dat | 7c324f4ec4fb9a2ffacf43ad11a6cf60 | 7,496 |
3. | uninstall.dat | 74d6da248a6f633397d0080a57fc53ee | 3,267 |
4. | uninstall.dat | 905472980b9f20d7328fb9627254affe | 2,213 |
5. | uninstall.dat | bdfbd0d9140ee315a5caba1157541813 | 1,982 |
6. | uninstall.dat | 0884b327b012ded7b390711a6bc6b771 | 1,870 |
7. | uninstall.dat | 952c61b8d00c3c24c1d54483fe53646f | 1,391 |
8. | uninstall.dat | 5f472b3fffe093e8b47d00a7cd165108 | 1,357 |
9. | uninstall.dat | 8bcf2573f0fa98fcd4c0e9f62cf3e6cf | 1,203 |
10. | uninstall.dat | 6c5cac85dbc1df3ced89e3ea8645bc32 | 1,153 |
11. | uninstall.dat | 3fb39004d02ca732c1295c6425bc76c2 | 755 |
12. | uninstall.dat | 6c7a8866b3583aa0900302aa01b29936 | 191 |
13. | uninstall.dat | c2d23b86efc0520ee572af5cac9489c9 | 135 |
14. | uninstall.dat | e7ea46f14f772f79218e9af5c3839211 | 125 |
15. | uninstall.dat | 33b0dc715e3482dcaed2ec042d70711d | 42 |
16. | uninstall.dat | 6c56cf25f2e127d368462f2fad64159f | 41 |
17. | gld.exe | c5ea20f32c1ad46670b6a6442ddd04d6 | 38 |
18. | uninstall.dat | b9c88365b15155e99f3938e9fae3d1ed | 37 |
19. | emphasising.exe | 25034e95214d42e20e9383a353c125f6 | 37 |
20. | patience.exe | 069ad9a7445f11563b2919a5f006979c | 32 |
21. | uninstall.dat | 682c0a1544d147065cc736e8e163f678 | 23 |
22. | uninstall.dat | 56ee418075850ab0667807a8aff14910 | 20 |
23. | uninstall.dat | 875787d7752903ddb0390f14956b06ca | 19 |
24. | uninstall.dat | 6740ac36c1f3f985477d072add834ec2 | 17 |
25. | uninstall.dat | d0510ae29ba5df68e32ebb49008446e6 | 14 |
26. | uninstall.dat | 660fd6596a4ed4e26d1962233ed39c53 | 12 |
27. | uninstall.dat | d7d6756cd769b6e077f8d0bbc19e8f82 | 12 |
Registry Details
Directories
Snap.do may create the following directory or directories:
%ALLUSERSPROFILE%\Anwendungsdaten\Logic Cramble |
%ALLUSERSPROFILE%\Application Data\AppoxinloK |
%ALLUSERSPROFILE%\Application Data\Graveairs |
%ALLUSERSPROFILE%\Application Data\Zonsoft |
%ALLUSERSPROFILE%\Application Data\Zonsofts |
%ALLUSERSPROFILE%\Application Data\apptreppabm |
%ALLUSERSPROFILE%\Application Data\apptreppabms |
%ALLUSERSPROFILE%\Application Data\appxafmads |
%ALLUSERSPROFILE%\Application Data\kipolam |
%ALLUSERSPROFILE%\Application Data\mbappert |
%ALLUSERSPROFILE%\Application Data\mbapperts |
%ALLUSERSPROFILE%\Application Data\pangoc |
%ALLUSERSPROFILE%\Application Data\pangocs |
%ALLUSERSPROFILE%\Application Data\tolnix |
%ALLUSERSPROFILE%\Application Data\tolnixs |
%ALLUSERSPROFILE%\AppnegyloP |
%ALLUSERSPROFILE%\AppnorriA |
%ALLUSERSPROFILE%\AppnorriAs |
%ALLUSERSPROFILE%\AppoxinloK |
%ALLUSERSPROFILE%\AppoxinloKs |
%ALLUSERSPROFILE%\ApppotriA |
%ALLUSERSPROFILE%\ApppotriAs |
%ALLUSERSPROFILE%\AppthgildeMs |
%ALLUSERSPROFILE%\AppxelosknoK |
%ALLUSERSPROFILE%\BluetoothPoint |
%ALLUSERSPROFILE%\BluetoothPoints |
%ALLUSERSPROFILE%\Dados de aplicativos\Logic Cramble |
%ALLUSERSPROFILE%\Daltit |
%ALLUSERSPROFILE%\Daltits |
%ALLUSERSPROFILE%\Dane aplikacji\Logic Cramble |
%ALLUSERSPROFILE%\Dati applicazioni\Logic Cramble |
%ALLUSERSPROFILE%\Datos de programa\Logic Cramble |
%ALLUSERSPROFILE%\Graveairs |
%ALLUSERSPROFILE%\Hotfreshs |
%ALLUSERSPROFILE%\Pitachoks |
%ALLUSERSPROFILE%\Polygen |
%ALLUSERSPROFILE%\Polygens |
%ALLUSERSPROFILE%\Silsolis |
%ALLUSERSPROFILE%\Silsoliss |
%ALLUSERSPROFILE%\Singdaxs |
%ALLUSERSPROFILE%\Trioflex |
%ALLUSERSPROFILE%\Trioflexs |
%ALLUSERSPROFILE%\Viaair |
%ALLUSERSPROFILE%\Viaairs |
%ALLUSERSPROFILE%\Zonsoft |
%ALLUSERSPROFILE%\Zonsofts |
%ALLUSERSPROFILE%\appcognap |
%ALLUSERSPROFILE%\apppitsirt |
%ALLUSERSPROFILE%\apprelrons |
%ALLUSERSPROFILE%\apprelronss |
%ALLUSERSPROFILE%\apptreppabm |
%ALLUSERSPROFILE%\apptreppabms |
%ALLUSERSPROFILE%\appxafmads |
%ALLUSERSPROFILE%\appxinlot |
%ALLUSERSPROFILE%\ecivreSevaS |
%ALLUSERSPROFILE%\ecivreSevaSs |
%ALLUSERSPROFILE%\iretadpUMGRs |
%ALLUSERSPROFILE%\kipolam |
%ALLUSERSPROFILE%\loceps |
%ALLUSERSPROFILE%\mbappert |
%ALLUSERSPROFILE%\mbapperts |
%ALLUSERSPROFILE%\ohnuze |
%ALLUSERSPROFILE%\ohnuzes |
%ALLUSERSPROFILE%\pangoc |
%ALLUSERSPROFILE%\pangocs |
%ALLUSERSPROFILE%\tolnix |
%ALLUSERSPROFILE%\tolnixs |
%ALLUSERSPROFILE%\xifss |
%COMMONPROGRAMFILES%\AlphaString |
%COMMONPROGRAMFILES%\Alphafan |
%COMMONPROGRAMFILES%\Alphait |
%COMMONPROGRAMFILES%\Alphatone |
%COMMONPROGRAMFILES%\Apsing |
%COMMONPROGRAMFILES%\Bio-Com |
%COMMONPROGRAMFILES%\Biolight |
%COMMONPROGRAMFILES%\Confind |
%COMMONPROGRAMFILES%\Doublelab |
%COMMONPROGRAMFILES%\Ecojob |
%COMMONPROGRAMFILES%\Finphase |
%COMMONPROGRAMFILES%\Fixfax |
%COMMONPROGRAMFILES%\Goodlex |
%COMMONPROGRAMFILES%\GrooveTax |
%COMMONPROGRAMFILES%\Groovecof |
%COMMONPROGRAMFILES%\HatTrax |
%COMMONPROGRAMFILES%\Hometough |
%COMMONPROGRAMFILES%\Icetech |
%COMMONPROGRAMFILES%\Inchstrong |
%COMMONPROGRAMFILES%\IndigoNix |
%COMMONPROGRAMFILES%\Joy-Com |
%COMMONPROGRAMFILES%\Kanla |
%COMMONPROGRAMFILES%\KinDom |
%COMMONPROGRAMFILES%\Kinin |
%COMMONPROGRAMFILES%\Labzap |
%COMMONPROGRAMFILES%\Lamcof |
%COMMONPROGRAMFILES%\Lamity |
%COMMONPROGRAMFILES%\Ontofan |
%COMMONPROGRAMFILES%\OpenOvedom |
%COMMONPROGRAMFILES%\OverLab |
%COMMONPROGRAMFILES%\Ozercom |
%COMMONPROGRAMFILES%\Physlab |
%COMMONPROGRAMFILES%\Quojob |
%COMMONPROGRAMFILES%\Quotelux |
%COMMONPROGRAMFILES%\Qvoity |
%COMMONPROGRAMFILES%\Ranfresh |
%COMMONPROGRAMFILES%\Rantax |
%COMMONPROGRAMFILES%\Rantip |
%COMMONPROGRAMFILES%\Runtax |
%COMMONPROGRAMFILES%\Soling |
%COMMONPROGRAMFILES%\Strongtech |
%COMMONPROGRAMFILES%\Strongtip |
%COMMONPROGRAMFILES%\Subsoft |
%COMMONPROGRAMFILES%\Tanity |
%COMMONPROGRAMFILES%\Tipeco |
%COMMONPROGRAMFILES%\ToughHold |
%COMMONPROGRAMFILES%\Trusting |
%COMMONPROGRAMFILES%\Truststring |
%COMMONPROGRAMFILES%\Ventodex |
%COMMONPROGRAMFILES%\Ventotone |
%COMMONPROGRAMFILES%\Vilaflex |
%COMMONPROGRAMFILES%\Villabam |
%COMMONPROGRAMFILES%\VolCore |
%COMMONPROGRAMFILES%\Voya-Strong |
%COMMONPROGRAMFILES%\Zonlex |
%COMMONPROGRAMFILES%\Zoomtip |
%COMMONPROGRAMFILES%\Zoteco |
%COMMONPROGRAMFILES%\Zuntough |
%COMMONPROGRAMFILES%\biojob |
%COMMONPROGRAMFILES%\dentozimeco |
%COMMONPROGRAMFILES%\kanis |
%COMMONPROGRAMFILES%\kay-dax |
%COMMONPROGRAMFILES%\kinzuncom |
%COMMONPROGRAMFILES%\vialax |
%COMMONPROGRAMFILES%\zaamtom |
%COMMONPROGRAMFILES%\zunfax |
%COMMONPROGRAMFILES(x86)%\AlphaString |
%COMMONPROGRAMFILES(x86)%\Alphafan |
%COMMONPROGRAMFILES(x86)%\Alphait |
%COMMONPROGRAMFILES(x86)%\Alphatone |
%COMMONPROGRAMFILES(x86)%\Apsing |
%COMMONPROGRAMFILES(x86)%\BigHotis |
%COMMONPROGRAMFILES(x86)%\Bio-Com |
%COMMONPROGRAMFILES(x86)%\Biodonkix |
%COMMONPROGRAMFILES(x86)%\Biolight |
%COMMONPROGRAMFILES(x86)%\Cofgohold |
%COMMONPROGRAMFILES(x86)%\Confind |
%COMMONPROGRAMFILES(x86)%\Donsillax |
%COMMONPROGRAMFILES(x86)%\Doublelab |
%COMMONPROGRAMFILES(x86)%\Ecojob |
%COMMONPROGRAMFILES(x86)%\FaseQuoit |
%COMMONPROGRAMFILES(x86)%\Finphase |
%COMMONPROGRAMFILES(x86)%\Fix-Fan |
%COMMONPROGRAMFILES(x86)%\Fixfax |
%COMMONPROGRAMFILES(x86)%\FreshReddax |
%COMMONPROGRAMFILES(x86)%\Freshlatlex |
%COMMONPROGRAMFILES(x86)%\Goodlex |
%COMMONPROGRAMFILES(x86)%\GrooveTax |
%COMMONPROGRAMFILES(x86)%\Groovecof |
%COMMONPROGRAMFILES(x86)%\HatTrax |
%COMMONPROGRAMFILES(x86)%\Hometough |
%COMMONPROGRAMFILES(x86)%\Icetech |
%COMMONPROGRAMFILES(x86)%\Inchstrong |
%COMMONPROGRAMFILES(x86)%\IndigoNix |
%COMMONPROGRAMFILES(x86)%\Jobwarm |
%COMMONPROGRAMFILES(x86)%\Joy-Com |
%COMMONPROGRAMFILES(x86)%\Kanla |
%COMMONPROGRAMFILES(x86)%\KinDom |
%COMMONPROGRAMFILES(x86)%\Kinin |
%COMMONPROGRAMFILES(x86)%\KonkDondax |
%COMMONPROGRAMFILES(x86)%\Konksailnix |
%COMMONPROGRAMFILES(x86)%\Labzap |
%COMMONPROGRAMFILES(x86)%\Lamcof |
%COMMONPROGRAMFILES(x86)%\Lamity |
%COMMONPROGRAMFILES(x86)%\Math-Tax |
%COMMONPROGRAMFILES(x86)%\Ontofan |
%COMMONPROGRAMFILES(x86)%\OpeHotcom |
%COMMONPROGRAMFILES(x86)%\OpenOvedom |
%COMMONPROGRAMFILES(x86)%\OverLab |
%COMMONPROGRAMFILES(x86)%\Ozercom |
%COMMONPROGRAMFILES(x86)%\Physlab |
%COMMONPROGRAMFILES(x86)%\Quojob |
%COMMONPROGRAMFILES(x86)%\Quotelux |
%COMMONPROGRAMFILES(x86)%\Qvoity |
%COMMONPROGRAMFILES(x86)%\Ranfresh |
%COMMONPROGRAMFILES(x86)%\Rantax |
%COMMONPROGRAMFILES(x86)%\Rantip |
%COMMONPROGRAMFILES(x86)%\Runtax |
%COMMONPROGRAMFILES(x86)%\Sailsaobam |
%COMMONPROGRAMFILES(x86)%\Soling |
%COMMONPROGRAMFILES(x86)%\Statphase |
%COMMONPROGRAMFILES(x86)%\Stockphase |
%COMMONPROGRAMFILES(x86)%\Strongtech |
%COMMONPROGRAMFILES(x86)%\Strongtip |
%COMMONPROGRAMFILES(x86)%\Subsoft |
%COMMONPROGRAMFILES(x86)%\SumLax |
%COMMONPROGRAMFILES(x86)%\Sunlam |
%COMMONPROGRAMFILES(x86)%\Tanity |
%COMMONPROGRAMFILES(x86)%\Tinfresh |
%COMMONPROGRAMFILES(x86)%\Tipeco |
%COMMONPROGRAMFILES(x86)%\Top-Sing |
%COMMONPROGRAMFILES(x86)%\ToughHold |
%COMMONPROGRAMFILES(x86)%\Tresstring |
%COMMONPROGRAMFILES(x86)%\Trippletantip |
%COMMONPROGRAMFILES(x86)%\Trisla |
%COMMONPROGRAMFILES(x86)%\Trusting |
%COMMONPROGRAMFILES(x86)%\Truststring |
%COMMONPROGRAMFILES(x86)%\Vento-Zap |
%COMMONPROGRAMFILES(x86)%\Ventodex |
%COMMONPROGRAMFILES(x86)%\Ventotone |
%COMMONPROGRAMFILES(x86)%\Ventotop |
%COMMONPROGRAMFILES(x86)%\Vilaflex |
%COMMONPROGRAMFILES(x86)%\Villabam |
%COMMONPROGRAMFILES(x86)%\VolCore |
%COMMONPROGRAMFILES(x86)%\Voya-Strong |
%COMMONPROGRAMFILES(x86)%\Xxx-Ransoft |
%COMMONPROGRAMFILES(x86)%\Y--Tex |
%COMMONPROGRAMFILES(x86)%\Zerex |
%COMMONPROGRAMFILES(x86)%\Zonlex |
%COMMONPROGRAMFILES(x86)%\ZooSiltam |
%COMMONPROGRAMFILES(x86)%\Zoomstock |
%COMMONPROGRAMFILES(x86)%\Zoomtip |
%COMMONPROGRAMFILES(x86)%\Zoteco |
%COMMONPROGRAMFILES(x86)%\Zuntough |
%COMMONPROGRAMFILES(x86)%\biojob |
%COMMONPROGRAMFILES(x86)%\dentozimeco |
%COMMONPROGRAMFILES(x86)%\fixcom |
%COMMONPROGRAMFILES(x86)%\freshhome |
%COMMONPROGRAMFILES(x86)%\kanis |
%COMMONPROGRAMFILES(x86)%\math-plus |
%COMMONPROGRAMFILES(x86)%\vialax |
%COMMONPROGRAMFILES(x86)%\zaamtom |
%COMMONPROGRAMFILES(x86)%\zunfax |
%PROGRAMFILES%\drÅÀÌ |
%PROGRAMFILES%\eakzaihjajkuc |
%PROGRAMFILES%\eauknrbnwrpu2 |
%PROGRAMFILES%\owdbzuqlndefnbhfezr |
%PROGRAMFILES%\patience |
%PROGRAMFILES%\rfwjmjnpstqu2 |
%PROGRAMFILES(x86)%\eakzaihjajkuc |
%PROGRAMFILES(x86)%\eauknrbnwrpu2 |
%PROGRAMFILES(x86)%\owdbzuqlndefnbhfezr |
%PROGRAMFILES(x86)%\patience |
%PROGRAMFILES(x86)%\rfwjmjnpstqu2 |
%TEMP%\eakzaihjajkuc |
%TEMP%\eauknrbnwrpu2 |
%TEMP%\owdbzuqlndefnbhfezr |
%TEMP%\rfwjmjnpstqu2 |
URLs
Snap.do may call the following URLs:
feed.24-stream.com |
feed.amazingtab.com |
feed.any-templates.com |
feed.cryptoverto.com |
feed.ebooks-club.com |
feed.free-converterz.com |
feed.funkystreams.com |
feed.game-jungle.com |
feed.getlive.news |
feed.giph-it.com |
feed.live-streaming.online |
feed.privatecheetah.com |
feed.runspeedcheck.com |
feed.salahweb.com |
feed.searchfrit.com/?= |
feed.sound-hd.com |
feed.specialtab.com |
feed.streamingworldcup.com |
feed.techappnetwork.com |
globo-search.com |
http://feed.moviebox-online.com/ |
http://protected-search.com/ |
http://www.anysearchmanager.com/ |
https://feed.videoconverterz.com/?publisherid |
pixel.pxcollect.com |
videoconverterz.com |