Submission Summary:

What's been foundSeverity Level
Downloads/requests other files from Internet.
Registers a 32-bit in-process server DLL.
Registers a Browser Helper Object (Microsoft's Internet Explorer plugin module).

 

Technical Details:

 

File System Modifications

#Filename(s)File SizeFile Hash
1 %ProgramFiles%\AutocompletePro\AcRemoteUpdate.exe 12,288 bytes MD5: 0xD939CFF50440465875259D2D12ED38EC
SHA-1: 0xC2E40C0B747FABF629A24809548A987B582FCE65
2 %ProgramFiles%\AutocompletePro\AutocompletePro.dll 97,760 bytes MD5: 0x2D90563AA1CE8626B11F09733DC3EF0B
SHA-1: 0xCC0AB24FFCE28C3BB134AE5779F0361E996E4AE1
3 %ProgramFiles%\AutocompletePro\InstTracker.exe 8,704 bytes MD5: 0xFDB8A7445724C2631A260D854F73B0E4
SHA-1: 0x5255D0FE074802F1376BE76F2C67644274711854
4 %ProgramFiles%\AutocompletePro\support@predictad.com\chrome\content\browserOverlay.xul 3,796 bytes MD5: 0x9D2278CEC4A050EDD8C36041F384B22C
SHA-1: 0x86BE2BF6D081F9FE13C8D0DC028EA3D570E5A7E9
5 %ProgramFiles%\AutocompletePro\support@predictad.com\chrome\content\options.js 32 bytes MD5: 0xC29DF68B8BC24772AC61504FA1677AFE
SHA-1: 0xE72BE81AC24E18ABBA88D1ACD0BADF93B6BBDE60
6 %ProgramFiles%\AutocompletePro\support@predictad.com\chrome\content\options.xul 493 bytes MD5: 0x15B07D0AAF9A39C65CB44CBAED947D63
SHA-1: 0x5CA1BD3739892DDA8B9D50A5D1CD9BE552DB20C7
7 %ProgramFiles%\AutocompletePro\support@predictad.com\chrome\content\utils.js 0 bytes MD5: 0xD41D8CD98F00B204E9800998ECF8427E
SHA-1: 0xDA39A3EE5E6B4B0D3255BFEF95601890AFD80709
8 %ProgramFiles%\AutocompletePro\support@predictad.com\chrome.manifest 176 bytes MD5: 0x5BF813FADD66689E5BBAFAEDF6AC5857
SHA-1: 0x1CAA30BEA85509123D40C00786E2B83191A55BBA
9 %ProgramFiles%\AutocompletePro\support@predictad.com\defaults\preferences\predictad.js 373 bytes MD5: 0xAAFCE2CF73CB7BC60C7621893001BA6C
SHA-1: 0x740BD0206C5BECCC3F8F727FEDF483B51EDECDFC
10 %ProgramFiles%\AutocompletePro\support@predictad.com\install.rdf 1,279 bytes MD5: 0x64A7A1E88E9966DFAFAF702C3D7E6034
SHA-1: 0xA5BF67D080B5BD8C384159ADD5C4510567E60655
11 %ProgramFiles%\AutocompletePro\TaskScheduler.dll 45,056 bytes MD5: 0x86B881A964EE0A7C2EAD19C76D6EAB33
SHA-1: 0xD39C70932DE0AECEDABA86E999F8BC9B43212E70
12 %ProgramFiles%\AutocompletePro\unins000.dat 2,375 bytes MD5: 0x0B75784CCC8308730A9EE6F0A9C56999
SHA-1: 0xA515DCF2B37AF4FA8328DA8F9D906B5C4B4C60B6
13 %ProgramFiles%\AutocompletePro\unins000.exe 707,354 bytes MD5: 0x2BD2C41BB77BAE425EC52ABFC59151DC
SHA-1: 0xE8891932C87D4EC6D4BCCFF0ECAC9E58A8D32277
14 [file and pathname of the sample #1] 370,944 bytes MD5: 0x927EFD36B2648C604D915689FAD11E0A
SHA-1: 0x4F0699495F6858E5C77B8420A395E64F8BB482D3
15 %Windir%\Tasks\AcPro Daily Update.job 330 bytes MD5: 0x10D6E75C45698D4467EC12789D1B604D
SHA-1: 0xDAE143A33BAA40C3E1FB1F646D18AB7DFA37257C

 

Registry Modifications

 

Other details

Netherlands

Remote HostPort Number
62.219.199.21080

 

 

All content ("Information") contained in this report is the copyrighted work of Threat Expert Ltd and its associated companies ("ThreatExpert") and may not be copied without the express permission of ThreatExpert.

The Information is provided on an "as is" basis. ThreatExpert disclaims all warranties, whether express or implied, to the maximum extent permitted by law, including the implied warranties that the Information is merchantable, of satisfactory quality, accurate, fit for a particular purpose or need, or non-infringing, unless such implied warranties are legally incapable of exclusion. Further, ThreatExpert does not warrant or make any representations regarding the use or the results of the use of the Information in terms of their correctness, accuracy, reliability, or otherwise.

Copyright © 2014 ThreatExpert. All rights reserved.