Second Thought
Category: Trojan
Risk:
High Risk
* High risk threats typically are remotely exploitable vulnerabilities, which can lead to system compromise. Successful exploitation does not normally require any interaction. May open up communication ports, use polymorphic tactics, stealth installations, and/or anti-spy counter measures. May use a security flaw in the operating system to gain access to your computer.
Description: SecondThought is an adware program that downloads and displays advertisements from 2ndthought.com. It may hijkack browser settings, and is known to download and install additional spyware. Stcloader.exe creates Second Thought.lnk on the Desktop with a link to itself, and Eliminate Pop-Ups with a link to http://www.kill-pop-ups.com/block.php?ref=desktop. This causes advertising to be shown while the Internet is being used. The program collects information on which sites and resources interest the user, and sends this information to the creator of the virus. It also adds a Search tool bar to the browser.
Alias: SecondThought, 2ndThought
Signatures:
process: stc.exe: MD5 Hash:
process: Stcloader.exe: MD5 Hash:
process: slmss.exe: MD5 Hash:
process: slmss.exe: MD5 Hash: 88e9017988dd30e70ed
process: stc.exe: MD5 Hash: f728d660a67fdb4fe89
process: bundles.exe: MD5 Hash: 3ece94661c5cc40c817
process: bundles118.exe: MD5 Hash: fb4b07ff917d899251a
process: bundles53.exe: MD5 Hash: ab01040b344389e218b
process: stcloader.exe: MD5 Hash: 62431d0c726fd1dd116
process: bundles.exe: MD5 Hash: ae06fde1f52b5c24bf6
process: stcloader.exe: MD5 Hash: ee96b7513e109a9e68f
process: bundles118.exe: MD5 Hash: 5dafd13a33ef0e95476
process: stcloader.exe: MD5 Hash: 683cf99022a180bea4f
process: stcloader.exe: MD5 Hash: 31cd1fd94aa2a61131d
process: bundles.exe: MD5 Hash: 947262cb36f8619cecf
process: install026.exe: MD5 Hash: 006e70ba90baf3fdd58
process: bundles.exe: MD5 Hash: f3a96f860515d5bcf30
process: install.exe: MD5 Hash: e30d1be80af146fcb22
process: hyperlinker.exe: MD5 Hash: 9ed7e750da7ff94b420
process: hyperlinker3.exe: MD5 Hash: dd7e29173836653dada
process: hlinstaller3.exe: MD5 Hash: f1e2f1eedd5a15c432b
process: id53.exe: MD5 Hash: e2c211b55362308a5b7
process: hlinstaller1.exe: MD5 Hash: 53caf0e9957678ba983
process: install001.exe: MD5 Hash: 4aa9e3a5779cc3d3083
process: install002.exe: MD5 Hash: 1853824fc5b9afba18e
process: install003.exe: MD5 Hash: 4bcdd4b4f734199a8a8
process: install004.exe: MD5 Hash: 1a5c03fc8ee8998881d
process: install005.exe: MD5 Hash: 12c7ea8223f530881e5
process: install006.exe: MD5 Hash: 8a607495d99d358f5b1
process: install007.exe: MD5 Hash: 409bafed484023b0265
process: install008.exe: MD5 Hash: 9fecc4337bf9c627270
process: install009.exe: MD5 Hash: d0868fb63bda2a92b26
process: install010.exe: MD5 Hash: 07b06f33af8dc0c03f8
process: install011.exe: MD5 Hash: f606c95162a5c28dec9
process: install012.exe: MD5 Hash: ab4fbd53f07e246a711
process: install013.exe: MD5 Hash: 59630865c59acbc2448
process: install014.exe: MD5 Hash: bc60cfa0920c1937651
process: install015.exe: MD5 Hash: 98d6e5ff6aec015cb21
process: install016.exe: MD5 Hash: b98898aabd9e1d124ca
process: install017.exe: MD5 Hash: e63d616e465b3a8bc4a
process: install018.exe: MD5 Hash: 3b68690621ffeac5b66
process: install019.exe: MD5 Hash: 674cd1b66c61ca064d5
process: install020.exe: MD5 Hash: 0c38fe728bc2d72fc5f
process: install021.exe: MD5 Hash: 231026093be5c5032da
process: install022.exe: MD5 Hash: 9d8cfa9fc1cb0623740
process: install023.exe: MD5 Hash: 668eb18f6d048d8e3a4
process: install024.exe: MD5 Hash: 3777c9dd60265ccd027
process: install025.exe: MD5 Hash: 296d86203dcaf798e21
process: install027.exe: MD5 Hash: e7131016072c45a3f74
process: install028.exe: MD5 Hash: db064e1e5658acff1a7
process: install029.exe: MD5 Hash: c3d1fd45fcbfcaa9739
process: install030.exe: MD5 Hash: 61d28a299ee2810068e
process: install031.exe: MD5 Hash: 8f803101e80756510d7
process: install032.exe: MD5 Hash: 93398e112c54e5f908e
process: install033.exe: MD5 Hash: ad5cd58415bff220c99
process: install034.exe: MD5 Hash: 8c2125ed559198c09ba
process: install035.exe: MD5 Hash: e166a0713d4e52c47d2
process: install036.exe: MD5 Hash: 48e7a0caf152c7cd810
process: install037.exe: MD5 Hash: f4d9f3efcc0faec3679
process: install038.exe: MD5 Hash: 31b685742f697b3dbfd
process: install039.exe: MD5 Hash: 28572ef8c00ec5b2c00
process: install040.exe: MD5 Hash: c28040a5a83f7f2c6f4
process: install041.exe: MD5 Hash: c15822c3bb918eec9e7
process: install042.exe: MD5 Hash: 07accdfe3814c3b0593
process: install043.exe: MD5 Hash: 4836089bb857080002f
process: install044.exe: MD5 Hash: ea1a9a605ed120924c0
process: install045.exe: MD5 Hash: c2d63a6e3d9c931f261
process: install046.exe: MD5 Hash: cd75e6e59982053de8d
process: install047.exe: MD5 Hash: f127f7728cd8834c5a3
process: install048.exe: MD5 Hash: f14f9b775db7c53fd0e
process: install049.exe: MD5 Hash: 27d78f519a09eab82f1
process: install050.exe: MD5 Hash: 4cf0e1cba0a85a8dc23
process: install052.exe: MD5 Hash: df7dd667b710c5dc72f
process: sq_3394_3222.exe: MD5 Hash: 7cdbf7f0ecf730cf519
process: internetfeatures.exe: MD5 Hash: 517172a371ed3c3ac30
process: bundles.exe: MD5 Hash: 71ddae8a306060adf3d
process: bundleouter2601031121.exe: MD5 Hash: e85991397f5b075f69d
process: bundles.exe: MD5 Hash: 31fcbb1bbf442b1a392
process: bundles.exe: MD5 Hash: 81e6d209266684ce5d3
process: tvm_b5_269.exe: MD5 Hash: e36b36fc4052bfd3dad
process: bundles.exe: MD5 Hash: 2eeea64e5f5f3d1717f
process: cbt.exe: MD5 Hash: 44f5944b75b857fa632
process: bundles.exe: MD5 Hash: e01e2decb5807e69f6e
process: o3_install.exe: MD5 Hash: a7f36dc4126f692edaa
process: mailchkr.exe: MD5 Hash: 03177cc99d0116cf7d1
process: adbumb2.exe: MD5 Hash: 638ba1aed71f25f308c
process: bundles.exe: MD5 Hash: 37252211a55da6e9b0e
process: tvmedia.exe: MD5 Hash: bfbe4512f635d9ce186
process: bundles.exe: MD5 Hash: fe8e9c7c467fb8fe8cd
process: qoologic.exe: MD5 Hash: a8af2bd2ae3ac193b83
process: bundles.exe: MD5 Hash: 2917d2b0dc1664ec458
process: bs5-vmk1.exe: MD5 Hash: dcafd487631b800a5bd
process: april0604_loader.exe: MD5 Hash: 7b16cc96ea01b80d337
process: edow.exe: MD5 Hash: a82c7a210f2da9927ef
process: edow.exe: MD5 Hash: a88d73f9e507756b9a7
process: bs5-vmk1.exe: MD5 Hash: 9d6d6cc6da10796492e
process: sq_3394_3222.exe: MD5 Hash: 72392ad5c25431e40bf
process: bdl14108.exe: MD5 Hash: 7950f3144f6ad4f8e75
process: bundles.exe: MD5 Hash: c7bff7fd57f36a63f75
process: cbt.exe: MD5 Hash: cf4904ac4289cc1db2b
process: bundles.exe: MD5 Hash: 940e6d36a4839c5575d
process: raven_adspyre-i.exe: MD5 Hash: 3d5f157a4e4c11804e8
process: bundles.exe: MD5 Hash: a904721f6ed28e37fcb
process: bundles.exe: MD5 Hash: 4ef6a5c97ff58a7137f..
Copyright @2006 THR Computer Solutions: Second Thought