Xplugin

Category: Trojan Downloader

Risk: Severe Risk

* Severe threats typically are remotely exploitable vulnerabilities, which can lead to system compromise. Successful exploitation does not normally require any interaction and exploits are in the wild. There exists a high possibility of potential system damage or security flaw. Attacker has complete control over your computer or install new software on your machine.

Description: Xplugin is an adware type program, which offers the application in which it is included at the only cost of viewing a series of adult advertisements. Xplugin downloads a file from the Internet. This downloaded file adds a plugin to the Internet Explorer browser. Xplugin displays advertisements of adult content without the user's permission.

Alias: None

Signatures:
process: tmksrvl.exe: MD5 Hash: d08c5a82ffdbbf57d9e
process: tmksrvu.exe: MD5 Hash: 5939ede2b23f4f4450d
process: tksrv99.exe: MD5 Hash: d9e3f81ed0458d30257
process: tmksrvu.exe: MD5 Hash: ed0da2e6ba346207a48
process: tksrv99.exe: MD5 Hash: b0efa9d481aabde0327
process: tmksrvu.exe: MD5 Hash: b2d8c99e73ca5ba1009
process: trs15.exe: MD5 Hash: 5fa54af2cde9a2ac71b
process: ucsl.exe: MD5 Hash: 6214fef7b44040381f3
process: tksrv99.exe: MD5 Hash: 23796ab63e62847b2d6
process: tcpservice2.exe: MD5 Hash: 77ce4a1e9aa79cb9aa8
process: ucsi.exe: MD5 Hash: 22123d02cccea8605cd
process: tkkffnca.exe: MD5 Hash: d4a4d3126d360102d2f
process: uc1362.exe: MD5 Hash: 976bb48a9f2fa8eb7a1
process: ucsl.exe: MD5 Hash: 1f997cf39875601a45b
process: ucsi.exe: MD5 Hash: 04b72e1a11f1da38403
process: tcpservice2.exe: MD5 Hash: e3e39b236e2823a60e4
process: tksrv99.exe: MD5 Hash: 8bf4c160626f03010bd
process: tksrv99.exe: MD5 Hash: ed1bb3be87cf2287e8a
process: ucsi.exe: MD5 Hash: 9a9a387b3eecb0c1aa1
process: ntcommlib3.exe: MD5 Hash: 473f41460cb2f320e1a
process: tcpservice2.exe: MD5 Hash: c940c5ce4abf4bafbf0..