Anti-phishing Domain Advisor

July 6, 2012 by
Filed under: Anti-phishing Domain Advisor 

Anti-phishing Domain Advisor

http://software.visicommedia.com/en/products/antiphishing/

he Anti-phishing Domain Advisor ensures you navigate the Web safely by protecting you from “phishing sites” (copycats of legitimate sites that steal your personal info) or “malware sites” designed to harm your computer.
The Anti-phishing Domain Advisor is continuously checking sites that you visit against a list of reported phishing and malware sites. The list is provided by Panda Security – one of the world’s leading IT security provider – and is updated every 5-20 minutes.

This software does not change the Windows boot time.

VISICOM_ANTIPHISHING.EXE
Description: Visicom Media Anti-phishing Domain Advisor (Powered by Panda Security) Visicom Media Inc. (Powered by Panda Security) Anti-phishing Domain Advisor 1.0
MD5= DBD1DD57984CCBC44586CC6DE16F45D7
File is signed and the signature was verified.
File size= 217256
Related registry changes:
HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ANTI-PHISHING DOMAIN ADVISOR: “”%COMMON APPDATA%\ANTI-PHISHING DOMAIN ADVISOR\VISICOM_ANTIPHISHING.EXE“”

Modified during installation:

~+ [INTERNET EXPLORER] [CURRENT HOME PAGE] :HKCU START PAGE=HTTP://WWW2.MYSTART.COM/?PR=VMN&ID=VMNANTIPHISHING_AD&V=1_0_1_30
~- [INTERNET EXPLORER] [CURRENT HOME PAGE] :HKCU START PAGE=HTTP://WWW.GOOGLE.COM/

FILES ADDED:6

%COMMON APPDATA%\ANTI-PHISHING DOMAIN ADVISOR\GUID.DAT
%COMMON APPDATA%\ANTI-PHISHING DOMAIN ADVISOR\UNINSTALL.EXE
%COMMON APPDATA%\ANTI-PHISHING DOMAIN ADVISOR\VISICOM_ANTIPHISHING-TRAY.EXE
%COMMON APPDATA%\ANTI-PHISHING DOMAIN ADVISOR\VISICOM_ANTIPHISHING.DLL
%COMMON APPDATA%\ANTI-PHISHING DOMAIN ADVISOR\VISICOM_ANTIPHISHING.EXE
%PROGRAM FILES%\MOZILLA FIREFOX\SEARCHPLUGINS\ADAVAS3.XML

FILES DELETED:3

%APPDATA%\MOZILLA\FIREFOX\PROFILES\EOWSE1HO.DEFAULT\SEARCH.JSON
%PROGRAM FILES%\MOZILLA FIREFOX\SEARCHPLUGINS\YAHOO.XML
%PROGRAM FILES%\MOZILLA MAINTENANCE SERVICE\MAINTENANCESERVICE_TMP.EXE

FILES[ATTR]MODIFIED:9

%APPDATA%\MOZILLA\FIREFOX\PROFILES\EOWSE1HO.DEFAULT\PREFS.JS
%LOCAL APPDATA%\MICROSOFT\FEEDS\FEEDSSTORE.FEEDSDB-MS
%LOCAL APPDATA%\MICROSOFT\FEEDS\MICROSOFT FEEDS~\MICROSOFT AT HOME~.FEED-MS
%LOCAL APPDATA%\MICROSOFT\FEEDS\MICROSOFT FEEDS~\MICROSOFT AT WORK~.FEED-MS
%LOCAL APPDATA%\MICROSOFT\FEEDS\{5588ACFD-6436-411B-A5CE-666AE6A92D3D}~\INTERNET EXPLORER SUGGESTED SITES~.FEED-MS
%LOCAL APPDATA%\MICROSOFT\FEEDS\{5588ACFD-6436-411B-A5CE-666AE6A92D3D}~\WEBSLICES~\WEB SLICE GALLERY~.FEED-MS
%LOCAL APPDATA%\MICROSOFT\FEEDS CACHE\INDEX.DAT
%TEMP%\CE4CF87733651BF1F44DD1E02FC1A8E8
%WinDir%\TASKS\USER_FEED_SYNCHRONIZATION-{600E3BA8-8EF5-4554-94FE-DB90950D3DEB}.JOB

FOLDERS ADDED:3

%LOCAL APPDATA%\VMNANTIPHISHING_AD
%LOCAL APPDATA%\VMNANTIPHISHING_AD\DATA
%COMMON APPDATA%\ANTI-PHISHING DOMAIN ADVISOR
Install UnHackMe Install RegRun

Comments

Tell me what you're thinking...
and oh, if you want a pic to show with your comment, go get a gravatar!

You must be logged in to post a comment.