180SearchAssistant
It is an adware spyware designed to monitor the contents of Web browser windows. It can be distributed with ad-supported software, some malicious sites may install to the computer without user permission.
It opens the Web pages of partner sites when it sees certain keywords in search or shopping site windows. 180search Assistant logs the web pages you visit, when you visit them and uploads the data to its servers. This software is usually installed by other Spyware applications running on your machine, and is typically found on your machine along side 3 to 4 other spyware applications.
File System Modifications
- The following files were created in the system:
# File Name 1 180.exe 2 18010.mht 3 18014.mht 4 180customersupport.url 5 180sa.exe 6 180sa_gdf.dat 7 180sa_kyf.dat 8 180saau.dat 9 180sahook.dll 10 180sainstaller.exe 11 180sainstallernusac.exe 12 180sainstallersilsais1.exe 13 180searchassistant.com.url 14 180searchassistant.lnk 15 180searchassistant.txt 16 1f40a3e225.exe 17 44c3fb6042.exe 18 bmrg.log 19 cfout.txt 20 clientax.dll 21 clientax.inf 22 iinstall.exe 23 klobkveb.exe 24 mediagateway.exe 25 msbb.exe 26 msbbau.dat 27 msbbhook.dll 28 saap.exe 29 sac.exe 30 sac_kyf.dat 31 sachook.dll 32 sais.log 33 saishook.dll 34 salm.exe 35 salm.log
Registry Modifications
- The following newly produced Registry Values are:
HKEY..\..\..\..{RegistryKeys}0ac49246-419b-4ee0-8917-8818daad6a4e\control0ac49246-419b-4ee0-8917-8818daad6a4e\inprocserver320ac49246-419b-4ee0-8917-8818daad6a4e\miscstatus0ac49246-419b-4ee0-8917-8818daad6a4e\miscstatus\10ac49246-419b-4ee0-8917-8818daad6a4e\progid0ac49246-419b-4ee0-8917-8818daad6a4e\programmable0ac49246-419b-4ee0-8917-8818daad6a4e\toolboxbitmap320ac49246-419b-4ee0-8917-8818daad6a4e\typelib21b4acc4-8874-4aec-aeac-f567a249b4d4appidHKEY_CLASSES_ROOT\180sainstaller.180sainstallerHKEY_CLASSES_ROOT\180sainstaller.180sainstaller.1HKEY_CLASSES_ROOT\clientax.clientinstallerHKEY_CLASSES_ROOT\clientax.clientinstaller.1HKEY_CLASSES_ROOT\clientax.clientinstaller.1\clsidHKEY_CLASSES_ROOT\clientax.clientinstaller\clsidHKEY_CLASSES_ROOT\clientax.clientinstaller\curverHKEY_CLASSES_ROOT\clientax.requiredcomponentHKEY_CLASSES_ROOT\clientax.requiredcomponent.1HKEY_CLASSES_ROOT\clientax.requiredcomponent.1\clsidHKEY_CLASSES_ROOT\clientax.requiredcomponent\clsidHKEY_CLASSES_ROOT\clientax.requiredcomponent\curver - The following CLSID's were detected:
HKEY..\..\{CLSID Path}0ac49246-419b-4ee0-8917-8818daad6a4e99410cde-6f16-42ce-9d49-3807f78f0287
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.