W32.Qoologic on Spyware-Net

W32.Qoologic - Process Information

Description of W32.Qoologic :
Qoologic downloads an XML configuration file from its remote server which is used to control a user's system like executing and killing processes remotely, generating an exception, dumping debug data to remote servers, etc. They could also serve pop ups and earlier variants are known to hijack browsers by adding a BHO or by directly hijacking browser processes.

Recommendation for W32.Qoologic :
.

Trusted: No
Trojan: Yes
Chronic: No
Adware: No
Carrier: No
Browser Hijacker: No
Dialer: No
Commercial Keylogger: No
Remote Administration Tool: No
Suspected: No

Company Name: N/A
Platforms Affected:
Methods of Distribution: This application can be bundled with other malwares or can also be received as an email attachment.
Variants/Versions:
Release Date: June, 2005

Spyware-Net features:

ZeroSpyware v3.4

Remove PC History
Permanently get rid of temporary files, application and internet history.

Download Internet Accelerator
Block advertisements and accelerate the PC's online speed.

File Name
44l4dd.exe	aauzup.exe	bxlwxc.exe	dkkxgd.exe
dmonwv.dll	drpnzz.exe	eykrnpc.dll	installer_252.exe
installerwebnex.exe	jumnkp.exe	kapiki.exe	ldppy.exe
mgqoy.exe	poqoll.exe	poqqjr.exe	ralhpa.exe
rarluu.exe	rgkui.dll	rkpjku.exe	rloaab.exe
sxggxx.exe	unwn.exe	wtropyp.exe	wuauclt.dll
wywsjyg.exe	xcwrkpw.exe	yopyic.exe

Gator	Virtumonde	Altnet Download Mngr	CoolWebSearch
SurfSideKick	SpyFalcon	Abetterinternet Shared	CashBack
Cydoor	ISTBar	BargainBuddy	nCase
IE Plugin	HuntBar	W32.Puper	Desktop Search
Screen Logger	Trojan Doctrix.A	SpyArsenal AIM Logger	Cyber Predator
Xupiter Toolbar	Blade Runner	Trojan.Agent	Winvestigator
Freddy Kruger	Trojan Zerobe	Golden Keylogger	Seek99 Toolbar
FastStone Image Viewer	Antispyware Soldier	Best Search Engine!!!	Microsoft Windows System Configuration Utility
Guardian Monitor	Samand	Magic Scripts 4.0	MSLAgent
EuroPlugin Dialer	Fire Hell 1.0 beta	W32.Sdbot	SpyTrooper
ZoneProtect Anti-Spyware	GameSpy Arcade	Invisible Stealth	RXToolbar
AOL Trojan	Apophis	pcOrion	ZippyLookup

svchost.exe	wo.exe	mssearchnet.exe	ssk.exe
Save.exe	service.exe	Buddy.exe	bridge.exe
bridge.dll	java.exe	istsvc.exe	GMT.exe
se.EXE	optimize.exe	0xf9.exe	servicelogon.dll
regedit.com	ctsr6.dll	asfsipcb.dll	CartoonInstall.exe
ExpertAntivirus.EXE	msvcp.exe	nsnf4.dll	whcc-motor.exe
dcffme.dll	icm3ctl3.exe	cook3260.dll	ijl15.dll
PasswordDLL.dll	scane[1].exe	richedtr.dll	atlnz.exe
uwas6chk.dll	MulDist.ocx	bsplayer212[1].941_clip.exe	zlib.dll
nngluz564.exe	ipwins.dll	comload[1].dll	crgq32.exe
javaff32.exe	assault.exe	set4d.tmp	htass.dll
nsProcess.dll	svchostx.exe	MP3Kult.exe

Google Earth	Yahoo! Messenger	iTunes	Windows Media Player
Skype	WinRAR	WinAMP	Microsoft Word
Mozilla	Adobe Photoshop	Mozilla Firefox	Music Match
Microsoft Outlook	Google Toolbar	Macromedia Flash	Sierra Wireless Device Drivers
Trend Micro PC-cillin	Synaptics Pointing Device	Logitech QuickCam	Skype
Microsoft Rundll32	RingCentral BuzMe	Nasdaq Toolbar	Boingo Wireless
SnagIt	Edit Buddy	Ahnlab SpyZero	Nordnet Toolbar
BitComet	Netscape	Annotis Mail	User Profile Hive Cleanup Service
Widget Toolbar	SoundMax Analog Sound Devices	MySQL Server	MS Office Fast Search Utility
Microsoft Windows Program Group Converter	Wild Tangent	ThreatFire	Disney's Toontown
Ulead DVD Workshop	PowerArchiver	StickyNote	MS Windows System Restore Application
InstallShield

svchost.exe	alg.exe	ccapp.exe	jusched.exe
lsass.exe	csrss.exe	ctfmon.exe	wuauclt.exe
nwiz.exe	mdm.exe	nprotect.exe	smss.exe
services.exe	wmiprvse.exe	hkcmd.exe	awterm32.dll
SystemGuardHelper.dll	windowsxp-kb825119-x86-enu.exe	pcre.dll	BVRPOlr.exe
wtApplicationUpdateManager0500.dll	libeay32.dll	DAL.dll	wac.exe
hpipcopy.dll	ATLANTIS.EXE	hpqscloc.dll	Music.dll
Axis.ocx	_ISREG32.DLL	libcvdsub_plugin.dll	mimrcctl.exe
MGR.exe	AutoPcc.exe	brmfrsmg.exe	Tracer.exe
VX6KCamd.sys	nupdate.exe	masconsole.exe	hpqprntw.exe
ArmAccess.dll	shfolder.dll	cppu3.dll	Ltimg12n.dll
pfile.dll	CDPrint.exe	gdiplus.dll	Playlist.exe