PLook is an adware application designed to download from a predetermined remote host and show commercial pop-up advertisements. PLook doesn't carry any destructive payload. The threat is able to update itself via the Internet. It must be manually installed. PLook automatically runs on every Windows startup.
plook.exerld.exeupdater.exeplook[1].exe
HKEY_USERS.DEFAULTSoftwareMicrosoftWindowsCurrentVersionRunplookHKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRunplookHKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRunplookHKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionAppPathsplook.exeHKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionUninstallPLookApplication.DEFAULTSoftwareMicrosoftWindowsCurrentVersionRunPlookMicrosoftWindowsCurrentVersionApp Pathsplook.exe