-
THREATrating from user Diogène2607 for file %PROGRAMFILES%\cacaoweb\cacaoweb.exe
-
THREATrating from user Botnet for file %PROGRAMFILES%\cacaoweb\cacaoweb.exe (Variant: 501944)
It's a Botnet
-
THREATrating from user Chaka for file %PROGRAMFILES%\cacaoweb\cacaoweb.exe (Variant: 501944)
I found it uploading a great amount of info from my PC -- 150 MB in three files named "replicating3D4F --- 32.cacao".
-
THREATrating from user rendor99 for file %PROGRAMFILES%\cacaoweb\cacaoweb.exe (Variant: 174986)
Trojan that pretends to remove video limits on megavideo and sites alike, belongs to a bigger Botnet - approximately 550.000 machines worldwide.
1. Delete these directories from your PC
C:\Program Files (x86)\cacaoweb
%APPDATA%\Roaming\cacaoweb
-
SAFErating from user recondite42 for file %PROGRAMFILES%\cacaoweb\cacaoweb.exe (Variant: 174986)
This process is both safe and unsafe; it is a legitimate process belonging to--as previously mentioned--a utility used to automatically remove the time limits on many video-hosting websites. However, it also has unspecified peer to peer background functionality. Whenever running, it will constantly open connections to as dozens, sometimes hundreds, of remote sources at a time and send/receive a not-insigificant amount of data (as much as 10kb/s combined up+downstream fairly consistently). It is this functionality which, honestly, is very unsafe. If you check the cacaoweb forums, you will not find one single post regarding this issue - as it is, unfortunately, true that the project's moderators quickly delete any threads breaching the issue or even mentioning cacaoweb.exe's unsolicited network activity. Most likely, these connections are simply used to generate "fake" traffic through the project developers' ad-revenue trackers (an unfortunate and common caveat when using non open-source freeware), BUT it is possible that these connections could be exploited for other harmful, unsafe and/or illegal use - including, but not limited to, adding your computer to a botnet soldier list. Any inexperienced, non-IT-security gurus/professionals should absolutely not allow cacaoweb.exe to make or sustain these connections except when explicitly requested by your browser (i.e. you attempt to load a video that requires cacaoweb's functionality). Personally, I completely disable all network access to cacaoweb.exe, and only enable it for a second as I'm clicking a video link I need it for - this allows it to open any handles it needs to load the video, while preventing it from opening or maintaining (as many) of the other suspicious connections. In any case, it is important to note that cacaoweb.exe does rely on the p2p framework to function properly, and the associated risk is neither more nor less than using any other kind of p2p application or functionality. Ultimately, you are only as at-risk as you allow yourself to be, prov
-
THREATrating from user Prov for file %PROGRAMFILES%\cacaoweb\cacaoweb.exe (Variant: 174986)
After downloading, within 2 days a second version appeared, which was consistently asking for access to unknown IPs through my firewall. Shortly thereafter, AVG, and Spybot S&D Picked it up as spyware. Talking to the administrators of the program yielded no results, and a ban from their forum for insinuating that they own/use a spyware application.
-
THREATrating from user tsukasagenesis for file %PROGRAMFILES%\cacaoweb\cacaoweb.exe (Variant: 174986)
It's a botnet, all write here :
http://blog.alldebrid.com (proof)
-
SAFErating from user MadLluks for file %PROGRAMFILES%\cacaoweb\cacaoweb.exe (Variant: 174986)
This executable isn't a threat, i download it 2 years ago and i don't have any problem with it. It's an program for bypassing the restriction limit on megavideo.
YOu could uninstall it easy too, just close the program "cacaoweb.exe" on the windows' task manager and remove it on your disk and remove it with CodeStuff starter.
If you use it to look adult's video or other content like that, it's normal to get virus ... but don't blame this program ...
-
THREATrating from user Wise for file %PROGRAMFILES%\cacaoweb\cacaoweb.exe (Variant: 174986)
Download it if you want your computer to be part of a botnet.
-
THREATrating from user Jeremy for file %PROGRAMFILES%\cacaoweb\cacaoweb.exe (Variant: 174986)
I downloaded Cacaoweb, and I had been using it for few weeks before AVG picked it up as a threat. Like a dumbass I bypassed it, as I hadn't had any problems up to that point. However, it may have been the case that another version was downloaded. In the past two days, malware opened up my send list in Hotmail and sent out crap. One Earthlink address was affected - why one I do not know. There seem to be two versions of Cacao - one legit and the other good, so it seems that all of you are correct. Pay attention to you AV warnings! I am downloading a MS scan tool and, I am taking the VERY ACCURATE advice of manam - THANKS for the accuracy - it is rare to see this these days. Feel free to e-mail me on this problem.
-
THREATrating from user manam for file %PROGRAMFILES%\cacaoweb\cacaoweb.exe (Variant: 174986)
You must close process "cacaoweb.exe". Next Run RegEdit and delete key "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\cacaoweb". Reboot computer and delete file "C:\Program Files\cacaoweb\cacaoweb.exe".
-
THREATrating from user Marcelo for file %PROGRAMFILES%\cacaoweb\cacaoweb.exe (Variant: 174986)
I installed Megacubo, a program to watch videos, movies and TV online, and I notice next time I closed and restarted Mozila Firefox I recived the message saying that a plugin was installed, even though I don't remember firefox asking to install any plugin.
Another day I was just using Mozila Firefox when I notice the "Link Active LED" on my MODEM blinking without stopping, using process manager I realized that cocoaweb.exe was responsible for that download (upload) activity. I ended the process and the activity stoped, then I removed the firefox plugin.
Then I executed Megacube and had the Message "The plug-in "Codec" to be installed for proper viewing of some channels. Want to install it now?"
Of curse I answered NO.
I have just do it and still have to monitor if everything is ok from now on.
-
SAFErating from user ERman for file %PROGRAMFILES%\cacaoweb\cacaoweb.exe (Variant: 174986)
cacaoweb is free software to watch in streaming, share and host videos and files online with no limits.
www.cacaoweb.org
-
THREATrating from user monica for file %PROGRAMFILES%\cacaoweb\cacaoweb.exe (Variant: 174986)
TROJAN. Just do a quick search and you will find tons of people saying that they were unable to remove it. I thankfully was able to, but I didn't have tons of trouble because I'm on a mac. Still. Do not download.
-
SAFErating from user Cribbage for file %PROGRAMFILES%\cacaoweb\cacaoweb.exe (Variant: 174986)
It's simply a tool for bypassing MegaVideo limits; it's not remotely a threat. Reckon it's gun actually itbt.
-
THREATrating from user Guy Fawkes for file %PROGRAMFILES%\cacaoweb\cacaoweb.exe (Variant: 174986)
Udder Cr*p this file is a Virus I've had my Internet screwed due to it, the guys IP Address is 76.73.18.50 if anyone wants it. The comments that marked it safe are by the person as you can see it says 'Movie watcher' and 'Wow' common names a person would use for there Megaupload Movie Bypasser bullcr*p or something.
-
THREATrating from user lostraven for file %PROGRAMFILES%\cacaoweb\cacaoweb.exe (Variant: 174986)
It looks like a virus don''t use it, i downloaded this crap and now I can''t remove it.
-
SAFErating from user Movie Watcher for file %PROGRAMFILES%\cacaoweb\cacaoweb.exe (Variant: 174986)
This is the executable file launched when clicking Cacaoweb. This is a plug-in that runs alongside Firefox to watch videos.
-
SAFErating from user Wow for file %PROGRAMFILES%\cacaoweb\cacaoweb.exe (Variant: 174986)
It is just a firefox plugin to watch videos.
-
THREATrating from user Person for file %PROGRAMFILES%\cacaoweb\cacaoweb.exe (Variant: 174986)
THREAT! DELETE!