RiverBellPoker

The RiverBellPoker is an online gaming program that lets user play the game online. Users have to register to the host in order to play the game. The RiverBellPoker shows popup ads most of which is related to the gambling and online gaming, it also collects the user’s personal information via an online registration form.0

General information:

Malware Name:	RiverBellPoker
Malware Type:	Adware
Company Name:	BellRockEntertainment
Company URL:
Threat Level:	High
Operating System:	WIN XP
Installation Type:	Installed through ActiveX
Operation:	Time of After Installation.

Company Description:

River Belle Online Poker is part of Belle Rock Entertainment - a super-group of online gaming brands, comprising seven online casinos, and two online poker rooms.

Spyware Description:

The RiverBellPoker is an online gaming program that lets user play the game online. Users have to register to the host in order to play the game. The RiverBellPoker shows popup ads most of which is related to the gambling and online gaming, it also collects the user’s personal information via an online registration form.0

Characteristics/Symptoms:

    -> Collects information about users activity -> Slows the System -> Shows popup messages mostly related to gambling and online gaming -> Collects users information0

Additional information might be found here:

	Search at Google for RiverBellPoker
	Search at Bing for RiverBellPoker
	Search at Yahoo for RiverBellPoker

Processes Running:

MPPoker.exe

File information Created after Installation:

File Location	Size (Bytes)	Type
C:\Program Files\riverbelleMPP\Control\ILineObject.dll	77885	Application Extension
C:\Program Files\riverbelleMPP\Control\IListObject.dll	57414	Application Extension
C:\Program Files\riverbelleMPP\Control\IReelObject.dll	81981	Application Extension

Folder information Created after Installation:

Folder Location
C:\Program Files\riverbelleMPP
C:\Program Files\riverbelleMPP\Control

Registry information Created after Installation: