Summary
Summary
More Information
| Affected operating systems | Windows |
|---|---|
| Protection available since | 30 July 2007 09:55:04 (GMT) |
| Last updated | 10 November 2009 22:50:05 (GMT) |
| Detected by | Sophos Anti-Virus for Windows, version 7, and PureMessage for Microsoft Exchange. |
More Information
- Summary
- More Information
Adware/Aureate is an advertising application which displays advertisements when the browser is active.
Adware/Aureate may be installed as part of the installation for other software, such as adware supported shareware or freeware applications downloaded from the internet.
Adware/Aureate includes functionality to access the internet and communicate with a remote server via HTTP.
When Adware/Aureate is installed the following folders and files are created:
<System>\adimage.dll
<System>\advert.dll
<System>\Amcis.dll
<System>\msipcsv.exe
<System>\tfde.dll
<Windows>\amcdl\
<Windows>\amcdl\adcache\
The files Amcis.dll and tfde.dll are registered as COM objects, creating registry entries under:
HKCR\CLSID\(EBBFE28A-BDF0-11D2-BBE5-00609419F467)
HKCR\CLSID\(EBBFE27C-BDF0-11D2-BBE5-00609419F467)
HKCR\CLSID\(EBBFE288-BDF0-11D2-BBE5-00609419F467)
HKCR\Stub.NetscapeStop.1\
HKCR\Interface\(EBBFE27B-BDF0-11D2-BBE5-00609419F467)
HKCR\Interface\(EBBFE287-BDF0-11D2-BBE5-00609419F467)
HKCR\Interface\(EBBFE289-BDF0-11D2-BBE5-00609419F467)
HKCR\TypeLib\(EABBD91B-3001-11D3-B7E9-006094B9A166)
HKCR\TypeLib\(EBBFE26D-BDF0-11D2-BBE5-00609419F467)
HKCR\Stub.NetscapeStop\
HKCR\Netscape Starting\
HKCR\Stub.CIEStub\
HKCR\Stub.CIEStub.1\
The file Amcis.dll is registered as a Browser Helper Object (BHO) for Microsoft Internet Explorer, creating registry entries under:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\
Browser Helper Objects\(EBBFE27C-BDF0-11D2-BBE5-00609419F467)
Registry entries are created under:
HKLM\SOFTWARE\Aureate\
HKCR\Software\Aureate\
|
