Troj/SideFind-A

Please follow the instructions for removing Trojans.

Troj/SideFind-A is an adware application which may silently download and install/run updates of its software.

Troj/SideFind-A is typically installed as part of an installation bundle for shareware or freeware downloaded from the internet. The installation bundle will also commonly install other adware software.

When first run, Troj/SideFind-A copies itself as sidefind.exe to a new sub-folder of the Program Files folder named \SideFind\update\. Files named sfbho.dll, sfexd001 and sidefind.dll are created in the %Program Files%\SideFind\ folder. sfbho.dll and sidefind.dll are registered as COM objects creating registry entries under:

HKCR\CLSID\(A3FDD654-A057-4971-9844-4ED8E67DBBB8) HKCR\BrowserHelperObject.BAHelper HKCR\BrowserHelperObject.BAHelper.1 HKCR\Interface\(339D8AFF-0B42-4260-AD82-78CE605A9543) HKCR\TypeLib\(D0288A41-9855-4A9B-8316-BABE243648DA) HKCR\CLSID\(8CBA1B49-8144-4721-A7B1-64C578C9EED7) HKCR\Interface\(A36A5936-CFD9-4B41-86BD-319A1931887F)
HKCR\SideFind.Finder HKCR\SideFind.Finder.1
HKCR\TypeLib\(58634367-D62B-4C2C-86BE-5AAC45CDB671)

HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\ (10E42047-DEB9-4535-A118-B3F6EC39B807)

HKCU\Software\Microsoft\Internet Explorer\Explorer Bars\ (8CBA1B49-8144-4721-A7B1-64C578C9EED7)

sfbho.dll is also registered as a Browser Helper Object for Microsoft Internet Explorer, creating the registry entry:

HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ Browser Helper Objects\(A3FDD654-A057-4971-9844-4ED8E67DBBB8)

Troj/SideFind-A may download additional DLLs and register them as COM objects and plugins for Internet Explorer. Registry entries are created under:

HKLM\SOFTWARE\SideFind HKLM\SOFTWARE\Microsoft\SideFind

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SideFind

Troj/SideFind-A can be uninstalled via the Add or Remove Programs dialog in the Windows Control Panel (Start -> Settings -> Control Panel -> Add/Remove Programs) by selecting "SideFind".