Threat Information for "AdRotator Enhanced Browser Overlay"
| Summary | Top |
- Name: AdRotator Enhanced Browser Overlay
- Aliases:DR/TrafficSol.C, Adware.Trafficsol.C, Win32.BHO.e, Adware/TrafficSol, AdWare.Win32.TrafficSol.c, W32/Smalltroj.AYA
- Date Discovered: 2006-09-08
- Protection Added: 2006-09-13
| Description | Top |
-- Ease of Removal 1: Creates new registry entries with consistent data 2: Consistent file contents 3: Consistently named 4: Runs as a BHO or shell extension -- Damage/Intrusion/Annoyance 1: Displays targeted popup advertisements 2: Creates new files 3: Autoruns at startup without an option to be disabled -- Propagation/Saturation 1: Installed by other infections
| Technical Details | Top |
- Added Directory/File:
FilePath: %SYSTEMDIR%\adrotate.dll - Added Directory/File:
FilePath: %SYSTEMDIR%\adrot-uninst.exe - Added Registry Key:
Key: HKLM\%BHOREG%\{D117A61F-92C3-4450-A0C8-F425B14D4127} - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\TypeLib\{DEFDEADA-C390-4EB9-97FA-59D56B21E5D5} - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\CLSID\{D117A61F-92C3-4450-A0C8-F425B14D4127} - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\BannerRotator.Rotator - Added Registry Key:
Key: HKLM\%CURRENTVERSIONREG%\Uninstall\AdRotator - Added Registry Key:
Key: HKLM\SOFTWARE\Microsoft\Rotator - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\Interface\{407FC66D-6224-4AEB-AA79-8AECB1C4D4A1} - Added Registry Key:
Key: HKLM\SOFTWARE\Classes\BannerRotator.Rotator.1 - Added Registry Value:
Key: HKLM\%CURRENTVERSIONREG%\Run Value: adstart
