Content

Adware-Tolbar.dll

Type
Program
SubType
Application extension
Discovery Date
05/13/2005
Minimum DAT
4491 (05/13/2005)
Updated DAT
4491 (05/13/2005)
Minimum Engine
5.1.00
Description Added
05/13/2005
Description Modified
06/14/2005 3:21 AM (PT)

Tab Navigation

Characteristics

McAfee(R) AVERT™ recognizes that this program may have legitimate uses in contexts where an authorized administrator has knowingly installed this application.  If you agreed to a license agreement for this, or another bundled application, you may have legal obligations with regard to removing this software, or using the host application without this software.
Please contact the software vendor for further information.

See http://vil.nai.com/vil/DATReadme.asp for a list of Program detections added to the DATs.

See http://vil.nai.com/vil/pups/configuration.htm for information about how to enable, disable, and exclude detection of legitimately installed programs.

Summary

Upon execution, this application installs itself as a BHO in Internet Explorer. It tracks users Internet activity by redirecting search queries used in google.com and search.yahoo.com to the site find-help.org (195.225.177.32).

Privacy

No EULA is displayed during installation, although one could be displayed by another installer if bundled with another application.

Installation

Filename : dsmanager.dll
MD5  : bef55422abd3fc7bfb5cb275d43027fb

The following registry entries confirm dll registration made by this application.

  • HKEY_CLASSES_ROOT\BHO.Explorer
  • HKEY_CLASSES_ROOT\BHO.Explorer.1
  • HKEY_CLASSES_ROOT\CLSID\
    {962F12AE-2773-4BEB-99EA-B5C3AB9A6606}
  • HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BHO.Explorer
  • HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BHO.Explorer.1
  • HKEY_LOCAL_MACHINE\SOFTWARE\Classes\
    CLSID\{962F12AE-2773-4BEB-99EA-B5C3AB9A6606}
  • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\
    CurrentVersion\Explorer\Browser Helper Objects\
    {962F12AE-2773-4BEB-99EA-B5C3AB9A6606}
  • HKEY_CLASSES_ROOT\Interface\
    {4BFF19A6-300B-4A7A-9C7F-0CE8A14E2889}
  • HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\
    {4BFF19A6-300B-4A7A-9C7F-0CE8A14E2889}
  • HKEY_CLASSES_ROOT\TypeLib\
    {90164B42-3C67-4D81-BED6-8845D9DAA79C}
  • HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\
    {90164B42-3C67-4D81-BED6-8845D9DAA79C}

The browser helper object is responsible for redirecting search keywords used in google.com and search.yahoo.com to find-help.org.

A screenshot of the website find-help.org is shown below.

Aliases

Aliases

    N/A