AbetterInternet.Aurora

Description:	Adware
Risk Level:	High
Date of First Occurence:	Monday, April 21, 2008
Software Developer:	Direct Revenue, LLC
Brief Info:	ABetterInternet/Aurora is an adware program that displays advertisements and tracks browser information such as Web sites visited.
Removal:	This threat can be removed using "Spyware Terminator"

REMOVER SPYWARE »

Geographical Distribution of Threat "AbetterInternet.Aurora"

Threat Info

View All

Detected Items

Detected Files: %WINDIR%\Nail.exe MD5: FFF5FF58BA24BA44DA844F5E4573EBB1 Size:52736 MD5: E47B1D84F85ABEB75CABD64F8CF2AFDD Size:40960 MD5: 42A7D1982676F17689F14919EDC625B5 Size:52736 MD5: B966E2663B03600811F90CC29EA72B5B Size:52736 MD5: 3FE0EC271B95884F67ED6B23C027657C Size:52736 MD5: C4240169DBA23A2297230CFE11B427D9 Size:52736 MD5: 37F21988BB63F21DD8FDC9CC1D069CFA Size:12150 MD5: 7005251B237E40BAA60DD4FF9780D14D Size:52736 MD5: 70AC2D594EA92AAFF4BEEA898BFD0F5F Size:52736 MD5: CF4F72586E46D3E11D430C547C9273FF Size:52736 MD5: E242FB8F3BB059763B8F507F7268528D Size:70656 MD5: D8697D9C019FCFD0E7B2C86F16418F51 Size:52736 and more.... %WINDIR%\dinst.exe MD5: B39DE951A39CC35187C960210F629B19 Size:33280 MD5: 0B48D977CFB41F14B9140708768D0EFC Size:33280 MD5: A7CD14F70FE54FAEA5E2A6B030DCAA3A Size:65536 MD5: 0CA8ADC6EC8560AEBB9D0DD1B96D511D Size:33280 MD5: D2B3856CA5B5701E3BBE835DF59E87C0 Size:57344 MD5: DCFC37A6E1B48CE3D12D505BF1C5C3B5 Size:57344 MD5: B6466607028BBE40E11378846604A679 Size:33280 MD5: 6961B30EB6E3BE56DE233E91DE679EDB Size:57344 MD5: 14D611EEE2FACD7010CDFA1F93422140 Size:33280 MD5: D9153D4BEE09965453DF156A14B6B25A Size:57344 MD5: D2F3EEE92F405742A26DD805CF4866F4 Size:57344 MD5: 33A42D94B94912BA88DBAE59A324E6B8 Size:33280 and more.... %SYSDIR%\Poller.exe MD5: B132C3918DE54C1D7950623033B10C3B Size:11971 MD5: 0AA9787A37E01F077FF6A2E27CDA0599 Size:91136 MD5: 4E929B232CFBB0A87E74BA900538D81D Size:60451 MD5: 1FB1A97CF6CF18579F850CFE76D7EBC0 Size:66370 MD5: F09634B2967A031C7308A22DC0E2D633 Size:12150 MD5: 859C7FB67CBF5D95EC5664C69FDE932D Size:52171 %WINDIR%\Nail.exe MD5: 203BBB48F0562236860A0FB93D9A308F Size:52736 MD5: 8465232045F6980FD0D83CCDCAFDFE3D Size:52736 MD5: D959377938F29D91CA1CD533FEA2EFBB Size:74752 MD5: 66BEE9645E74116583C1C2958EA6D2EB Size:52736 MD5: 84ABE2FAF8C31FC113FE2AF2716EE1A1 Size:52736 MD5: 5B821672028BA06B2AC6CABACF22A39E Size:52736 MD5: A1A7F6A2EF19BB0F2D3CF5E984073809 Size:52736 MD5: 697272C060EA67992880EEFF977CB79C Size:52736 MD5: 48BAB0CA30B53D88C040548B9208C5AE Size:52736 MD5: 93BBEE60D93B3FEB298A79CA382C9F69 Size:52736 MD5: 390CF91DBF924DD21369FBD0CEE5432C Size:71168 MD5: 4D843060D5BF9893BBC2DEE03BEF6E32 Size:52736 and more.... %WINDIR%\AuroraHandler.dll MD5: C686D4CB3978E1FF9F8E8511908AE96C Size:172032 %TEMP%\ceres.dll MD5: C1E7E548C1EDAD03B12CC6B153F44774 Size:253952 %WINDIR%\Nail.exe MD5: 66C171AE87EEAB78E6584FCBD11782A5 Size:52736 MD5: 1819A1FDF2552E922904EC840B55F71D Size:52736 MD5: A75473078BDCAC4E762F6DA355FD4BD0 Size:52736 MD5: 4BE6C3B5560B9FE74FEFB59C82FA6479 Size:52736 MD5: B7F3ACB1ECDFBE0A0ED0B6DBC022F941 Size:52736 MD5: 112C835A0C34E5717A308F58DFCCEFCB Size:52736 MD5: DC739CF7000686B290C72F555C9FE0FB Size:52736 MD5: 2C6D05FA6518FEF7B65355558DDEA008 Size:96768 MD5: C8AC8D3E216A900A4C2969F6E3B628AA Size:52736 MD5: 4AFD5C9883305D3F87730FC3F1168FF7 Size:52736 MD5: 6B098132CDC3BDB641AB6621798A4A66 Size:52736 MD5: 05C9A0EE213D7C6F175074AB7FD9821D Size:52736 and more.... %WINDIR%\Aurorahandler.dll MD5: 144DA289B3A6F4BE6FFBAA64180C6A4D Size:78389 MD5: 47DC1C01A7C4C7B95D8C691F82E603AB Size:35609 %WINDIR%\dinst.exe MD5: B895AC691BBC586E7AFAD48A37FBC300 Size:33280 MD5: 77B200E3FB4555D99F2DD78F3609BC30 Size:57344 MD5: 57E4303D6F1399515ADB239A0AFF8074 Size:57344 MD5: 86514A6951A17D3918C7914C819D23C7 Size:57344
Detected Files with variable Filenames:

Detecting items list:

Files by Name %Windir%\Nail.exe %Windir%\dinst.exe %sysdir%\Poller.exe %windir%\Poller.exe %Windir%\Aurorahandler.dll %TEMP%\ceres.dll %Windir%\adbltzun.exe %Windir%\aurareco.exe %Windir%\aurora-wise1.exe %Windir%\cyxipjsxdua.exe %sysdir%\Aurorahandler.dll %Windir%\abiuinst.htm
Files by MD5 MD5: 877795C7E1E501026BEC40695C7FBB4D Size: 52736 MD5: 472B133437A51FE877CCDFC65CE4B99D Size: 91136
Files by CLSID or Name CLSID=4aa870ac-8427-42a4-b92e-ecd956197489 CLSID=6d992911-b563-47fc-ab29-437f42d1c729 CLSID=544b6a3f-4024-4403-9661-69b8410be505
Registry Keys HKCU\Software\Aurora HKLM\Software\Aurora HKCU\software\aurorahandler

« Go to Software Database

Pesquise na nossa Base de Dados de Software

A base de dados Software

Últimas notícias sobre Malware

23. Setembro 2011

Among one of the most active spywares currently is without a doubt Trojan.MicroFake.ba. It attacks in conjunction with Rogue antispyware applications and forces users to purchase these fake applications. Using rootkit techniques is very typical of this Trojan to help it hide from users and the system, making it hard to trace. We recommend regular updating of our database and an active real-time protection with antivirus.

Notícias antigas de malware »