||||
Symantec.com > Security Response > Threats and Risks > Adware.ClickDLoader
PRINT THIS PAGE

Adware.ClickDLoader

Printer Friendly Page

Updated: February 13, 2007 11:38:43 AM
Type: Adware
Risk Impact: High
File Names: Bhui.exe,Services.exe,Arpa.exe
Systems Affected: Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows XP


When Adware.ClickDLoader is run, it creates and runs the following files:
    • %Windir%\System32\Bhui.exe: Detected as Download.Adware
    • %Windir%\Services.exe: Detected as Adware.Clickbank
    • %Windir%\System32\Arpa.exe: Detected as Adware.Clickbank

  • When these files run, they attempt to download files from the following domains:
    • hop.clickbank.net
    • purityscan.com
    • searchbarcash.com
    • xxxtoolbar.com
    • ucbill.com
    • mt-download.com

Search by name
Example: W32.Beagle.AG@mm
Windows 7
Windows Vista Security
©1995 - 2009 Symantec Corporation
Site Map|
Legal Notices|
Privacy Policy|
|
Contact Us|
Global Sites|
License Agreements|
RSS