Updated: February 13, 2007 11:45:39 AM
Type: Adware
Publisher: sidebysidesearch.com
Risk Impact: Low
File Names: sbss.exe
Systems Affected: Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows XP
When Adware.SideBySide is executed, it performs the following actions:
- Creates the following files:
- %ProgramFiles%\sbss\sbss.exe
- %ProgramFiles%\sbss\Stop sbss.lnk
- %ProgramFiles%\sbss\Uninstall sbss.exe
Note: %ProgramFiles% is a variable that refers to the program files folder. By default, this is C:\Program Files.
- Creates the following registry subkeys:
HKEY_LOCAL_MACHINE\SOFTWARE\sbss
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\sbss
- Adds the value:
"sbss Launcher" = "%ProgramFiles%\sbss\sbss.exe"
to the registry subkey:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
- Adds the values:
"DisplayName" = "sbss"
"NoModify" = "0x00000001"
"UninstallString" = "C:\Program Files\sbss\Uninstall sbss.exe"
to the registry subkey:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\sbss
- Adds the values:
"InstalledTo" = "C:\Program Files\sbss"
"LogURL" = "www.sidebysidesearch.com\nextvantage"
"mQuery" = "0x00000000"
"mGUID" = "{47A2A948-AB0A-4C20-A89F-6E847EDA7314}"
"mADCODE" = "2089!ascentive"
"startupflags" = "0x00000001"
"InstalledVN" = "0x00002710"
to the registry subkey:
HKEY_LOCAL_MACHINE\SOFTWARE\sbss
- Monitors the user's online activity, sends keyword searches to sidebysidesearch.com, then displays a pop-up window displaying the search results retrieved from sidebysidesearch.com.
- Displays pop-up ads.
Technorati
Digg
Delicious
Reddit
StumbleUpon
Yahoo Buzz
Twitter
Facebook
Newsvine
