1. /
  2. Security Response/
  3. Adware.Redir

Adware.Redir

Updated:
February 13, 2007 11:47:12 AM
Type:
Adware
Risk Impact:
High
File Names:
rdirector.exe
Systems Affected:
Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows XP

When Adware.Redir is executed, it performs the following actions:
  1. Creates the following mutex so that only one instance of the risk runs on the computer:

    {493FAA5F-D50A-4060-B446-E551B2CA3AAA}

  2. Adds the value:

    "rdirector" = "[PATH TO ADWARE]"

    to the registry subkeys:

    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

    so that it runs every time Windows starts.

  3. Displays popup advertisements from the redirad.de domain.


Summary| Technical Details| Removal

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
Internet Security Threat Report
Symantec DeepSight Screensaver