 |
Home
Articles
Spyware Research
Support
Scan Now
Purchase
F.A.Q.
Top 25 Spyware:
Glossary Latest Detections  |
 |
Adware/Toolbar/Dialer/EzulaAlias: Ezula, Adware/SearchExe
Description: Adware/Toolbar/Dialer/Ezula is an adware and Internet Explorer plugin. Adware/Toolbar/Dialer/Ezula will add extra links to your viewed web pages. Threat type: Adware - Adware is a software application which displays advertisements on your computer. Advertisements can be displayed through pop-up / pop-under windows, additional bars or toolbars, underlined links or buttons that appear on a computer screen. Adware applications include additional code that delivers the ads. Adware authors earn money when users click on those ads. Occasionally, adware includes code that tracks user's site visits and passes it to third parties without the user's permission or knowledge. Dialer - A Dialer is a software application that dials long distance phone numbers. Dialers modify your dial-up settings and make very expensive long distance phone calls without user's permission. The user will be billed for the time used. Dialer authors share the revenues shady long distance providers. Search Hijacker - A Search Hijacker is a software application that takes control of your browser's default search engine. The search results may not necessarily be the best fit as those usually come from paid advertisements, as issued to you by the Hijacker authors. Search hijackers prevent you from changing your browser's default search engine, and they tend to slow down PC performance. Toolbar - A Toolbar is a group of buttons that performs different tasks. Unwanted toolbars are usually installed by adware programs that try to send users to their paying advertisers. Advice: Remove This is a very high risk threat and should be removed immediately as to prevent harm to your computer or your privacy. Detection: SpyNoMore detects Adware/Toolbar/Dialer/Ezula: Yes Threat risk: Medium Risk  Potentially dangerous malware. May collect sensitive user information and broadcast data back to a server with "opt-out" permission. Category includes most adware programs. Symptoms: Adware/Toolbar/Dialer/Ezula displays commercial advertisements. Adware/Toolbar/Dialer/Ezula changes browser settings. Adware/Toolbar/Dialer/Ezula connects itself to the internet. Adware/Toolbar/Dialer/Ezula hides from the user and stays resident in background.
Running Process Signatures: N/A File Signatures: %FAVORITES%\ internet\education\school.url %PROGRAM_FILES%\sed\sed.exe %FAVORITES%\ home\health plan.url %PROGRAM_FILES%\third close jugs\help anti.exe %FAVORITES%\ shopping gifts\birthday gift.url %FAVORITES%\ computers\internet.url %FAVORITES%\ adult items\adult education.url %FAVORITES%\ online pharmacy\pet med.url %FAVORITES%\ shopping gifts\sexy lingerie.url %FAVORITES%\ shopping gifts\dvd players.url %WINDOWS%\system32\yzrokmen.exe %FAVORITES%\ computers\dvd.url %FAVORITES%\ adult entertainment\photos.url %FAVORITES%\ home\outdoor cooking.url %FAVORITES%\ adult entertainment\dating\dating service.url %FAVORITES%\ computers\games\quake.url %FAVORITES%\ adult entertainment\live video feeds.url %FAVORITES%\ online pharmacy\buy fidrex.url %FAVORITES%\ online pharmacy\buy adipex.url %FAVORITES%\ travel\car rental.url %FAVORITES%\ travel\travel agent.url %DESKTOPDIRECTORY%\ebay.com.url %WINDOWS%\system32\rulesak.dll %FAVORITES%\ adult entertainment\dating\online dating.url %WINDOWS%\conscorr.ini %FAVORITES%\ adult entertainment\lesbian.url %FAVORITES%\ home\home security.url %FAVORITES%\ online pharmacy\doctor.url %WINDOWS%\system32\updak.dll %FAVORITES%\ computers\instant messenger.url %FAVORITES%\ home\food nutrition.url %FAVORITES%\ home\interior decorating .url %DESKTOPDIRECTORY%\bingo .lnk %FAVORITES%\ online gaming\black jack poker.url %WINDOWS%\system32\wrgkf2.exe %DESKTOPDIRECTORY%\internet .lnk %FAVORITES%\ computers\games\microsoft.url %FAVORITES%\ adult entertainment\dating\jewish dating.url %FAVORITES%\ adult items\buy viagra.url %DESKTOPDIRECTORY%\card games.lnk %PROGRAM_FILES%\third close jugs\qiopzbor.exe %FAVORITES%\ computers\games\sega dreamcast.url %FAVORITES%\ online gaming\craps.url %WINDOWS%\digital signature 20040814.htm %FAVORITES%\ adult entertainment\gay.url %FAVORITES%\ computers\computer programming.url %FAVORITES%\ computers\domain hosting.url %WINDOWS%\system32\aud.dll %FAVORITES%\ shopping gifts\watches.url %FAVORITES%\ computers\games\playstation.url %WINDOWS%\system32\sysfile.dll %FAVORITES%\ online pharmacy\buy celebrex.url %FAVORITES%\ shopping gifts\cellular.url %FAVORITES%\ dating\dating agency.url %FAVORITES%\ online pharmacy\buy ultram online.url %WINDOWS%\system32\msrev43.dll %FAVORITES%\ shopping gifts\gift basket.url %FAVORITES%\amazon.url %WINDOWS%\bsx32.ini %DESKTOPDIRECTORY%\investing .lnk %WINDOWS%\system32\tfing.exe %FAVORITES%\ home\adjustable bed.url %WINDOWS%\system32\ss.dll %FAVORITES%\ travel\orlando hotel.url %FAVORITES%\ internet\education\essay.url %PROFILE%\application data\sett.exe %FAVORITES%\ online pharmacy\buy soma.url %DESKTOPDIRECTORY%\pacman.lnk %FAVORITES%\ online pharmacy\buy ionamin.url %WINDOWS%\woinstall.exe %WINDOWS%\system32\aqzh0g6.exe %WINDOWS%\system32\mmview_ouch.dll %FAVORITES%\ adult entertainment\fetish.url %WINDOWS%\system32\vbbm8.exe %DESKTOPDIRECTORY%\free casino.url %FAVORITES%\ adult entertainment\dating\christian dating.url %DESKTOPDIRECTORY%\casino online.lnk %WINDOWS%\system32\jel387h.exe %FAVORITES%\ internet\education\college.url %DESKTOPDIRECTORY%\winsock2.reg %DESKTOPDIRECTORY%\free spyware scanner.url %FAVORITES%\ dating\online dating.url %WINDOWS%\system32\cmpbk321.exe %WINDOWS%\system32\ifojzc.exe %FAVORITES%\links\expedia.url %FAVORITES%\ adult items\adult personals.url %DESKTOPDIRECTORY%\expedia.com.url %FAVORITES%\ internet\free long distance.url %WINDOWS%\system32\antispy.exe %FAVORITES%\ shopping gifts\smoke shop.url %FAVORITES%\ computers\communication technology.url %FAVORITES%\ adult entertainment\matchmaking.url %FAVORITES%\ home\home refinancing.url %FAVORITES%\ online gaming\time cards.url %FAVORITES%\ adult entertainment\shemale sex.url %FAVORITES%\ shopping gifts\underwear.url %WINDOWS%\system32\cdcore.dll %FAVORITES%\ internet\investing money.url %DESKTOPDIRECTORY%\travel specials.url %WINDOWS%\system32\splashspot games.exe %FAVORITES%\ travel\las vegas hotel.url %DESKTOPDIRECTORY%\block spyware.url %FAVORITES%\ internet\hosting.url %FAVORITES%\ shopping gifts\wedding gifts.url %FAVORITES%\links\ebay.url %FAVORITES%\ movie.url %FAVORITES%\ online pharmacy\buy meridia .url %FAVORITES%\ online gaming\bingo.url %DESKTOPDIRECTORY%\free online music.url %FAVORITES%\ internet\education\adult education.url %FAVORITES%\ travel\new york.url %WINDOWS%\system32\zibk.exe %FAVORITES%\ computers\inkjet cartridge.url %FAVORITES%\ online pharmacy\mexican pharmacy.url %FAVORITES%\ internet\internet business.url %FAVORITES%\ travel\family vacation.url %FAVORITES%\ home\working from home.url %FAVORITES%\ travel\hotels.url %DESKTOPDIRECTORY%\cheap holiday travel.url %FAVORITES%\ online pharmacy\buy propecia.url %DESKTOPDIRECTORY%\bsx32.ini %FAVORITES%\ shopping gifts\corporate gift.url %WINDOWS%\system32\bidispl9.exe %FAVORITES%\ travel\hawaii travel.url %FAVORITES%\ adult entertainment\sex movies.url %WINDOWS%\system32\araamon.dll %FAVORITES%\ shopping gifts\digital cameras.url %WINDOWS%\system32\atl76681.exe %WINDOWS%\system32\book.dll %FAVORITES%\ antivirus.url %FAVORITES%\ computers\games\gamecube.url %FAVORITES%\ adult entertainment\adult dvd.url %WINDOWS%\system32\ezpopstub.exe %FAVORITES%\ adult entertainment\viagra.url %FAVORITES%\ shopping gifts\womens clothing.url %WINDOWS%\system32\coreak.dll %FAVORITES%\ internet.url %DESKTOPDIRECTORY%\printer cartridges.lnk %FAVORITES%\ adult items\penis enlargement.url %FAVORITES%\ internet\education\book.url %FAVORITES%\ dating\jewish dating.url %FAVORITES%\ travel\world travel.url %FAVORITES%\ computers\working from home.url %FAVORITES%\ adult items\buy adipex.url %FAVORITES%\ shopping gifts\jewelry.url %DESKTOPDIRECTORY%\ebay.url %FAVORITES%\ travel\air travel.url %FAVORITES%\ adult entertainment\dvd.url %COMMON_PROGRAMS%\pacman.lnk %PROGRAM_FILES%\sed\uninstall.exe %WINDOWS%\preinsln.exe %FAVORITES%\ shopping gifts\perfume.url %FAVORITES%\ online gaming\sport betting.url %WINDOWS%\system32\msrev23.dll %PROGRAM_FILES%\third close jugs\gridtwo.exe %WINDOWS%\iconz.exe %FAVORITES%\ internet\online gaming.url %FAVORITES%\ travel\london hotel.url %FAVORITES%\ dating\dating service.url %WINDOWS%\system32\amtxprxy.dll %FAVORITES%\ home\outdoor furniture.url %FAVORITES%\ebay.com.url %WINDOWS%\system32\cdsync.dll %FAVORITES%\ computers.url %FAVORITES%\ computers\hosting.url %PROGRAM_FILES%\third close jugs\link 01 live.exe %FAVORITES%\ online pharmacy\consumer consulting.url %PROGRAM_FILES%\sed\se.exe %FAVORITES%\ internet\jokes.url %FAVORITES%\ online pharmacy\buy tenuate.url %FAVORITES%\ internet\education\community.url %FAVORITES%\ shopping gifts\dress fashion.url %FAVORITES%\amazon.com.url %WINDOWS%\cjijjom.ini %FAVORITES%\ dating\internet dating.url %FAVORITES%\ internet\firewall.url %FAVORITES%\ travel\skiing.url %FAVORITES%\ internet\flowers.url %FAVORITES%\ shopping gifts\wine gifts.url %FAVORITES%\ dating\christian dating.url %FAVORITES%\links\ebay.com.url %PROGRAM_FILES%\weboff~1\sepng.dll %WINDOWS%\system32\cdrules.dll %FAVORITES%\ adult items\diet pill.url %FAVORITES%\ adult entertainment\dating\dating agency.url %FAVORITES%\ home\satellite television.url %FAVORITES%\ home\sleep aids.url %FAVORITES%\ adult entertainment\sex toys.url %FAVORITES%\ travel\cancun vacation.url %FAVORITES%\ computers\computer jobs .url c:\sepinst.exe %DESKTOPDIRECTORY%\funcade_icmediax_install.exe %FAVORITES%\ shopping gifts\shoes.url %FAVORITES%\ adult items\personals.url %FAVORITES%\ internet\starting a business.url %FAVORITES%\ adult entertainment\hardcore.url %FAVORITES%\ web hosting.url %FAVORITES%\ online pharmacy\buy phentermine.url %DESKTOPDIRECTORY%\travel .lnk %FAVORITES%\ home\timeshare.url %FAVORITES%\ home\phone system.url %FAVORITES%\ internet\spyware.url %FAVORITES%\links\amazon.com.url %FAVORITES%\ shopping gifts\video surveillance.url %FAVORITES%\ home\home equity loan.url %FAVORITES%\ adult items\breast enhancement.url %FAVORITES%\ online gaming\slots.url %FAVORITES%\ online gaming\roulette gambling.url %WINDOWS%\system32\sicon.dll %FAVORITES%\ travel\timeshare.url %FAVORITES%\ online gaming\gamble.url %FAVORITES%\ instant messaging.url %FAVORITES%\ computers\games\computer game.url %DESKTOPDIRECTORY%\amazon.com.url %FAVORITES%\ internet\education\education.url %FAVORITES%\ computers\games\xbox.url %PROGRAM_FILES%\sed\uninst.exe %FAVORITES%\ online pharmacy\pharmacy online.url %FAVORITES%\ computers\antivirus.url %FAVORITES%\ travel\europe travel.url %WINDOWS%\system32\thin.dll %WINDOWS%\system32\avwav072.exe %FAVORITES%\expedia.com.url %FAVORITES%\ shopping gifts\leather jackets.url %DESKTOPDIRECTORY%\online dating.url %FAVORITES%\ online pharmacy\pass drug test.url %FAVORITES%\ internet\online football games.url %FAVORITES%\ online pharmacy\buy xenical.url %FAVORITES%\ shopping gifts\christmas gift.url %FAVORITES%\ internet\web marketing.url %FAVORITES%\ travel\travel insurance.url %FAVORITES%\ adult entertainment\dating\internet dating.url %FAVORITES%\ebay.url %FAVORITES%\ travel\discount travel.url %FAVORITES%\ travel\cruises.url %DESKTOPDIRECTORY%\website hosting.lnk %FAVORITES%\ internet\domain registrations.url %FAVORITES%\ online gaming\sport book.url %FAVORITES%\ home\office space.url %FAVORITES%\links\amazon.url %FAVORITES%\ adult items\adult toys.url %FAVORITES%\ online gaming\jackpot.url %DESKTOPDIRECTORY%\amazon.url %WINDOWS%\system32\hotelc.exe %PROGRAM_FILES%\third close jugs\gojpuses.exe %WINDOWS%\system32\auaamon.dll %FAVORITES%\ travel\vacation.url %PROGRAM_FILES%\user hold beep\dogmfcd.exe %FAVORITES%\ casino online.url %FAVORITES%\ travel\resort.url %FAVORITES%\ home\home improvements.url %FAVORITES%\ online gaming\casino online.url %WINDOWS%\system32\cdfview4.exe c:\ezstub.exe %FAVORITES%\ internet\newsgroup.url %FAVORITES%\ online pharmacy\buy viagra.url %WINDOWS%\system32\esad8.exe Registered Dll (Dynamic Link Library) Signatures: N/A Folder Signatures: %PROGRAM_FILES%\web offer %WINDOWS%\ezstub.exe Registry Signatures: HKCR\interface\{bccab53d-0895-40c3-a942-a03538ce227a} HKCR\ezulafsearcheng.searchhelpe HKCR\interface\{25630b50-53c6-4e66-a945-9d7b6b2171ff} HKCR\interface\{ef0372de-f552-11d3-8528-0050dab79376} HKLM\software\classes\typelib\{8a044396-5da2-11d4-b185-0050dab79376} HKCR\appid\{0818d423-6247-11d1-abee-00d049c10000} HKCR\atlbrcon.atlbrcon.1 HKCR\clsid\{9bcf9f0e-80c2-bd69-8c3e-b1ced587cbff} HKCR\clsid\{4cd4be40-22e3-ccac-bceb-69a27ddf5f89} HKCR\clsid\{e7a05400-4cfa-4df3-a643-e40f86e8e3d7} HKCR\clsid\{370f6354-41c4-4fa6-a2df-1ba57ee0fbb9} HKCR\clsid\{23358854-c851-a9c8-7858-954990bc2490} HKCR\interface\{a986f4db-792e-4571-8974-0bb6e024766f} HKCR\clsid\{788c6f6f-c2ea-4a63-9c38-ce7d8f43bce4} HKCR\interface\{370f6353-41c4-4fa6-a2df-1ba57ee0fbb9} HKCR\clsid\{220f9cb2-acf1-ae12-1d11-536411e35dfe} HKCR\interface\{bd6f129a-08db-4cc5-a75a-f2ab79e55b6e} HKCR\clsid\{9cfa26c0-81da-4c9d-a501-f144a4a000fa} HKCR\typelib\{9cfa26c1-81da-4c9d-a501-f144a4a000fa} HKCR\clsid\{2720f083-325e-7d8d-c082-7d07a8eade87} HKLM\software\microsoft\internet explorer\explorer bars\{a166c1b0-5cdb-447a-894a-4b9fd7149d51} HKCR\interface\{9cfa26c2-81da-4c9d-a501-f144a4a000fa} HKCR\clsid\{1a9880a9-5a48-15ac-b6e5-4a07a1f4df7a} HKLM\software\interads HKCR\interface\{a8516f49-8046-4295-8ee9-c59d5041c9e2} HKCR\ezulafsearcheng.popupdispla HKLM\software\microsoft\windows\currentversion\uninstall\web offer HKCR\clsid\{fc2a685e-3d0f-87b0-2045-18023d80bb50} HKCR\interface\{788c6f6e-c2ea-4a63-9c38-ce7d8f43bce4} HKCR\ezulamain.ezulapopsearchpipe HKCR\clsid\{3a411476-c94b-4cdc-8700-6f7901ce9eeb} HKCR\typelib\{370f6327-41c4-4fa6-a2df-1ba57ee0fbb9} HKCR\clsid\{4368aaa5-c359-2ce0-c7df-4246bb5b4cb2} HKLM\software\microsoft\windows\currentversion\explorer\browser helper objects\{9cfa26c0-81da-4c9d-a501-f144a4a000fa} HKCR\clsid\{78bcf937-45b0-40a7-9391-dcc03420db35} HKCR\interface\{6e0ed53c-9908-49ed-b055-7cb31b162577} HKCR\clsid\{6df5e318-6994-4a41-85bd-45ccada616f8} HKCR\interface\{370f6327-41c4-4fa6-a2df-1ba57ee0fbb9} HKLM\software\coupondeals HKCR\interface\{9bcdd51b-4a7b-446c-8452-d32d38004582} HKCR\typelib\{9cfa26c0-81da-4c9d-a501-f144a4a000fa} HKCR\clsid\{25630b47-53c6-4e66-a945-9d7b6b2171ff} HKCR\interface\{af286cea-635d-40c5-a891-b40a0f520539} HKCR\interface\{a42dc659-33b5-409e-a433-650ac42ecca4} HKCR\typelib\{8992b6ca-b8c9-4aed-bf89-0a17f6296a06} HKCR\clsid\{c68924a3-c49a-37c2-eb92-1645f73d3e1e} HKCR\interface\{3a951af0-53f8-4803-a565-0e1dee4b11f5} HKCR\clsid\{f75521b8-76f1-4a4d-84b1-9e642e9c51d0} HKCR\interface\{241667a3-ec83-4885-84dd-c2daafc1c5ea} HKCR\ezulamain.ezulapopsearchpipe.1 HKCR\interface\{d7eac2d8-2d52-4010-a4ad-dfdf60c1706c} HKCR\clsid\{e08b462d-2fb7-0489-54b7-1b6aafc2ecba} HKCR\interface\{c03351a3-6755-11d4-8a73-0050da2ee1be} HKCR\interface\{8c53bd8e-b12d-4c8f-ad0e-c9ddc39d1273} HKCU\software\web offer HKCR\typelib\{eb5e961f-f519-303c-9744-0d4376b1b0b5} HKCR\clsid\{a166c1b0-5cdb-447a-894a-4b9fd7149d51} HKCR\interface\{830d3aed-2fa9-454f-b266-d931862bbf34} HKCR\interface\{c0f88e9e-dceb-4655-968a-ae508a677c39} HKCR\clsid\{00320615-b6c2-40a6-8f99-f1c52d674fad} HKCR\ezulafsearcheng.resulthelpe HKCR\interface\{78bcf936-45b0-40a7-9391-dcc03420db35} HKCR\interface\{7edc96e1-5dd3-11d4-b185-0050dab79376} HKCR\clsid\{2ada082b-9f11-a314-9431-d7c29f458b6e} HKCR\interface\{955cbf48-4313-4b1f-872b-254b7822ccf2} HKCR\interface\{fb82ccd5-174b-4379-bc37-72d9b5adaeda} HKCR\interface\{8ebb1743-9a2f-11d4-8a7e-0050da2ee1be} HKCR\clsid\{fb87796b-c1d1-a2cf-468a-03e77186d7b5} HKCR\interface\{efa52460-8822-4191-ba38-facdd2007910} HKCR\clsid\{4d335fff-080f-8f89-e1c4-75220c35322e} HKCR\typelib\{5e594162-60a9-487d-84b8-dbdd716cb862} HKCR\interface\{c4fee4a6-4b8b-11d4-8a6d-0050da2ee1be} HKCR\clsid\{fa66d870-8368-1b50-fb12-631748c9752d} HKCR\clsid\{8940e505-72c6-44de-be85-1d746780efbf} HKCR\interface\{ef0372dc-f552-11d3-8528-0050dab79376} HKLM\software\microsoft\windows\currentversion\explorer\browser helper objects\{fc2a685e-3d0f-87b0-2045-18023d80bb50} HKCR\clsid\{50b4d2b3-723f-41b3-aec4-0bd66f0f45ff} HKCR\software\classes\quicksearch.searchband HKLM\software\microsoft\internet explorer\explorer bars\{50b4d2b3-723f-41b3-aec4-0bd66f0f45ff} HKCR\clsid\{5c9df9e7-8687-05a2-17a3-036319e3786d} HKCR\typelib\{baf13496-8f72-47a1-9cee-09238efc75f0} HKCR\clsid\{c256d608-29d9-bcf2-1c2a-6e01a66a8b51} SpyNoMore Collected Residual File Signatures: N/A
| | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| ||||
|
||||
 |
|
 | ||