FindWhaterverNow Toolbar
FindWhaterverNow Toolbar has a search function and provides search results for paid advertisers. It adds a third-party utility bar to the web browser. It also change the browser and shows the advertisements.0
General information:
| Malware Name: |
FindWhaterverNow Toolbar |
| Malware Type: |
Toolbar |
| Company Name: |
FindWhateverNow.com |
| Company URL: |
http://www.findwhatevernow.com/
|
| Threat Level: |
High |
| Operating System: |
WIN XP |
| Installation Type: |
Installed through EXE. |
| Operation: |
Time of After installation. |
Company Description:
From company site âFindWhateverNow (FWN) combines one of the largest and freshest indices with the most powerful search features that allow anyone to find anything faster than with any other search engine.â
Spyware Description:
FindWhaterverNow Toolbar has a search function and provides search results for paid advertisers. It adds a third-party utility bar to the web browser. It also change the browser and shows the advertisements.0
Characteristics/Symptoms:
-> Search hijacker -> Changes browser settings -> Keeps a watch on users browsing habits -> Show popup ads -> May be associated with other adwares0
Additional information might be found here:
Processes Running:
File information Created after Installation:
| File Location |
Size (Bytes) |
Type |
| C:\WINDOWS\SYSTEM32\FWNToolbar.dll |
340 |
DLL |
| C:\WINDOWS\SYSTEM32\FWNToolbar.dll.manifest |
661 |
Manifest |
| C:\WINDOWS\SYSTEM32\unregister.exe |
68 |
EXE |
Folder information Created after Installation:
| Folder Location |
| C:\Program Files\FWN Toolbar |
Registry information Created after Installation:
| Main Registry Key |
Sub Registry Key |
Key Value Name |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Classes\TypeLib\{1BB56AB4-F223-412A-8A84-80C2946BA381} |
|
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\FWN Toolbar |
|
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FWN Toolbar |
|
