LordOfSearch

LordOfSearch is an adware bundler that uses adds other unwanted applications to the system which shows advertisements on the infected system

General information:

Malware Name:	LordOfSearch
Malware Type:	Adware Bundler
Company Name:	Etexchange.com
Company URL:	http://www.etexchange.com/
Threat Level:	Low Risk
Operating System:	WIN XP
Installation Type:	Installed through EXE
Operation:	Time of After Installation

Company Description:

Etexchange.com provides you the software LordOfSearch that is a media search tool. It can find almost any MP3,   WAV, MPEG, AVI, WMA, DiVx, EXE files you want. Lord of Search not only searches from Gnutella network that connects to LimeWire, Morpheus, Bearshare, and Shareaza, it also search media files from Internet Search Engine, Web site, FTP sites and LAN. LordofSearch has built-in players to play popular media file types.

Spyware Description:

LordOfSearch is an adware bundler that uses adds other unwanted applications to the system which shows advertisements on the infected system

Characteristics/Symptoms:

    -> It installs other unwanted applications such as WhenU and RelevantKnowledge etc -> The installed applications show aggressive, deceptive advertising.

Additional information might be found here:

	Search at Google for LordOfSearch
	Search at Bing for LordOfSearch
	Search at Yahoo for LordOfSearch

Processes Running:

LordofSearch.exe

File information Created after Installation:

File Location	Size (Bytes)	Type
C:\Program Files\LordofSearch\P2pConfig.ini	467	Configuration Settings
C:\Program Files\LordofSearch\data\WebCache.net	12679	NET File
C:\Program Files\LordofSearch\freeoffer\FreeScreenSaver	61	Internet Shortcut

Folder information Created after Installation:

Folder Location
C:\Documents and Settings\All Users\Start Menu\Programs\LordofSearc
C:\Program Files\LordofSearc

Registry information Created after Installation: