My Search Bar
MySearch is NOT a Trojan, virus or spyware. It is a browser helper object added to Internet Explorer that allows searching the internet using a variety of search engines. It is distributed from a variety of websites including www.mysearch.com. Also,
our research team has observed the Toolbar being installed with a bundle of known adware and file-sharing applications and other rogue programs. Recently, MySearch was found bundled with adware from FasterXP.com. In the past, it was observed being
installed without user awareness or permission through security exploits from a variety of websites belonging to third-party distributors. If we intentionally installed this toolbar, we should elect to keep it by excluding it from future detection.0
General information:
| Malware Name: |
My Search Bar |
| Malware Type: |
Toolbar |
| Company Name: |
My Search |
| Company URL: |
http://www.mysearch.com/
|
| Threat Level: |
Low Risk |
| Operating System: |
WIN XP |
| Installation Type: |
Installed through ActiveX |
| Operation: |
Time of After Installation |
Company Description:
My Search gives one click access to the search results of the best search providers on the Internet, featuring Google, Ask.com, Yahoo! and LookSmart. Simply put, the My Search site and our My Search Bar provide us with the best search resources on
the Web, with no strings attached. My Search can take full advantage of the wealth of information and personalization readily at our disposal through our unique product.
Spyware Description:
MySearch is NOT a Trojan, virus or spyware. It is a browser helper object added to Internet Explorer that allows searching the internet using a variety of search engines. It is distributed from a variety of websites including www.mysearch.com. Also,
our research team has observed the Toolbar being installed with a bundle of known adware and file-sharing applications and other rogue programs. Recently, MySearch was found bundled with adware from FasterXP.com. In the past, it was observed being
installed without user awareness or permission through security exploits from a variety of websites belonging to third-party distributors. If we intentionally installed this toolbar, we should elect to keep it by excluding it from future detection.0
Characteristics/Symptoms:
-> It has a search function and provides search results for paid advertisers -> Track browsing habits -> Adds a third-party utility bar to the web browser -> Changes browser0
Additional information might be found here:
Processes Running:
Codebase: http://ak.imgfarm.com/images/nocache/mysearch/s4initialsetup1.0.0.14.cab
File information Created after Installation:
| File Location |
Size (Bytes) |
Type |
| C:\Program Files\MySearch\Installr\1.bin\S4EZSETP.DLL |
86016 |
Application Extension |
| C:\Program Files\MySearch\Installr\Cache\files.ini |
109 |
Configuration Settings |
| C:\Program Files\MySearch\bar\History\search |
1024 |
File |
Folder information Created after Installation:
| Folder Location |
| C:\Program Files\MySearch\Installr\setups |
| C:\Program Files\MySearch\bar\Settings |
Registry information Created after Installation:
| Main Registry Key |
Sub Registry Key |
Key Value Name |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\MySearch\bar |
ConfigRevisionURL |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\MySearch\bar |
PluginPath |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\MySearch\bar |
sr |
