The PowerStrip Toolbar

The toolbar shows targeted popup ads, and also collects users browsing history. It can also download updates and other unsigned codes. The toolbar connects to its host server and exchanges the information with the server.If the user’s browser settings are low the powerstrip will be installed silently (without giving the user a clue of its installation)0

General information:

Malware Name:	The PowerStrip Toolbar
Malware Type:	Browser Helper Object
Company Name:	PowerStrip Technologies, Inc.
Company URL:	http://www.thepowerstrip.com/
Threat Level:	High
Operating System:	WIN XP
Installation Type:	Installed through ActiveX.
Operation:	Time of After restarting browser.

Company Description:

The PowerStrip toolbar from http://www.thepowerstrip.com is an Internet Explorer toolbar so the user of the website can instantly search, check for his email and get up-to-the-minute news headlines.

Spyware Description:

The toolbar shows targeted popup ads, and also collects users browsing history. It can also download updates and other unsigned codes. The toolbar connects to its host server and exchanges the information with the server.If the user’s browser settings are low the powerstrip will be installed silently (without giving the user a clue of its installation)0

Characteristics/Symptoms:

    -> Search Hijacker -> Installs silently -> Works in background -> Changes settings -> Slows the browser -> Show popup ads of its sponsors -> Also connects to its host server0

Additional information might be found here:

	Search at Google for The PowerStrip Toolbar
	Search at Bing for The PowerStrip Toolbar
	Search at Yahoo for The PowerStrip Toolbar

Processes Running:

File information Created after Installation:

File Location	Size (Bytes)	Type
C:\Program Files\PowerStrip\ PSLauncher.exe	20	EXE
C:\Program Files\PowerStrip\ PSSetup.exe	24	EXE
C:\Program Files\PowerStrip\ PowrStrp.dll	392	DLL

Folder information Created after Installation:

Folder Location

Registry information Created after Installation: