Winter approaches 1.0

Winter approaches 1.0 is an adware bundler that installs several other software’s with itself Adware-Url.gen,Adware-BonziBuddy.dr and NDotNet (New.net) and the adware that it installs with itself shows advertising and deceptive warnings.

General information:

Malware Name:	Winter approaches 1.0
Malware Type:	Adware Bundler
Company Name:	fantasysavers.com
Company URL:	http://www.fantasysavers.com/
Threat Level:	Elevated Risk
Operating System:	WIN XP
Installation Type:	Installed through EXE
Operation:	Time of After Installation

Company Description:

fantasysavers.com provides you the software Winter approaches 1.0 that provides you over 100 High Quality Fully animated screensavers with sound.

Spyware Description:

Winter approaches 1.0 is an adware bundler that installs several other software’s with itself Adware-Url.gen,Adware-BonziBuddy.dr and NDotNet (New.net) and the adware that it installs with itself shows advertising and deceptive warnings.

Characteristics/Symptoms:

    -> It installs several other software’s with itself like Adware-Url.gen,Adware-BonziBuddy.dr and NDotNet (New.net). -> The adware that it installs with itself shows advertising and deceptive warnings.

Additional information might be found here:

	Search at Google for Winter approaches 1.0
	Search at Bing for Winter approaches 1.0
	Search at Yahoo for Winter approaches 1.0

Processes Running:

Winter approaches.scr

File information Created after Installation:

File Location	Size (Bytes)	Type
C:\Program Files\FileSubmit\Winter Approches\INSTALL.LOG	1849	Text Document
C:\Program Files\FileSubmit\Winter Approches\UNWISE.INI	29	Configuration Settings
C:\Program Files\FileSubmit\Winter Approches\fsi_uninstall.ico	766	Icon

Folder information Created after Installation:

Folder Location
C:\Documents and Settings\[USER]\Start Menu\Programs\FileSubmi
C:\Documents and Settings\[USER]\Start Menu\Programs\Winter approache

Registry information Created after Installation: