PowerSearch
|
Description:
|
Adware
|
|
Risk Level:
|
High
|
|
Date of First Occurence:
|
Friday, May 09, 2008
|
|
Software Developer:
|
Euniverse, Inc.
|
|
Brief Info:
|
PowerSearch is a Internet Explorer search toolbar. When searching in the toolbar you will be directed to www.sirsearch.com. It also comes bundled with Keenvalue, a nasty spyware.
|
|
Removal:
|
This threat can be removed using "Spyware
Terminator"
|
SUPPRIMER SPYWARE »
Geographical Distribution of Threat "PowerSearch"
Threat Info
View All
Detected Items
- Detected Files:
%PROGRAMFILES%\powersearch\Toolbar\Uninstall.exe
MD5: 4A0B064B7C5040227EF0645D831DDFF8 Size:72037
%PROGRAMFILES%\powersearch\Toolbar\pwrstraf.dll
MD5: 7276C42A2DD539DFA75A5995773CEE1E Size:808448
%PROGRAMFILES%\PowerSearch\Toolbar\pwrscuz2.dll
MD5: 2B8951B5C4C03752D55A8AC67B5B8D33 Size:681472
%PROGRAMFILES%\PowerSearch\Toolbar\pwrsdfp\pwrsdp1.dll
MD5: 30FF3036253FAC2ABDE21BA298C60D50 Size:810496
%PROGRAMFILES%\powersearch\Toolbar\pwrsdfp\Uninstall.exe
MD5: 01BB0E971BE3F490C10A463FEEC15707 Size:78234
%PROGRAMFILES%\PowerSearch\Toolbar\pwrswmda.dll
MD5: AC42EBADF89A719E94F1656485E7E504 Size:679936
%PROGRAMFILES%\powersearch\Toolbar\pwrsmnd1\Uninstall.exe
MD5: C2352748EC2868A60DF12B6E448CAA9E Size:72163
%PROGRAMFILES%\PowerSearch\Toolbar\pwrsmnd1\pwrsmnd1.dll
MD5: E0B11528E09D74927A3E689DA161268C Size:808448
%PROGRAMFILES%\powersearch\toolbar\tipb.exe
MD5: 751DB1004ABB4CAD96FD71BF2160A5BA Size:32768
MD5: 75A7F54D3A75C03076A61110E4ECD134 Size:28672
%PROGRAMFILES%\powersearch\Toolbar\setup_incredifind_only_tdc033.exe
MD5: 24BC4E170C377F317F46FBA1CC33E5EE Size:54693
%PROGRAMFILES%\powersearch\Toolbar\KeenValueInstall_109.exe
MD5: F223852D0644529B5BAE01BA73B0C72A Size:210532
%PROGRAMFILES%\PowerSearch\Toolbar\pwrs0108.dll
MD5: 1B79404438EA653E2622A29D6685E648 Size:679424
- Detected Files with variable Filenames:
MD5: 0BF947F714BC71F2252E5F4AFD77597D Size: 32768
%PROGRAMFILES%\powersearch\Toolbar\setup.exe
%PROGRAMFILES%\powersearch\Toolbar\pwrsdfp\setup.exe
MD5: 31599B50F73583F2A650CC133317DF28 Size: 679424
%PROGRAMFILES%\powers~1\toolbar\pwrs0102.dll
%PROGRAMFILES%\PowerSearch\Toolbar\pwrs0102.dll
Detecting items list:
- Files by Name
%programfiles%\powersearch\toolbar\tipb.exe
%programfiles%\powers~1\toolbar\pwrs0102.dll
%programfiles%\powersearch\toolbar\pwrsbikd.dll
%programfiles%\powersearch\toolbar\pwrstlbr.dll
%programfiles%\powersearch\toolbar\pwrswmda.dll
%programfiles%\powersearch\toolbar\tipb.exe
%programfiles%\powersoft\toolbar\pwrswmda.dll
%windir%\system\flgobar.dll
%windir%\system\infobar.dll
%windir%\system\pwrs0102.dll
%windir%\system\pwrs0104.dll
%windir%\system\pwrs0108.dll
%windir%\system\pwrs0rbi.dll
%windir%\system\pwrsaimf.dll
%windir%\system\pwrsbikd.dll
%windir%\system\pwrsc032.dll
%windir%\system\pwrscuz3.dll
%windir%\system\pwrscznc.dll
%windir%\system\pwrsqsim.dll
%windir%\system\pwrswmda.dll
%windir%\system\searchbr.dll
%sysdir%\flgobar.dll
%sysdir%\infobar.dll
%sysdir%\pwrs0102.dll
%sysdir%\pwrs0104.dll
%sysdir%\pwrs0108.dll
%sysdir%\pwrs0rbi.dll
%sysdir%\pwrsaimf.dll
%sysdir%\pwrsbikd.dll
%sysdir%\pwrsc032.dll
%sysdir%\pwrscuz3.dll
%sysdir%\pwrscznc.dll
%sysdir%\pwrsqsim.dll
%sysdir%\pwrswmda.dll
%sysdir%\searchbr.dll
- Files by Directories
%programfiles%\powersearch
%programfiles%\powersoft\toolbar
- Files by CLSID or Name
CLSID=47801270-3ce6-434f-8e71-75b7e0cd64b2
CLSID=4e7bd74f-2b8d-469e-a08d-8f6fa787ad2d
CLSID=4e7bd74f-2b8d-469e-a08e-8e1ca787ad2d
CLSID=4e7bd74f-2b8d-469e-a1e4-ea6fa787ad2d
CLSID=4e7bd74f-2b8d-469e-a68e-8e1ca787ad2d
CLSID=4e7bd74f-2b8d-469e-aa8e-8e1ca787ad2d
CLSID=4e7bd74f-2b8d-469e-c0fc-f378a787ad2d
CLSID=4e7bd74f-2b8d-469e-c0fc-f76fa694bf2e
CLSID=4e7bd74f-2b8d-469e-c0ff-fd63b29bb37d
CLSID=4e7bd74f-2b8d-469e-c0ff-fd63b399bc7d
CLSID=4e7bd74f-2b8d-469e-d1f0-e56fa787ad2d
CLSID=4e7bd74f-2b8d-469e-d3fa-f27ba787ad2d
CLSID=4e7bd74f-2b8d-469e-d4f3-f66da787ad2d
CLSID=4e7bd74f-2b8d-469e-d6f5-f66ea787ad2d
CLSID=4e7bd74f-2b8d-469e-dbfc-ed1ca787ad2d
CLSID=4e7bd74f-2b8d-469e-dff7-ec7da787ad2d
CLSID=5154cbed-e3ea-4bf6-90c9-32776282076b
CLSID=0d5cc8ae-0bb0-49c3-ba33-ba4508ea43cc
CLSID=4e7bd74f-2b8d-469e-c0fc-f76fa694bf2e
CLSID=4e7bd74f-2b8d-469e-d6f5-f66ea787ad2d
CLSID=4e7bd74f-2b8d-469e-dff7-ec7da787ad2d
CLSID=d737944e-4270-4774-b3ce-062fa7369a23
CLSID=4e7bd74f-2b8d-469e-c0fc-f378a787ad2d
CLSID=4e7bd74f-2b8d-469e-d6f5-f66ea787ad2d
CLSID=4e7bd74f-2b8d-469e-a08e-8e1ca787ad2d
CLSID=4e7bd74f-2b8d-469e-a1e4-ea6fa787ad2d
CLSID=4e7bd74f-2b8d-469e-a68e-8e1ca787ad2d
CLSID=4e7bd74f-2b8d-469e-aa8e-8e1ca787ad2d
CLSID=4e7bd74f-2b8d-469e-c0fc-f378a787ad2d
CLSID=4e7bd74f-2b8d-469e-c0fc-f76fa694bf2e
CLSID=4e7bd74f-2b8d-469e-c0ff-fd63b29bb37d
CLSID=4e7bd74f-2b8d-469e-d1f0-e56fa787ad2d
CLSID=4e7bd74f-2b8d-469e-d3fa-f27ba787ad2d
CLSID=4e7bd74f-2b8d-469e-d4f3-f66da787ad2d
CLSID=4e7bd74f-2b8d-469e-d6f5-f66ea787ad2d
CLSID=4e7bd74f-2b8d-469e-dbfc-ed1ca787ad2d
CLSID=4e7bd74f-2b8d-469e-dff7-ec7da787ad2d
CLSID=5629aaa8-dad0-493d-b8a7-fe3e0b06be37
CLSID=4e7bd74f-2b8d-469e-a08e-8e1ca787ad2d
CLSID=4e7bd74f-2b8d-469e-a1e4-ea6fa787ad2d
CLSID=4e7bd74f-2b8d-469e-a68e-8e1ca787ad2d
CLSID=4e7bd74f-2b8d-469e-aa8e-8e1ca787ad2d
CLSID=4e7bd74f-2b8d-469e-c0fc-f378a787ad2d
CLSID=4e7bd74f-2b8d-469e-c0fc-f76fa694bf2e
CLSID=4e7bd74f-2b8d-469e-c0ff-fd63b29bb37d
CLSID=4e7bd74f-2b8d-469e-c0ff-fd63b399bc7d
CLSID=4e7bd74f-2b8d-469e-d1f0-e56fa787ad2d
CLSID=4e7bd74f-2b8d-469e-d3fa-f27ba787ad2d
CLSID=4e7bd74f-2b8d-469e-d4f3-f66da787ad2d
CLSID=4e7bd74f-2b8d-469e-d6f5-f66ea787ad2d
CLSID=4e7bd74f-2b8d-469e-dbfc-ed1ca787ad2d
CLSID=4e7bd74f-2b8d-469e-dff7-ec7da787ad2d
CLSID=4e7bd74f-2b8d-469e-c0fc-f76fa694bf2e
CLSID=4e7bd74f-2b8d-469e-dff7-ec7da787ad2d
- Registry Keys
HKCU\software\xbtb03439\toolbar
«
Go to Software Database
