FindRight is adware that may show random pop-up ads and messages including discount coupons, deals, sales and offers when PC users are visiting online shopping or other similar websites. FindRight may be added into the Web browser such as Internet Explorer, Mozilla Firefox and Google Chrome without a computer user's permission. Web browser may commonly propagate and enter the computer system through packed freeware that PC users can download from suspicious download websites on the Internet. When the PC user selects to download and install a free app, it may carry extra toolbars, browser plug-ins and add-ons in the installation package. These extra tools, specifically, FindRight may be marked as optional software, but if the PC user does not deselect a check box to embed them, he may confront undesired system changes on the computer system. FindRight may trace the PC user's browsing activity and transfer and use collected information for the purpose of targeted marketing.
Aliases: AdWare.BrowseFox [Ikarus], a variant of Win32/BrowseFox.F [ESET-NOD32], Trojan.BPlug.17 [DrWeb], Generic PUA IF [Sophos], Trojan[:HEUR]/Win32.AGeneric [Antiy-AVL], Win32.Troj.Agent.ah.(kcloud) [Kingsoft], Win32/BrowseFox.E [ESET-NOD32], Adware/Agent [Fortinet], Artemis!539F7BB77BA7 [McAfee], TROJ_GEN.F47V0225 [TrendMicro-HouseCall], Trojan.BPlug.22 [DrWeb], Artemis!BC29C0BB6A11 [McAfee], Trojan.ADH.2 [Symantec], TROJ_GEN.F47V0227 [TrendMicro-HouseCall] and PUA.Agent! [Agnitum].

Technical Information

Infection Statistics

Our MalwareTracker shows malware activity across the world. Explore real-time data of FindRight outbreaks and other threats from global to local level.

File System Details

FindRight creates the following file(s):
# File Name Size MD5 Detection Count
1 system32\drivers\{42e50651-9669-456e-9081-d5a836274274}Gw64.sys 61,112 175a9ed9509c54544cf409e0308aeecf 800
2 system32\drivers\{42e50651-9669-456e-9081-d5a836274274}w64.sys 61,112 87fb9899c8fa8f614f8d999c68706051 437
3 %TEMP%\is520188154\6151590_stp\FindRightSetup.exe 232,856 1cfdaaddf300f3d08b151818aedfbe37 88
4 %WINDIR%\System32\drivers\{42e50651-9669-456e-9081-d5a836274274}t.sys 55,224 c8d2a0676c8e87d5769c282f7d577806 26
5 %WINDIR%\System32\drivers\{42e50651-9669-456e-9081-d5a836274274}Gt.sys 55,224 da819a226361e79c437e50745257c35e 25
6 %PROGRAMFILES(x86)%\FindRight\bin\utilFindRight.exe 80,672 a7f9def51266832a3d18b198923c2385 2,820
7 %WINDIR%\System32\drivers\{42e50651-9669-456e-9081-d5a836274274}Gw.sys 52,920 9d79fb273e4ec8273fffb50e96df89c0 15
8 %WINDIR%\System32\drivers\{42e50651-9669-456e-9081-d5a836274274}w.sys 52,920 f8953a9969de75ab5e6f58b56d968627 9
9 %PROGRAMFILES(x86)%\FindRight\FindRight.FirstRun.exe 1,089,312 642beda4795a85afbcf26000c00a0949 8
10 system32\drivers\{42e50651-9669-456e-9081-d5a836274274}Gt64.sys 60,088 69f66f4e3f037b3c51fa1fd3d72f935e 7
11 %PROGRAMFILES(x86)%\FindRight\FindRightBrowserFilter.exe 42,272 cf616ffdfebae41f856b8296216acbec 2
12 %PROGRAMFILES%\FindRight\FindRightbho.dll 249,632 d2dbe414e02f8d97b22bb5005bff18cd 2
13 %WINDIR%\System32\drivers\wStLibG.sys 52,920 bb2a309a130850c6c80fb963a6b70da3 1,687
14 %WINDIR%\System32\drivers\tStLibG.sys 55,224 dbda4829bff31085a5d19062d8c1f769 1,311
15 %WINDIR%\System32\drivers\wStLib64.sys 61,112 58e2e1497ee1d9cd24c5e0404ae6fd08 1,082

More files

Registry Details

FindRight creates the following registry entry or registry entries:
SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{2c774641-5504-46a8-b63f-6715ae3fe376}
SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{2c774641-5504-46a8-b63f-6715ae3fe376}
SYSTEM\ControlSet001\services\eventlog\Application\Update FindRight
SYSTEM\ControlSet001\services\Update FindRight
SYSTEM\CurrentControlSet\services\eventlog\Application\Update FindRight
SYSTEM\CurrentControlSet\services\Update FindRight
The following CLSID's were found:
HKEY..\..\{CLSID Path}

One Comment

  • Tamara says:

    Well that explains everything! You see I didn’t know why I was having these popups appearing on the screen whenever I surf on the net. I tried going on Tool > Internet Options > Tab, and it wasn’t doing anything. Then when I go to Setting > Control Panel > Uninstall Program, I didn’t know what FindRight means (nor do I remember installing the product. So I uninstall it and look it up what it means, and then there you are telling me about it.

    So I want to thank you. :)

