Home Malware Programs Potentially Unwanted Programs (PUPs) OnlineMapFinder

OnlineMapFinder

Posted: March 4, 2014

Threat Metric

Ranking: 395
Threat Level: 1/10
Infected PCs: 600,156
First Seen: March 4, 2014
Last Seen: October 17, 2023
OS(es) Affected: Windows

OnlineMapFinder is a potentially unwanted program (PUP) developed and published by Mindspark Interactive Network, a software publisher whose name is often linked to potentially unwanted programs and toolbars. The functionality of OnlineMapFinder is also offered by many other similar services that don't require the installation of 3rd-party software. As part of the download process for the toolbar, the computer user may be provided with the option to reset the default new tab page to a website linked to MyWay.com, one of Mindspark's partners. The new tab page may provide relevant links and results when the PC user makes a search request in the Web browser address bar. OnlineMapFinder may locate a search box within the toolbar which may help the PC user search the Internet with search results from its search results partner. Removal of OnlineMapFinder for computer users, who find the offered functions of OnlineMapFinder unnecessary, may search for and eliminate all associated Firefox and Chrome browser add-ons or extensions. When using Internet Explorer, OnlineMapFinder may be removed through the Control Panel.

Technical Details

File System Modifications

Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.

The following files were created in the system:



C:\Program Files\OnlineMapFinder_9p\bar\1.bin\NP9pStub.dll File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\NP9pStub.dll
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\T8EPMSUP.DLL File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\T8EPMSUP.DLL
File type: Dynamic link library
Mime Type: unknown/DLL
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pauxstb.dll File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pauxstb.dll
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pauxstb64.dll File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pauxstb64.dll
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pBar.dll File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pBar.dll
Mime Type: unknown/dll
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pbarsvc.exe File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pbarsvc.exe
Mime Type: unknown/exe
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pbprtct.dll File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pbprtct.dll
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pbrmon.exe File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pbrmon.exe
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pbrstub.dll File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pbrstub.dll
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pdatact.dll File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pdatact.dll
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pdlghk.dll File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pdlghk.dll
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pdlghk64.dll File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pdlghk64.dll
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pfeedmg.dll File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pfeedmg.dll
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9phighin.exe File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9phighin.exe
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9phtmlmu.dll File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9phtmlmu.dll
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9phttpct.dll File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9phttpct.dll
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pidle.dll File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pidle.dll
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pieovr.dll File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pieovr.dll
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9phkstub.dll File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9phkstub.dll
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pmedint.exe File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pmedint.exe
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pmlbtn.dll File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pmlbtn.dll
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pPlugin.dll File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pPlugin.dll
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pradio.dll File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pradio.dll
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9preghk.dll File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9preghk.dll
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pregiet.dll File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pregiet.dll
Mime Type: unknown/dll
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pscript.dll File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pscript.dll
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pskin.dll File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pskin.dll
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pskplay.exe File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pskplay.exe
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pSrcAs.dll File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pSrcAs.dll
Mime Type: unknown/dll
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pSrchMn.exe File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9pSrchMn.exe
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9psrchmr.dll File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\9psrchmr.dll
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\AppIntegrator64.exe File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\AppIntegrator64.exe
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\AppIntegratorStub64.dll File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\AppIntegratorStub64.dll
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\CREXT.DLL File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\CREXT.DLL
File type: Dynamic link library
Mime Type: unknown/DLL
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\CrExtP9p.exe File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\CrExtP9p.exe
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\DPNMNGR.DLL File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\DPNMNGR.DLL
File type: Dynamic link library
Mime Type: unknown/DLL
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\EXEMANAGER.DLL File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\EXEMANAGER.DLL
File type: Dynamic link library
Mime Type: unknown/DLL
Group: Malware file
C:\Program Files\OnlineMapFinder_9p\bar\1.bin\Hpg64.dll File name: C:\Program Files\OnlineMapFinder_9p\bar\1.bin\Hpg64.dll
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file

Registry Modifications

The following newly produced Registry Values are:

CLSID{01AE4C2A-B7DC-478E-9F00-DE442797A1A3}{05761199-5D9F-46F2-87EB-94C213147BC4}{0CCD06F1-9AC4-4149-BFC2-C52850CFAD05}{0ffda7cd-9969-4290-9def-d974299d6513}{1B1C4B0D-2A22-4429-B8F2-47B24708A1C8}{1B1E6193-DB2D-4E18-8150-B09CCEE89794}{1c6cd4b9-c965-4aa0-802e-71d3708ade10}{20791338-cccd-4861-9b8a-eeb8e9f17c13}{251A849E-0172-4BE9-8DEC-34B5EB12D3B3}{301DE3C5-8B01-4327-B60F-881B95C42C64}{362d13c8-2644-4137-b21c-cc4c5f9021fe}{3f858984-33d5-4226-b9e7-9b1659fd542e}{43580f65-cb67-43d0-b094-9c9cd04954da}{49EFA360-F557-4FC6-90EC-91330430AFC5}{4E9921A0-9EF1-426E-B37D-52A807A69B5F}{51E030F1-EE07-403B-9F1C-7F69C918CC6C}{567E880E-2956-4C85-AAD9-815F4DE91B0B}{667b70a0-66eb-47b2-992d-48e0a09a1bf6}{696D7867-3C9B-4A35-A571-AC9A39C03D4F}{6a79cdac-f710-4996-842b-fdc33b785a35}{6d010537-9e99-400b-b652-b0d5a5757e5d}{6F9AD55C-1BCE-4A69-939D-1A94CD5E1DB8}{723c5374-2074-48cd-87b0-29f8bc614356}{75BB9DCA-8C61-4530-BAB6-F3FFC2FAB3B2}{787E8797-5B60-4670-A6E1-3A1F42F85BDB}{7DB6B397-D9FC-4FD9-83E1-F095570B43F3}{7F7B3D8C-F4CE-4A1F-8BB4-B7E191D7D3AF}{8663977E-01E4-4F5C-B343-4675834E8A9F}{8C20B4AB-55D8-4752-A30E-D2E59F21BD4C}{8cb29ad2-ca79-46e5-865c-8d56b2bce662}{8E092F32-2256-40F3-881B-553CCE9CA252}{8E782C42-DBA6-42EA-8777-78FC25EBE14A}{92f2db89-80f1-46ad-a83c-e056b10d75b9}{9A9559A7-A442-40AA-9218-DF9D63336F3C}{9CDF856F-42D8-4D42-94FC-C6C984923F96}{A135A71E-164F-49F2-BFA5-5F3DEEC49253}{b021ffcf-c8d8-4b3d-bd24-0841eaa4df1e}{B85586B4-C048-4D01-AF9B-E90C0155C75A}{B941AC3D-C665-4F4D-A182-CA3139AD4B48}{BCB9F6A2-09CF-440E-A6A7-EDC1D50F9921}{BE6FA26E-397F-4462-8B44-35DA526A3F2F}{BF663D28-83EA-48AC-9929-5377CC286C38}{CA641423-6B7E-4BE8-88C4-C746DF4DA3C5}{cf17265b-a9e4-4306-9d4f-e77ff52c3b76}{D2E0014A-4C61-4DEF-B7A4-CD16677961C7}{D43FF045-355C-4E76-B49E-21246D837EB7}{d9f16d8b-81b5-4667-af4d-25365bbf7fc9}{ddc2e15c-8ee0-4cb5-8660-d5f3f5449468}{DFF6E03D-A978-4270-B2D8-0142897A8550}{E3C8490C-7C39-485C-92D0-D4EABDEFBF66}{E496510F-5578-4D99-A2AF-CF5CC818CB9E}{E59567B2-2035-4A62-8B1E-F27A426BBCA9}{E65B6C42-3B93-4279-8117-10172692FE83}{e6d0185e-52da-4ad3-b560-53bbf7210576}{E9138516-84EF-4911-8133-0682F0D7E4AB}{EB8EFC4E-C662-4817-8E48-600B0A9BD1BA}{EFBCA5BB-E701-4421-B719-5D5562D8E825}{f41a56d2-7b52-4d16-812c-a63c6ca9d4c5}{f6ff115d-457d-4522-9bc2-86a49212e7ad}File name without pathdownload.onlinemapfinder[1].xmlfree.onlinemapfinder[1].xmlhttp_onlinemapfinder.dl.myway.com_0.localstoragehttp_onlinemapfinder.dl.myway.com_0.localstorage-journalhttp_onlinemapfinder.dl.tb.ask.com_0.localstoragehttp_onlinemapfinder.dl.tb.ask.com_0.localstorage-journalhttp_www.onlinemapfinder.com_0.localstoragehttp_www.onlinemapfinder.com_0.localstorage-journalonlinemapfinder.dl.myway[1].xmlonlinemapfinder.dl.tb.ask[1].xmlwww.onlinemapfinder[1].xmlHKEY..\..\..\..{RegistryKeys}Software\Microsoft\Internet Explorer\Approved Extensions\{6A79CDAC-F710-4996-842B-FDC33B785A35}Software\Microsoft\Internet Explorer\Approved Extensions\{D9F16D8B-81B5-4667-AF4D-25365BBF7FC9}Software\Microsoft\Internet Explorer\Approved Extensions\{F41A56D2-7B52-4D16-812C-A63C6CA9D4C5}SOFTWARE\Microsoft\Internet Explorer\DOMStorage\free.onlinemapfinder.comSoftware\Microsoft\Internet Explorer\DOMStorage\onlinemapfinder.comSoftware\Microsoft\Internet Explorer\DOMStorage\onlinemapfinder.dl.myway.comSoftware\Microsoft\Internet Explorer\DOMStorage\onlinemapfinder.dl.tb.ask.comSoftware\Microsoft\Internet Explorer\DOMStorage\www.onlinemapfinder.comSOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8663977e-01e4-4f5c-b343-4675834e8a9f}SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8cb29ad2-ca79-46e5-865c-8d56b2bce662}SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9d1a84cb-3e2b-4cce-b7b7-d0214959f011}SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{aed6e119-4324-4e26-956b-6ad9acef9e7e}SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{cb39f555-997f-45cb-8086-e5e6e2866daf}SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{e59567b2-2035-4a62-8b1e-f27a426bbca9}SOFTWARE\Microsoft\Internet Explorer\LowRegistry\DOMStorage\onlinemapfinder.comSOFTWARE\Microsoft\Internet Explorer\LowRegistry\DOMStorage\onlinemapfinder.dl.myway.comSOFTWARE\Microsoft\Internet Explorer\LowRegistry\DOMStorage\onlinemapfinder.dl.tb.ask.comSOFTWARE\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.onlinemapfinder.comSOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION\CrExtP9p.exeSOFTWARE\Microsoft\Internet Explorer\SearchScopes\{41226cbe-8f41-4df3-8d72-1cfbcffcfd0b}SOFTWARE\Microsoft\Internet Explorer\Toolbar\{f41a56d2-7b52-4d16-812c-a63c6ca9d4c5}Software\Microsoft\Internet Explorer\URLSearchHooks\{6d010537-9e99-400b-b652-b0d5a5757e5d}SOFTWARE\Microsoft\Tracing\OnlineMapFinder_RASMANCSSOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{6a79cdac-f710-4996-842b-fdc33b785a35}SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{d9f16d8b-81b5-4667-af4d-25365bbf7fc9}SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{567E880E-2956-4C85-AAD9-815F4DE91B0B}SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{667b70a0-66eb-47b2-992d-48e0a09a1bf6}SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{723c5374-2074-48cd-87b0-29f8bc614356}SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{ddc2e15c-8ee0-4cb5-8660-d5f3f5449468}SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{f6ff115d-457d-4522-9bc2-86a49212e7ad}SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8663977e-01e4-4f5c-b343-4675834e8a9f}SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8cb29ad2-ca79-46e5-865c-8d56b2bce662}SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9d1a84cb-3e2b-4cce-b7b7-d0214959f011}SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{aed6e119-4324-4e26-956b-6ad9acef9e7e}SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{cb39f555-997f-45cb-8086-e5e6e2866daf}SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{e59567b2-2035-4a62-8b1e-f27a426bbca9}SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION\CrExtP9p.exeSOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{41226cbe-8f41-4df3-8d72-1cfbcffcfd0b}SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{f41a56d2-7b52-4d16-812c-a63c6ca9d4c5}SOFTWARE\Wow6432Node\Microsoft\Tracing\OnlineMapFinder_RASMANCSSOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{6a79cdac-f710-4996-842b-fdc33b785a35}SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{d9f16d8b-81b5-4667-af4d-25365bbf7fc9}SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{567E880E-2956-4C85-AAD9-815F4DE91B0B}SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{667b70a0-66eb-47b2-992d-48e0a09a1bf6}SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{723c5374-2074-48cd-87b0-29f8bc614356}SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{ddc2e15c-8ee0-4cb5-8660-d5f3f5449468}SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{f6ff115d-457d-4522-9bc2-86a49212e7ad}HKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}OnlineMapFinder_9pbar Uninstall FirefoxOnlineMapFinder_9pbar Uninstall Internet ExplorerOnlineMapFinderTooltab Uninstall Internet Explorer

Additional Information

The following directories were created:
%LOCALAPPDATA%\OnlineMapFinder_9p%LocalAppData%\OnlineMapFinderTooltab%PROGRAMFILES%\OnlineMapFinder_9p%PROGRAMFILES(x86)%\OnlineMapFinder_9p%USERPROFILE%\AppData\LocalLow\OnlineMapFinder_9p%UserProfile%\Local Settings\Application Data\OnlineMapFinderTooltab
The following cookies were detected:
onlinemapfinder.com
The following URL's were detected:
Support.mindspark.com
Loading...