Home Malware Programs Browser Hijackers Youndoo.com


Posted: June 17, 2016

Threat Metric

Ranking: 1,884
Threat Level: 5/10
Infected PCs: 125,640
First Seen: June 17, 2016
Last Seen: June 23, 2022
OS(es) Affected: Windows

Youndoo.com is a shady search engine associated with a browser hijacker. It was made by the same people who developed Hohosearch.com. Although the designs of these two platforms are very similar to Google, you should trust neither of them. The primary goal of the administrators of Youndoo.com is to transfer unsuspecting users to partner sites. Therefore, this unreliable platform may display highly manipulated results. Youndoo.com collect most of the entries directly from Google but may include various sponsored links in addition to them. Whenever you type your terms, you may encounter more than five ads in the first page alone. Some of the links that lead to affiliated pages may lack any slogan suggesting so. Thus, without having any clue, you may start going to third-party sites that will get growing in popularity. As you probably suspect, the administrators of Youndoo.com receive financial commissions for their services. There is a security risk in trusting such suspicious search platforms. Google, Bing, and other established engines have various mechanisms to detect and block unsafe domains. Youndoo.com has no such means to prevent the loading of pages that may endanger your system. If you find yourself on a threat-hosting site, it may deploy various cyber threats that may cause substantial damage eventually. You also may end up on fraudulent pages designed to take money from less experienced visitors. As it was already mentioned, Youndoo.com is related to a harmful add-on that may hijack the Web clients of the user. If this parasite enters, Youndoo.com may become the homepage and default search provider of Google Chrome, Mozilla Firefox and Internet Explorer. Browser hijackers are extremely persistent. The one behind Youndoo.com may make it impossible for you to modify your Web clients. Even if you change some of the settings, the next time you go online it may be altered once more to suit the developers of the deceitful search platform. You should be careful when you load freeware not to allow harmful add-ons to enter in addition to the main program. Once the infection takes place, the most reliable way to clean your browsers would be to use dedicated security software

Use SpyHunter to Detect and Remove PC Threats

If you are concerned that malware or PC threats similar to Youndoo.com may have infected your computer, we recommend you start an in-depth system scan with SpyHunter. SpyHunter is an advanced malware protection and remediation application that offers subscribers a comprehensive method for protecting PCs from malware, in addition to providing one-on-one technical support service.

Download SpyHunter's Malware Scanner

Note: SpyHunter's free version is only for malware detection. If SpyHunter detects malware on your PC, you will need to purchase SpyHunter's malware tool to remove the malware threats. Learn more on SpyHunter. If you would like to uninstall SpyHunter for any reason, please follow these uninstall instructions. To learn more about our policies and practices, visit our EULA, Privacy Policy and Threat Assessment Criteria .

Why can't I open any program including SpyHunter? You may have a malware file running in memory that kills any programs that you try to launch on your PC. Tip: Download SpyHunter from a clean computer, copy it to a USB thumb drive, DVD or CD, then install it on the infected PC and run SpyHunter's malware scanner.

Technical Details

Registry Modifications

The following newly produced Registry Values are:

CLSID{6710C780-E20E-4C49-A87D-321850ED3D7C}{ADE6177F-C680-4AFF-A79C-2A7CB41D6E31}Cookiesyoundoo.comDirectory%ProgramFiles%\Ckikution%ProgramFiles%\Coniedjoweent%PROGRAMFILES%\Pedasatugle%ProgramFiles%\Plunasystagedom%ProgramFiles(x86)%\Ckikution%ProgramFiles(x86)%\Coniedjoweent%PROGRAMFILES(x86)%\Pedasatugle%ProgramFiles(x86)%\PlunasystagedomFile name without pathhttp_www.youndoo.com_0.localstoragehttp_www.youndoo.com_0.localstorage-journalHKEY..\..\..\..{RegistryKeys}SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Bazkservse AgentSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Coptyaserent RenewSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GraataindrelSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Ofiiedwerfit ControlsSOFTWARE\Wow6432Node\youndooSoftwareSOFTWARE\youndooSoftware

Additional Information

The following cookies were detected: