1. I came across this spammy Google Doc@

2. Fake download location was detected:

• fwt = forward to?
• k = keyword

3.  Whatever, I got the said exe file (sha256, 52474c7f1141ed71ebbd5acbd1e6894ef334834a68249b3f06fab84010b4bea0) from

Seems that the exe is the sister application (variant) of FileFinder@ http:// filesfinder. net// FileSearch/ MegaSearch

4. Test:

1) Run: what was it preparing

2) misleading info was found - what's this Webitar Production Inc.?

3) (Downloading the required installation files...)

4) Got FileFinder installed.

Express Files, is that you?

Then, will Norton Security take care of such an risky download/ PUP? Let's wait and see...

1) File Insight (NS, v22.6.0.142)

2) On-demand Scan found nothing.

3) Update NS...

4) the system was armed to teeth by enabling the default options, from Identify Safe to Safe Web (Search - without the improved yet unwelcome Ask[dot]com based search engine provider) and Security Toolbar.

5) accessed dl2. files-finder. biz without any problem.

6) download was completed while NS was running.

7) Applied the downloaded protection updates for NS two times (128MB+; 52MB+) > restart Windows 7.

8) there was an ERROR while downloading FileFinder's install files.

So far.... so good.

Give Norton Security a try TODAY