home

BrowseFox.Common.dll

Browse Fox

Part of the Yontoo adware component, a web browser plugin that injects unwanted ads in the browser. The module BrowseFox.Common.dll by Browse Fox has been detected as adware by 7 anti-malware scanners. Additionally, the file is typically installed by a number of programs including BrowseFox 3.0.0 by Yontoo Technology, Inc. and Buzzdock by Alactro LLC, both potentially unwanted software. It will plug into the web browser and display context-based advertisements by overwriting existing ads or by inserting new ones on various web pages.
Publisher:
BrowseFox  (signed by Browse Fox)

Description:
BrowseFox Common

Version:
1.0.0.0

MD5:
b8f4258c5477ef8db0f01b7dcd0e016c

SHA-1:
5fa62e15712b6e6c4b009b209c2ed0d0e25d43b5

SHA-256:
097a83ebc83c359e3ccceb2d2d2428a6994e726fdb7ed808abc18eb28b5864ec

Scanner detections:
7 / 68

Status:
Adware

Explanation:
Injects advertising in the web browser in various formats.

Analysis date:
4/18/2024 7:18:12 AM UTC  (today)

Scan engine
Detection
Engine version

AVG
MalSign.Skodna.BrowseFox
2015.0.3600

Dr.Web
Adware.Plugin.100
9.0.1.09

ESET NOD32
MSIL/BrowseFox
8.9265

Reason Heuristics
PUP.BrowseFox.P
14.8.7.21

Sophos
SuperWeb
4.96

Trend Micro House Call
TROJ_GEN.F47V0910
7.2.9

VIPRE Antivirus
Yontoo
25226

File size:
13.8 KB (14,112 bytes)

Product version:
1.0.0.0

Original file name:
BrowseFox.Common.dll

File type:
Dynamic link library (Win32 DLL)

Language:
Language Neutral

Common path:
C:\Program Files\browsefox\browsefox.common.dll

Digital Signature
Signed by:
Browse Fox

Authority:
VeriSign, Inc.

Valid from:
7/30/2013 2:00:00 AM

Valid to:
7/31/2014 1:59:59 AM

Subject:
CN=Browse Fox, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Browse Fox, L=Santa Monica, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
3DA9F504A9E9628C2224F40C9EA90C86

File PE Metadata
Compilation timestamp:
8/20/2013 12:39:10 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
11.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
192:BygvbH2m6KUYgluMdeTXmeN6J6nYe+PjPlrMgV8+vyKr9ZCspE+TMQrZJsi:kgx6dYgluMdeTX+6nYPLKkgeMqv

Entry address:
0x350E

Entry point:
FF, 25, 00, 20, 00, 10, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
5.5 KB (5,632 bytes)

The file BrowseFox.Common.dll has been discovered within the following programs.

BrowseFox 3.0.0  by Yontoo Technology, Inc.
This is a web browser extension and Browser helper Object (for Internet Explorer) that delivers contextual based advertising to the web browser. In addition it will modify the user's browser home and search pages as well as 'New Tab' pages to push advertising and search.
browsefox.com/support
78% remove it
Buzzdock  by Alactro LLC
This is a web browser extension that injects advertising. From the EULA: "Buzzdock is free to download and use. Buzzdock is supported by advertising, and users will see additional ads on websites where Buzzdock features operate.
www.buzzdock.com/faq-support
79% remove it
 
Powered by Should I Remove It?

Remove BrowseFox.Common.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.