megabrowsebho.dll

Mega Browse

The module megabrowsebho.dll by Mega Browse has been detected as adware by 21 anti-malware scanners. It is installed within the context of Internet Explore as a BHO (Browser Helper Object) under the name ‘Mega Browse’. This file is typically installed with the program Mega Browse by Yontoo Technology, Inc. which is a potentially unwanted software program. It will plug into the web browser and display context-based advertisements by overwriting existing ads or by inserting new ones on various web pages.
Publisher:
Mega Browse  (signed and verified)

Product:
Mega Browse

Version:
1.0.0.3

MD5:
a98fbab8b37e79eb4ee80f9dba89667e

SHA-1:
5150a3cf5bf87ce2184b8069c48ba2c1a35320c2

SHA-256:
9bba7a3d96153ba435a9703132b6a121cd68f14e7817e406716a7b1334483251

Scanner detections:
21 / 68

Status:
Adware

Explanation:
Injects advertising in the web browser in various formats.

Analysis date:
3/19/2014 4:22:09 AM UTC  (six months ago)

Scan engine
Detection
Engine version

Agnitum Outpost
PUA.Agent
7.1.1

Antiy Labs AVL
GrayWare[AdWare:not-a-virus]/Win32.Agent
0.1.0.1

Comodo Security
Application.Win32.Altbrowse.AK
17902

Dr.Web
Trojan.BPlug.28
9.0.1.067

ESET NOD32
Win32/BrowseFox (variant)
8.9517

Fortinet FortiGate
Adware/Agent
3/13/2014

IKARUS anti.virus
not-a-virus:AdWare.Win32.Agent
t3scan.2.2.29

K7 AntiVirus
Unwanted-Program
13.176.11422

K7 Gateway Antivirus
Unwanted-Program
13.176.11422

Kaspersky
not-a-virus:AdWare.Win32.Agent
14.0.0.4200

Kingsoft AntiVirus
Win32.Troj.Agent.ah.(kcloud)
331020.49267

Malwarebytes
PUP.Optional.MegaBrowse.A
v2014.03.13.04

McAfee
Artemis!A98FBAB8B37E
5600.7192

McAfee Web Gateway
Artemis!A98FBAB8B37E
7.7192

NANO AntiVirus
Riskware.Win32.Agent.cqycvd
0.28.0.58101

Reason Heuristics
Adware.Yontoo.BHO.MegaBrowse.N
14.3.19.0

Sophos
Generic PUA FB
4.98

SUPERAntiSpyware
Adware.BrowseFox/Variant
10719

Trend Micro House Call
TROJ_GEN.F47V0307
7.2.67

Vba32 AntiVirus
AdWare.Agent
3.12.24.3

VIPRE Antivirus
Yontoo
27194

File size:
243.8 KB (249,632 bytes)

Product version:
1.0.0.3

Copyright:
(c) Mega Browse. All rights reserved.

Original file name:
Mega BrowseIEClient.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\mega browse\megabrowsebho.dll

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
1/22/2014 1:00:00 AM

Valid to:
1/23/2015 12:59:59 AM

Subject:
CN=Mega Browse, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Mega Browse, L=San Diego, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
151F3F44EFA5ADB264205FBF9F779B3D

File PE Metadata
Compilation timestamp:
3/7/2014 8:40:15 PM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

CTPH (ssdeep):
3072:HLvOFJPJ/EihAhq+hilsvFoWz+v543+vEIaIrFPBJ9c/l:HLvwhh2q+IW8g8EIR32/l

Entry address:
0x12844

Entry point:
55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 41, 8D, 00, 00, FF, 75, 10, FF, 75, 0C, FF, 75, 08, E8, 07, 00, 00, 00, 83, C4, 0C, 5D, C2, 0C, 00, 6A, 0C, 68, 40, 2D, 03, 10, E8, BD, 01, 00, 00, 33, C0, 40, 8B, 75, 0C, 85, F6, 75, 0C, 39, 35, 24, 68, 03, 10, 0F, 84, E4, 00, 00, 00, 83, 65, FC, 00, 83, FE, 01, 74, 05, 83, FE, 02, 75, 35, 8B, 0D, 9C, A1, 02, 10, 85, C9, 74, 0C, FF, 75, 10, 56, FF, 75, 08, FF, D1, 89, 45, E4, 85, C0, 0F, 84, B1, 00, 00, 00, FF, 75, 10, 56, FF, 75, 08, E8, 11, FE, FF, FF, 89, 45, E4...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
159 KB (162,816 bytes)

Internet Explorer BHO
Display name:
Mega Browse

CLSID:
{4e6cd411-ce62-4584-97ff-6afbcf6900af}


The file megabrowsebho.dll has been discovered within the following program.

Mega Browse  by Yontoo Technology, Inc.
This adware program injects advertisements with its affiliate ad providers in order to serve a number of ad types including banner, inline text links and popups.
megabrowse.biz/support
82% remove it
 
Powered by Should I Remove It?

There are numerous known variations of megabrowsebho.dll by Mega Browse.

22 / 68    (Adware)
megabrowsebho.dll  1.0.0.3  (e408a44bde0f8769f4ec1b5eaf78217d02bd0fce)

21 / 68    (Adware)
megabrowsebho.dll  1.0.0.3  (0ded79247ea04ffb7788056c835dd21f36ff3e96)

21 / 68    (Adware)
megabrowsebho.dll  1.0.0.3  (83d2e38a4f796e848f75cc9c19efbac951ad4507)

0 / 68
megabrowsebho.dll  1.0.0.3  (6e7b0303512ad3d63a146044e641e2146ee0f510)

21 / 68    (Adware)
megabrowsebho.dll  1.0.0.3  (d0526f40dae03dd3ede3c5e2f757064fce3095fd)

24 / 68    (Adware)
megabrowsebho.dll  1.0.0.3  (a8bb98a06e13e3ff2480f996cfb461245b450b8d)

21 / 68    (Adware)
megabrowsebho.dll  1.0.0.3  (f19c78b71c2ec66f2913a95b848a508ea0db3bc8)

21 / 68    (Adware)
megabrowsebho.dll  1.0.0.3  (ce082f374086ede687338277d202b5eb44205a29)

21 / 68    (Adware)
megabrowsebho.dll  1.0.0.3  (7559fe1d82068ad0107b1019378da00f390f7800)

21 / 68    (Adware)
megabrowsebho.dll  1.0.0.3  (00c1f1ae27c2f708704a62eaaa0bd05fd417a812)

21 / 68    (Adware)
megabrowsebho.dll  1.0.0.3  (49b6fe60274c998dba5510ba55dbe0e5710f7fe3)

21 / 68    (Adware)
megabrowsebho.dll  1.0.0.3  (505027386fab97ddbb67555a0dafd67db7d7059c)

0 / 68
megabrowsebho.dll  1.0.0.3  (e546c49412ba55992598e1fcfe90ba917cefdd81)

21 / 68    (Adware)
megabrowsebho.dll  1.0.0.3  (43654db92c73ab0c246a798432a3ffa960fb3b21)

21 / 68    (Adware)
megabrowsebho.dll  1.0.0.3  (b79f51b9f29f41fc49024c888e46b13c27177483)

2 / 68      (Adware)
updatemegabrowse.exe  (eea22ff5420360ab3f4b7b4054ae6e0d092e8ddc)

4 / 68      (Adware)
megabrowsesetup.exe  (1218d55a623772c67947ad7be69582846960d45c)

22 / 68    (Adware)
setup.exe  (bf3f72c86d98cc277cbefbdd47f78f7d7bb17d33)

1 / 68      (Adware)
MegaBrowseBrowserFilter.exe  (8ca5754fc77805af4f0a781743c2bdbbab08024b)

1 / 68      (Adware)
megabrowse.browserfilter.helper.dll  (966997c9efd73e187e1454c644942dcfd801c078)

1 / 68      (Adware)
MegaBrowse.BrowserFilterG.dll  (c1106a62aa211c2411bf7c89ae9634cea3fac5aa)

1 / 68      (Adware)
MegaBrowse.CompatibilityChecker.dll  (7a845e981e5b032208cf10fcb032907d7f04bbde)

1 / 68      (Adware)
MegaBrowse.FFUpdate.dll  (4b231cd467fec51e6de27eea14089f3e08d6b236)

2 / 68      (Adware)
MegaBrowse.FirstRun.exe  (13726052bba9aa8d75752d9db2fa8073a526da16)

1 / 68      (Adware)
utilmegabrowse.exe  (e746c2e4b2991ef7281de471dd55dfdd6ef84bf8)

1 / 68      (Adware)
MegaBrowse.BrowserFilter.dll  (608452d32be24ebb63d41e4fd4f4e526708dad49)

Detection Incidence by Country