veribrowseww171.dll

The library veribrowseww171.dll has been detected as malware by 46 anti-virus scanners. This file is typically installed with the program VeriBrowse by Revizer Technologies which is a potentially unwanted software program. Accoriding to the detections, it is a variant of Zbot (Zeus), a trojan that attempts to steal confidential information (online credentials, and banking details) from a compromised computer and send it to online criminals via a command-and-control server.
Remove veribrowseww171.dll - Powered by Reason Core Security
MD5:
0e46b02243047d8df590ee8e1aa7aef6

SHA-1:
bb5497f9dc42d724277b89d268cfa495208bc3bf

SHA-256:
09ca23541c2d46912a0bdf9b07e266d8d479f2461047dcd7fbe41b404bb9d88b

Scanner detections:
46 / 68

Status:
File is infected by a Virus

Explanation:
The file is infected by a polymorphic file infector virus.

Analysis date:
12/9/2016 2:27:34 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Win32.Ramnit.N
877

Agnitum Outpost
Win32.Nimnul.Gen.2
7.1.1

AhnLab V3 Security
Win32/Ramnit.G
2014.08.24

Avira AntiVirus
W32/Ramnit.C
7.11.30.172

Antiy Labs AVL
Virus/Win32.Nimnul.a
1.0.0.1

avast!
Win32:RmnDrp
2014.9-140911

AVG
Win32/Zbot.F
2015.0.3355

Baidu Antivirus
Adware.Win32.AddLyrics
4.0.3.14610

Bitdefender
Win32.Ramnit.N
1.0.20.1270

Bkav FE
W32.InjectAdwaredDwnA1.PE
1.3.0.4959

Clam AntiVirus
W32.Ramnit-1
0.98/19303

CMC Antivirus
Virus.Win32.Ramit.1!O
1.1.0.977

Commtouch SDK
W32/Ramnit.E
5.4.1.7

Comodo Security
Virus.Win32.Ramnit.K
19292

Dr.Web
Win32.Rmnet.12
9.0.1.0254

Emsisoft Anti-Malware
Win32.Ramnit.N
8.14.09.11.01

ESET NOD32
Win32/Ramnit.H virus
8.7.0.302.0

Fortinet FortiGate
W32/Ramnit.C
9/11/2014

F-Prot
W32/Ramnit.E
v6.4.6.5.141

F-Secure
Win32.Ramnit.N
11.2014-11-09_5

G Data
Win32.Ramnit
14.9.24

IKARUS anti.virus
PUA.AddLyrics
t3scan.1.7.5.0

Jiangmin
Win32/IRCNite.wi
KV140911

K7 AntiVirus
Virus
13.183.13139

K7 Gateway Antivirus
Virus
13.183.13139

Kaspersky
Virus.Win32.Nimnul
14.0.0.3270

Kingsoft AntiVirus
Win32.Ramnit.lx.30720
331020.49267

Malwarebytes
Virus.Ramnit
v2014.09.11.01

McAfee
W32/Ramnit.a
5600.7011

Microsoft Security Essentials
Virus:Win32/Ramnit.J
1.10904

MicroWorld eScan
Win32.Ramnit.N
15.0.0.762

NANO AntiVirus
Virus.Win32.Nimnul.bqjjnb
0.28.2.61721

nProtect
Virus/W32.SpyEye
14.08.22.01

Panda Antivirus
W32/Cosmu.E
14.09.11.01

Qihoo 360 Security
Virus.Win32.Ramnit.A
1.0.0.1015

Quick Heal
W32.Ramnit.A
9.14.14.00

Reason Heuristics
Threat.Win.Reputation.IMP
14.9.11.1

Rising Antivirus
PE:Win32.Mgr.b!1594784
23.00.65.14909

Sophos
W32/Ramnit-A
4.98

Total Defense
Win32/Ramnit.C
37.0.11139

Trend Micro House Call
PE_RAMNIT.DEN
7.2.254

Trend Micro
PE_RAMNIT.DEN
10.465.11

Vba32 AntiVirus
Virus.Win32.Nimnul.b
3.12.26.3

VIPRE Antivirus
Threat.4732184
32210

ViRobot
Win32.Nimnul.A
2011.4.7.4223

Zillya! Antivirus
Virus.Nimnul.Win32.2
2.0.0.1899

Remove veribrowseww171.dll - Powered by Reason Core Security
File size:
167.5 KB (171,520 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\Program Files\veribrowse-soft\veribrowseww171.dll

File PE Metadata
Compilation timestamp:
5/28/2014 5:50:34 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

CTPH (ssdeep):
3072:jb0YMLPNiBoKEerY2wkWEzpulX1pv8ePn2i1RGix+gTBfCwrKJth:jb0Y2PNiBoKEerYrkWEtuHJn2G5xPTBU

Entry address:
0xE168

Entry point:
55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 72, 71, 00, 00, FF, 75, 10, FF, 75, 0C, FF, 75, 08, E8, 07, 00, 00, 00, 83, C4, 0C, 5D, C2, 0C, 00, 6A, 0C, 68, E8, 3D, 02, 10, E8, 29, 1D, 00, 00, 33, C0, 40, 8B, 75, 0C, 85, F6, 75, 0C, 39, 35, E0, 73, 02, 10, 0F, 84, E4, 00, 00, 00, 83, 65, FC, 00, 83, FE, 01, 74, 05, 83, FE, 02, 75, 35, 8B, 0D, C4, B2, 01, 10, 85, C9, 74, 0C, FF, 75, 10, 56, FF, 75, 08, FF, D1, 89, 45, E4, 85, C0, 0F, 84, B1, 00, 00, 00, FF, 75, 10, 56, FF, 75, 08, E8, 11, FE, FF, FF, 89, 45, E4...
 
[+]

Entropy:
6.2981

Developed / compiled with:
Microsoft Visual C++

Code size:
102 KB (104,448 bytes)

The file veribrowseww171.dll has been discovered within the following program.

VeriBrowse  by Revizer Technologies
VeriBrowse is an web browser advertisement injection extension that is designed with the core purpose of delivering ads to the user's web browser. Ads are in the form of banners (both static and videos) as well as context-hyper links.
81% remove it
 
Powered by Should I Remove It?

Remove veribrowseww171.dll - Powered by Reason Core Security