BetterDeals-11

BetterDeals-11

Known Toolbar

by InstalleRex-WebPick

What is BetterDeals-11?

BetterDeals-11 is software application developed by InstalleRex-WebPick. It is most commonly found on computers running Windows 10 with nearly 45.45% of installations running this operating system. BetterDeals-11's installer is typically 1.00 MB in size and installs around 16 files.

BetterDeals-11 is most popular in the United States with 63.89% of installations residing in this country.

About BetterDeals-11?

Better Deals is a web browser extension developed by JustPlug.It and distributed through the WebPick InstalleRex download and install manager. It is commonly included in adware offer bundles and functions across multiple browsers. The extension consists of a Windows service, an auto-starting component, and a browser toolbar/plugin that inserts advertisements such as banner ads, hyper-text links, and popups. Certain versions may also override existing website advertising and add affiliate codes to links for coupon offers. Upon installation, the program creates a folder with a randomized name in either Program Files or ProgramData, with each included file also assigned a unique, randomized name. The installed Windows Service operates with full administrator rights and communicates with remote servers for updates, while also listening for TCP network requests locally.

Multiple virus scanners have detected malware in BetterDeals-11.

BetterDeals-11-updater.exe (MD5: f7c3467ba717bec2a33fab6206b0d2c0) has been flagged by 16 scanners:
Scanner Software Result
Avira AntiVir Adware/CrossRider.X
Baidu-International Adware.Win32.CrossRider.K
Comodo Security ApplicUnwnt
Dr.Web Trojan.Crossrider.33
ESET-NOD32 a variant of Win32/Toolbar.CrossRider.K
Fortinet FortiGate Riskware/Toolbar_CrossRider
K7 AntiVirus Trojan ( 0048e4111 )
K7GW Trojan ( 0048e4111 )
Malwarebytes PUP.Optional.BetterDeals.A
McAfee Artemis!F7C3467BA717
McAfee-GW-Edition Artemis!F7C3467BA717
Symantec Adware.Crossid
Trend Micro TROJ_GEN.R0CBC0OAN14
VIPRE Antivirus Crossrider (fs)
Bkav FE W32.Cloda6b.Trojan.a007
Kingsoft AntiVirus Win32.Troj.Generic.a.(kcloud)
BetterDeals-11-firefoxinstaller.exe (MD5: 62ce19ec0ba5fe66b523acf961460994) has been flagged by 6 scanners:
Scanner Software Result
Avira AntiVir Adware/CrossRider.W
Baidu-International Adware.Win32.CrossRider.J
ESET-NOD32 a variant of Win32/Toolbar.CrossRider.J
Malwarebytes PUP.Optional.BetterDeals.A
Symantec WS.Reputation.1
VIPRE Antivirus Crossrider (fs)
BetterDeals-11-enabler.exe (MD5: 685fafe25c0c771c8317e871d0e5b38c) has been flagged by 19 scanners:
Scanner Software Result
Avira AntiVir Adware/CrossRider.V
Baidu-International Adware.Win32.CrossRider.K
Comodo Security ApplicUnwnt
Dr.Web Trojan.Crossrider.28
ESET-NOD32 a variant of Win32/Toolbar.CrossRider.K
Fortinet FortiGate Riskware/Toolbar_CrossRider
K7 AntiVirus Trojan ( 0048e4111 )
K7GW Trojan ( 0048e4111 )
Malwarebytes PUP.Optional.BetterDeals.A
McAfee Artemis!685FAFE25C0C
McAfee-GW-Edition Artemis!685FAFE25C0C
NANO AntiVirus Trojan.Win32.Crossrider.cwfmka
Sophos Generic PUA AC
Symantec Adware.Crossid
Trend Micro TROJ_GEN.R0CBC0OAG14
TrendMicro-HouseCall TROJ_GEN.R0CBC0OAG14
VIPRE Antivirus Crossrider (fs)
Bkav FE W32.Cloda6b.Trojan.a007
Kingsoft AntiVirus Win32.Troj.Generic.a.(kcloud)
BetterDeals-11-codedownloader.exe (MD5: 4f2f1158085a6ef16ff64090f03371cf) has been flagged by 27 scanners:
Scanner Software Result
Lavasoft Ad-Aware Adware.Generic.909997
Agnitum Outpost PUA.Toolbar.CrossRider!
Avira AntiVir Adware/CrossRider.U
Baidu-International Adware.Win32.CrossRider.K
Bitdefender Adware.Generic.909997
Comodo Security ApplicUnwnt
Dr.Web Trojan.Crossrider.39
Emsisoft Anti-Malware Adware.Generic.909997 (B)
ESET-NOD32 a variant of Win32/Toolbar.CrossRider.K
Fortinet FortiGate Riskware/Toolbar_CrossRider
F-Secure Adware.Generic.909997
G Data Adware.Generic.909997
K7 AntiVirus Trojan ( 0048e4111 )
K7GW Trojan ( 0048e4111 )
Malwarebytes PUP.Optional.BetterDeals.A
McAfee Artemis!4F2F1158085A
McAfee-GW-Edition Artemis!4F2F1158085A
MicroWorld-eScan Adware.Generic.909997
Qihoo-360 Win32/Virus.Adware.006
Sophos AppRider
Symantec Adware.Crossid
Trend Micro TROJ_GEN.R0CBC0OAN14
TrendMicro-HouseCall TROJ_GEN.R0CBC0OAN14
VIPRE Antivirus Crossrider (fs)
NANO AntiVirus Trojan.Win32.Crossrider.cwfmka
Bkav FE W32.Cloda6b.Trojan.a007
Kingsoft AntiVirus Win32.Troj.Generic.a.(kcloud)
BetterDeals-11-chromeinstaller.exe (MD5: 4c5049d5a43d54c13cea8e96d79f7b10) has been flagged by 5 scanners:
Scanner Software Result
Avira AntiVir Adware/CrossRider.T
Baidu-International Adware.Win32.CrossRider.J
ESET-NOD32 a variant of Win32/Toolbar.CrossRider.J
Malwarebytes PUP.Optional.BetterDeals.A
VIPRE Antivirus Crossrider (fs)

Startup Entries

Startup tasks:
  • BetterDeals-11-updater.exe is automatically launched at startup through a scheduled task named BetterDeals-11-updater.
  • BetterDeals-11-enabler.exe is automatically launched at startup through a scheduled task named BetterDeals-11-enabler.
  • BetterDeals-11-codedownloader.exe is automatically launched at startup through a scheduled task named BetterDeals-11-codedownloader.
  • BetterDeals-11-firefoxinstaller.exe is automatically launched at startup through a scheduled task named BetterDeals-11-firefoxinstaller.
  • BetterDeals-11-chromeinstaller.exe is automatically launched at startup through a scheduled task named BetterDeals-11-chromeinstaller.

Software Details

URL:
Support:
Installation path:
C:\Program Files\BetterDeals-11
Uninstaller:
C:\Program Files\BetterDeals-11\Uninstall.exe /fromcontrolpanel=1
Size:
1.00 MB
Language:
English

BetterDeals-11 Executable Details

Primary executable:
BetterDeals-11-bg.exe
Name:
BetterDeals-11
Path:
C:\Program Files\BetterDeals-11\BetterDeals-11-bg.exe
MD5:
599f2e5b8450383d73280fca37168f31
SHA-1:
SHA-256:
Files installed by BetterDeals-11
File Type Filename MD5
EXE
BetterDeals-11-chromeinstaller.exe
Malware
4c5049d5a43d54c13cea8e96d79f7b10
EXE
BetterDeals-11-buttonutil64.exe
5fd3e451e119f1d10848d354f3af0e4b
EXE
BetterDeals-11-buttonutil.exe
d4947589cad060de53c8250a92780cfa
DLL
BetterDeals-11-bho64.dll
a1227056f3b38e3d123af8f1b00a5c0b
DLL
BetterDeals-11-bho.dll
Malware
060a68d09706b4d6fb9bacc4ae13e1fd
EXE
BetterDeals-11-bg.exe
Malware
599f2e5b8450383d73280fca37168f31