Web Assistant

Known Malware

What is Web Assistant?

Web Assistant is software application developed by Perion Network Ltd.. It is most commonly found on computers running Windows 7 with nearly 81.01% of installations running this operating system. Web Assistant's installer is typically 2.00 MB in size and installs around 9 files. The most common release is 2.0.0.611 with 24.74% of all installations currently using this version.

Web Assistant is most popular in Germany with 16.76% of installations residing in this country.

Web Assistant adds 1 scheduled task to the Windows Task Scheduler launching the program at randomly scheduled times.

About Web Assistant?

Our Web Assistant software seamlessly integrates into popular web browsers such as Internet Explorer and Firefox, enhancing user experience by delivering advertiser-supported search results and addressing DNS errors. By becoming the default search provider, Web Assistant not only modifies search requests but also monitors internet browsing activity to deliver personalized advertising content.

Multiple virus scanners have detected malware in Web Assistant.

Extension64.dll (MD5: 3f9c8f7072794cbbb00fdf9932aa4303) has been flagged by 2 scanners:

Scanner Software	Version	Result
Sophos	4.94.0	BitCocktail
TrendMicro-HouseCall	9.700.0.1001	TROJ_GEN.F47V0905

ExtensionUpdaterService.exe (MD5: d75398987c968dcbabc411e08029e387) has been flagged by 16 scanners:

Scanner Software	Version	Result
Antiy-AVL	2.0.3.7	Trojan/Win32.Agent
ESET-NOD32	7.8752	a variant of Win32/Toolbar.BitCocktail.B
Malwarebytes	v2013.09.27.06	PUP.Optional.SweetPacks.A
Sophos	4.91	BitCocktail
TrendMicro-HouseCall	7.2.270	TROJ_GEN.F47V0315
ViRobot	2011.4.7.4223	Trojan.Win32.A.Agent.188760
Bkav FE	1.3.0.4613	W32.Clodf1a.Trojan.5c3f
K7 AntiVirus	9.175.10750	Unwanted-Program ( 00454f261 )
K7GW	9.175.10750	Unwanted-Program ( 00454f261 )
Kingsoft AntiVirus	2013.4.9.267	Win32.Troj.Generic.a.(kcloud)
McAfee	5.600.0.1067	Artemis!48AB00973A5D
McAfee-GW-Edition	2013	Artemis!48AB00973A5D
AVware	1.5.0.21	BitCocktail
VIPRE Antivirus	39276	BitCocktail (not malicious)
Baidu-International	3.5.1.41473	Adware.Win32.Perion.E
Clam AntiVirus	0.98.4.0	WIN.Trojan.Genome-43

Extension32.dll (MD5: 48ab00973a5d97961a6a728bfe5ae9f2) has been flagged by 13 scanners:

Scanner Software	Version	Result
Bkav FE	1.3.0.4613	W32.Clodf1a.Trojan.5c3f
ESET-NOD32	9256	a variant of Win32/Toolbar.Perion.A
K7 AntiVirus	9.175.10750	Unwanted-Program ( 00454f261 )
K7GW	9.175.10750	Unwanted-Program ( 00454f261 )
Kingsoft AntiVirus	2013.4.9.267	Win32.Troj.Generic.a.(kcloud)
McAfee	5.600.0.1067	Artemis!48AB00973A5D
McAfee-GW-Edition	2013	Artemis!48AB00973A5D
Sophos	4.96.0	BitCocktail
TrendMicro-HouseCall	9.700.0.1001	TROJ_GEN.F47V0830
AVware	1.5.0.21	BitCocktail
VIPRE Antivirus	39276	BitCocktail (not malicious)
Baidu-International	3.5.1.41473	Adware.Win32.Perion.E
Clam AntiVirus	0.98.4.0	WIN.Trojan.Genome-43

DGChrome.exe (MD5: b742c116da61626fdee975b78d3b4a60) has been flagged by 7 scanners:

Scanner Software	Version	Result
AVware	1.5.0.21	BitCocktail
ESET-NOD32	11462	a variant of Win32/Toolbar.Perion.J potentially unwanted
TrendMicro-HouseCall	9.700.0.1001	Suspicious_GEN.F47V0305
VIPRE Antivirus	39276	BitCocktail (not malicious)
Baidu-International	3.5.1.41473	Adware.Win32.Perion.E
Clam AntiVirus	0.98.4.0	WIN.Trojan.Genome-43
Sophos	4.94.0	BitCocktail

source.crx (MD5: 49fd0aa8f267370768ca4776ae927bf8) has been flagged by 5 scanners:

Scanner Software	Version	Result
Baidu-International	3.5.1.41473	Adware.Win32.Perion.E
Clam AntiVirus	0.98.4.0	WIN.Trojan.Genome-43
ESET-NOD32	10396	Win32/Toolbar.Perion.D
Sophos	4.94.0	BitCocktail
TrendMicro-HouseCall	9.700.0.1001	TROJ_GEN.F47V0905

Software Behaviors

Services:: ExtensionUpdaterService.exe runs as a service named 'Web Assistant Updater' (Web Assistant Updater).
Scheduled tasks:: DGChrome.exe is scheduled as a task named 'DGChrome27902 Watcher'.

Startup Entries

Startup tasks:: DGChrome.exe is automatically launched at startup through a scheduled task named DGChrome27750 Watcher.

DGChrome.exe is automatically launched at startup through a scheduled task named DGChrome24523 Watcher.

Software Details

URL:: https://www.incredibar.com
Support:: –
Installation path:: C:\Program Files\Web Assistant\
Uninstaller:: "C:\Program Files\Web Assistant\unins000.exe"
Size:: 2.00 MB
Language:: English

Web Assistant Executable Details

Primary executable:: ExtensionUpdaterService.exe
Name:: Web Assistant
Path:: C:\Program Files\Web Assistant\ExtensionUpdaterService.exe
MD5:: d75398987c968dcbabc411e08029e387
SHA-1:: –
SHA-256:: –

Files installed by Web Assistant

File Type	Filename	MD5
EXE	unins000.exe	02d09d23b1c544e2cc720df710c4845e
DLL	lpk.dll	e2d12c87f244a95d0d655802c9ceff5c
DLL	InstallerHelper.dll	ee5d238e204a74c2cf7d9b3554293189
DLL	Extension64.dll Malware	3f9c8f7072794cbbb00fdf9932aa4303
EXE	ExtensionUpdaterService.exe Malware	d75398987c968dcbabc411e08029e387
DLL	Extension32.dll Malware	48ab00973a5d97961a6a728bfe5ae9f2
EXE	DGChrome.exe Malware	b742c116da61626fdee975b78d3b4a60
CRX	source.crx Malware	49fd0aa8f267370768ca4776ae927bf8
EXE	SevenPDFSplitMerge.exe	1751a076504e61195acc2aecc7a0187c

Repair Web Assistant

Having issues with Web Assistant?

We recommend Fortect System Repair to automatically fix these issues

Download Now

Popularity

26% of users keep Web Assistant installed

Overall Rating

Bad

Known Versions (16)

2.0.0.478: 18.55%
2.0.0.611: 24.74%
2.0.0.604: 6.19%
2.0.0.603: 2.34%
2.0.0.600: 6.67%
2.0.0.573: 6.32%
2.0.0.572: 0.21%
2.0.0.485: 0.27%
2.0.0.474: 4.81%
2.0.0.469: 6.32%
2.0.0.462: 0.41%
2.0.0.459: 5.57%
2.0.0.457: 4.19%
2.0.0.445: 5.57%
2.0.0.441: 1.79%
2.0.0.430: 6.05%

Geography Distribution