RavenBleu
What is RavenBleu?
RavenBleu is software application developed by Pinball Corporation. It is most commonly found on computers running Windows 7 with nearly 74.77% of installations running this operating system. RavenBleu's installer is typically 1.00 MB in size and installs around 4 files. The most common release is 1.0.16.0 with 38.32% of all installations currently using this version.
RavenBleu is most popular in the United States with 11.77% of installations residing in this country.
RavenBleu adds 1 scheduled task to the Windows Task Scheduler launching the program at randomly scheduled times.
About RavenBleu?
RavenBleu is a web browser plugin that is supported by advertisements, which may appear in the form of banner and in-text links. It is available for installation through a variety of monetization platforms. This plugin offers a range of features that allow users to customize their browser settings, including the home page and search preferences.
Multiple virus scanners have detected malware in RavenBleu.
| Scanner Software | Version | Result |
|---|---|---|
| Avira AntiVir | 7.11.75.178 | Adware/Hotbar.A.1221 |
| avast! | 2014.9-130523 | Win32:HotBar-BZ [Adw] |
| Bitdefender | 1.0.20.715 | Application.Generic.494490 |
| CAT-QuickHeal | 5.13.12.00 | AdWare.Hotbar (Not a Virus) |
| Comodo Security | 16142 | UnclassifiedMalware |
| Emsisoft Anti-Malware | 8.13.05.23.03 | Adware.Win32.180Solutions.AMN |
| eSafe | 7.0.17.0 | Win32.Trojan |
| ESET-NOD32 | 7.8290 | probably a variant of Win32/Adware.180Solutions |
| Fortinet FortiGate | 5/23/2013 | W32/SPNR.0BCP13!tr |
| F-Prot | v6.4.7.1.166 | W32/180Solutions.D.gen |
| F-Secure | 11.2013-23-05_5 | Application.Generic.494490 |
| G Data | 13.5.22 | Application.Generic.494490 |
| IKARUS anti.virus | t3scan.2.0.0.0 | not-a-virus:AdWare.Win32.Shopper |
| K7 AntiVirus | 13.166.8621 | Adware |
| McAfee | 5600.7084 | Artemis!A92F3018CC2C |
| McAfee-GW-Edition | 7.7084 | Heuristic.BehavesLike.Win32.Suspicious-BAY.K |
| Microsoft Security Essentials | 1.163.1557.0 | Adware:Win32/Hotbar |
| MicroWorld-eScan | 14.0.0.429 | Application.Generic.494490 |
| Symantec | 5/23/2013 rev. 5 | WS.Reputation |
| Trend Micro | 10.465.23 | TROJ_SPNR.0BCP13 |
| TrendMicro-HouseCall | 7.2.143 | TROJ_SPNR.0BCP13 |
| VIPRE Antivirus | 17402 | Pinball Corporation |
Software Behaviors
- Scheduled tasks:
-
- RavenBleuSA.exe is scheduled as a task named 'RunAsStdUser Task' (runs on registration).
Startup Entries
- Registry entries:
-
- RavenBleuSA.exe is loaded in the current user (HKCU) registry as an auto-starting executable named 'RavenBleuSA' and executes as "C:\Documents and Settings\user\Application Data\RavenBleuSA\bin\1.0.17.0\RavenBleuSA.exe".
Software Details
- URL:
- https://www.ravenbleu.com
- Support:
- https://www.ravenbleu.com/support.html
- Installation path:
- C:\users\user\appdata\local\ravenbleusa\bin\1.0.16.0
- Uninstaller:
- "C:\users\user\appdata\Local\RavenBleuSA\bin\1.0.9.0\RavenBleuUninstaller.exe" Web
- Size:
- 1.00 MB
- Language:
- English
RavenBleu Executable Details
- Primary executable:
- RavenBleuSA.exe
- Name:
- RavenBleu
- Path:
- C:\users\user\appdata\local\ravenbleusa\bin\1.0.16.0\RavenBleuSA.exe
- MD5:
- a92f3018cc2cacd28e0fc2a242d6b2c6
- SHA-1:
- –
- SHA-256:
- –
| File Type | Filename | MD5 |
|---|---|---|
|
EXE
|
a55c8045e7d12f75865afbe63e994ea9 | |
|
EXE
|
8153b3c51c345352746324a640402a3a | |
|
EXE
|
RavenBleuSA.exe
Malware
|
a92f3018cc2cacd28e0fc2a242d6b2c6 |
|
DLL
|
9f7a202d3a3f6092164502fc9646bb51 |