What is AdvanceMark?

AdvanceMark is software application developed by Yontoo Technology, Inc.. It is most commonly found on computers running Windows 7 with nearly 52.38% of installations running this operating system. AdvanceMark's installer is typically 2.00 MB in size and installs around 9 files. The most common release is 2014.02.26.045520 with 14.29% of all installations currently using this version.

AdvanceMark is most popular in Italy with 34.15% of installations residing in this country.

About AdvanceMark?

AdvanceMark is an ad-supported web browser extension that may be considered unwanted by some users. It has the capability to display popup and banner ads, as well as modify the user's web browser search and home page settings. This plugin is compatible with Internet Explorer (as a BHO), Chrome (as an extension), and Firefox (as an add-in). Additionally, the program has the potential to monitor user behavior, as outlined in the EULA. Users should carefully review the full End User License Agreement before installing the software.

Multiple virus scanners have detected malware in AdvanceMark.

updateAdvanceMark.exe (MD5: eb56c56ee38e81a6cf47f573ac422ece) has been flagged by 25 scanners:

Scanner Software	Version	Result
Agnitum Outpost	5.5.1.3	Riskware.Agent!
AhnLab-V3	2014.10.15.00	PUP/Win32.Downloader
Antiy-AVL	1.0.0.1	GrayWare[AdWare:not-a-virus,HEUR]/MSIL.Kranet
AVG	14.0.0.4040	Generic.C7B
Avira	7.11.178.60	ADWARE/BrowseFox.Gen7
AVware	1.5.0.21	Yontoo (fs)
Baidu-International	3.5.1.41473	Adware.Win32.BrowseFox.BH
CAT-QuickHeal	14.00	AdWare.MSIL.r3 (Not a Virus)
Comodo Security	19801	ApplicUnwnt
Dr.Web	7.0.10.8210	Trojan.BPlug.250
ESET-NOD32	10562	a variant of Win32/BrowseFox.H
Fortinet FortiGate	5.1.152.0	Adware/Kranet
IKARUS anti.virus	T3.1.7.8.0	PUA.BrowseFox
K7 AntiVirus	9.183.13676	Trojan ( 0049f7ad1 )
K7GW	9.183.13676	Trojan ( 020000001 )
Kaspersky	12.0.0.1225	not-a-virus:HEUR:AdWare.MSIL.Kranet.heur
Kingsoft AntiVirus	2013.4.9.267	Win32.Troj.Generic.a.(kcloud)
Malwarebytes	1.75.0.1	PUP.Optional.AdvanceMark.A
McAfee	6.0.5.614	BrowseFox.c
McAfee-GW-Edition	v2014.2	BehavesLike.Win32.AdwareMBrowse.fh
Qihoo-360	1.0.0.1015	Win32/Virus.Adware.e4c
Sophos	4.98.0	Generic PUA GP
Trend Micro	9.740.0.1012	TROJ_GEN.R0C1C0PJE14
TrendMicro-HouseCall	9.700.0.1001	TROJ_GEN.R0C1C0PJE14
VIPRE Antivirus	33918	Yontoo (fs)

AdvanceMarkBHO.dll (MD5: 172bf64c9057b62e2d7a75508bd3f56d) has been flagged by 32 scanners:

Scanner Software	Version	Result
Agnitum Outpost	7.1.1	PUA.Agent
Avira AntiVir	7.11.145.56	APPL/BrowseFox.Gen2
Antiy-AVL	0.1.0.1	GrayWare[AdWare:not-a-virus]/Win32.Agent
avast!	2014.9-140807	Win32:PUP-gen [PUP]
AVG	2015.0.3390	Agent.W
Baidu-International	4.0.3.1487	Adware.Win32.Agent.AWLP
CAT-QuickHeal	8.14.12.00	AdWare.Agent.r5 (Not a Virus)
Comodo Security	18164	Application.Win32.Altbrowse.AK
Dr.Web	9.0.0.0219	Trojan.BPlug.28
ESET-NOD32	8.9720	a variant of Win32/BrowseFox.F
Fortinet FortiGate	8/7/2014	Adware/Agent
G Data	14.8.24	Win32.Application.BrowseFox
IKARUS anti.virus	t3scan.1.6.1.0	not-a-virus:AdWare.Win32.Agent
Jiangmin	KV140807	Adware/Agent.jaw
K7 AntiVirus	13.176.11873	Unwanted-Program
K7GW	13.176.11873	Unwanted-Program ( 00454f261 )
Kaspersky	14.0.0.3445	not-a-virus:AdWare.Win32.Agent
Kingsoft AntiVirus	331020.49267	Win32.Troj.Agent.ah.(kcloud)
Malwarebytes	v2014.08.07.12	PUP.Optional.AdvanceMark.A
McAfee	5600.7046	Artemis!172BF64C9057
McAfee-GW-Edition	7.7046	Artemis!172BF64C9057
NANO AntiVirus	0.28.0.59492	Riskware.Win32.Agent.cqvnby
Sophos	4.98	Generic PUA GI
SUPERAntiSpyware	10437	Adware.BrowseFox/Variant
TrendMicro-HouseCall	7.2.219	TROJ_GEN.F47V0326
Vba32 AntiVirus	3.12.26.0	AdWare.Agent
VIPRE Antivirus	28590	Yontoo (fs)
AhnLab-V3	2014.10.15.00	PUP/Win32.Downloader
Avira	7.11.178.60	ADWARE/BrowseFox.Gen7
AVware	1.5.0.21	Yontoo (fs)
Qihoo-360	1.0.0.1015	Win32/Virus.Adware.e4c
Trend Micro	9.740.0.1012	TROJ_GEN.R0C1C0PJE14

Software Behaviors

Services:

updateAdvanceMark.exe runs as a service named 'Update AdvanceMark' (Update AdvanceMark).

Software Details

URL:

https://advancemark.info/support

Support:

https://mailto:

Installation path:

C:\Program Files\AdvanceMark

Uninstaller:

C:\Program Files\AdvanceMark\AdvanceMarkuninstall.exe

Size:

2.00 MB

Language:

English

AdvanceMark Executable Details

Primary executable:

AdvanceMark.FirstRun.exe

Name:

AdvanceMark

Path:

C:\Program Files\AdvanceMark\AdvanceMark.FirstRun.exe

MD5:

–

SHA-1:

–

SHA-256:

–

File Type

Filename

MD5

EXE

7za.exe

e92604e043f51c604b6d1ac3bcd3a202

EXE

updateAdvanceMark.exe

Malware

eb56c56ee38e81a6cf47f573ac422ece

EXE

AdvanceMarkUninstall.exe

cfb923a1ab116d84e5757f50a562c1d8

DLL

AdvanceMarkBHO.dll

Malware

172bf64c9057b62e2d7a75508bd3f56d

EXE

AdvanceMarkUn.exe

cc3e54d0e577b8c37aacf88478e82cbb

CRX

dfnjhlanpjogndmmekddbolopgckekpl.crx

5225ac2289d78ebbfa1d3af2afe4e52e

EXE

AdvanceMark.FirstRun.exe

fee2334b9e7c05a2fd7cee42e41cbfb1

DLL

AdvanceMark.BrowserFilter.Helper.dll

a7dc4a11bbd192850cfc33fb43aad698

EXE

AdvanceMarkBrowserFilter.exe

a879c23b3b84bcbf431f4d524d82d14c

File Type	Filename	MD5
EXE	7za.exe	e92604e043f51c604b6d1ac3bcd3a202
EXE	updateAdvanceMark.exe Malware	eb56c56ee38e81a6cf47f573ac422ece
EXE	AdvanceMarkUninstall.exe	cfb923a1ab116d84e5757f50a562c1d8
DLL	AdvanceMarkBHO.dll Malware	172bf64c9057b62e2d7a75508bd3f56d
EXE	AdvanceMarkUn.exe	cc3e54d0e577b8c37aacf88478e82cbb
CRX	dfnjhlanpjogndmmekddbolopgckekpl.crx	5225ac2289d78ebbfa1d3af2afe4e52e
EXE	AdvanceMark.FirstRun.exe	fee2334b9e7c05a2fd7cee42e41cbfb1
DLL	AdvanceMark.BrowserFilter.Helper.dll	a7dc4a11bbd192850cfc33fb43aad698
EXE	AdvanceMarkBrowserFilter.exe	a879c23b3b84bcbf431f4d524d82d14c