crimsolite
What is crimsolite?
crimsolite is software application developed by Yontoo Technology, Inc.. It is most commonly found on computers running Windows 7 with nearly 52.24% of installations running this operating system. crimsolite's installer is typically 2.00 MB in size and installs around 9 files. The most common release is 2014.02.26.051729 with 11.94% of all installations currently using this version.
crimsolite is most popular in the United States with 59.49% of installations residing in this country.
About crimsolite?
crimsolite is an adware application distributed by Yontoo, a subsidiary of Sambreel Holdings located in Carlsbad, CA. It is a rebranded version of several web browser extensions delivered by Yontoo with similar names. The program is typically bundled with other software downloads. Upon installation, crimsolite installs itself as a web browser add-in or extension, depending on the browser being used (Chrome, IE, Firefox). It then injects various forms of advertising into the browser, including inline text, multi-site searching, comparison shopping pop-ups, and numerous banners and pop-ups/pop-unders for additional offers, both standard ads and unwanted software. In addition to displaying advertisements, the adware extension modifies the web browser's settings to facilitate its ad injection offers. It automatically disables the two-second load time in Internet Explorer, without user notification, preventing the browser from warning about the effects of a slower BHO. It also modifies the browser's Instant Search feature and adjusts it so that clicking on a search engine results page link opens the page in a new browser tab. These actions are performed without proper user notification, except for mention in the website's EULA.
Multiple virus scanners have detected malware in crimsolite.
| Scanner Software | Version | Result |
|---|---|---|
| Lavasoft Ad-Aware | 12.0.163.0 | Adware.SwiftBrowse.AA |
| Agnitum Outpost | 5.5.1.3 | Riskware.Agent! |
| Antiy-AVL | 1.0.0.1 | Trojan/Win32.TSGeneric |
| AVG | 14.0.0.3986 | Crimso.E8C |
| Baidu-International | 3.5.1.41473 | Adware.Win32.BrowseFox.bH |
| Bitdefender | 7.2 | Adware.SwiftBrowse.AA |
| CMC Antivirus | 1.1.0.977 | P2P-Worm.Win32.SpyBot!O |
| Emsisoft Anti-Malware | 3.0.0.600 | Adware.SwiftBrowse.AA (B) |
| ESET-NOD32 | 10055 | a variant of Win32/BrowseFox.H |
| Fortinet FortiGate | 5.1.152.0 | Riskware/BrowseFox |
| F-Secure | 11.0.19100.45 | Adware.SwiftBrowse.AA |
| G Data | 24 | Adware.SwiftBrowse.AA |
| IKARUS anti.virus | T3.1.6.1.0 | AdWare.Agent |
| Malwarebytes | 1.75.0.1 | PUP.Optional.Crimsolite.A |
| McAfee | 6.0.4.564 | Artemis!3DF44BF35075 |
| McAfee-GW-Edition | 2013 | Artemis!3DF44BF35075 |
| MicroWorld-eScan | 12.0.250.0 | Adware.SwiftBrowse.AA |
| nProtect | 2014-07-06.01 | Adware.SwiftBrowse.AA |
| Sophos | 4.98.0 | Generic PUA FJ |
| TrendMicro-HouseCall | 9.700.0.1001 | Suspicious_GEN.F47V0621 |
| VIPRE Antivirus | 31042 | Yontoo (fs) |
| Scanner Software | Version | Result |
|---|---|---|
| Antiy-AVL | 2.0.3.7 | AdWare/Win32.Agent |
| Comodo Security | 17740 | Application.Win32.Altbrowse.AK |
| Dr.Web | 9.0.0.063 | Adware.Plugin.100 |
| ESET-NOD32 | 8.9389 | Win32/BrowseFox.D |
| Fortinet FortiGate | 3/4/2014 | Adware/Agent |
| Kaspersky | 14.0.0.4224 | not-a-virus:AdWare.Win32.Agent |
| Kingsoft AntiVirus | 331020.49267 | Win32.Troj.Generic.a.(kcloud) |
| Malwarebytes | v2014.03.04.03 | PUP.Optional.Crimsolite.A |
| NANO AntiVirus | 0.28.0.57630 | Riskware.Win32.Agent.cqycvd |
| Sophos | 4.97 | Generic PUA DA |
| Vba32 AntiVirus | 3.12.24.3 | AdWare.Agent |
| VIPRE Antivirus | 26196 | Adware.Agent |
| Lavasoft Ad-Aware | 12.0.163.0 | Adware.SwiftBrowse.AA |
| Agnitum Outpost | 5.5.1.3 | Riskware.Agent! |
| AVG | 14.0.0.3986 | Crimso.E8C |
| Baidu-International | 3.5.1.41473 | Adware.Win32.BrowseFox.bH |
| Bitdefender | 7.2 | Adware.SwiftBrowse.AA |
| CMC Antivirus | 1.1.0.977 | P2P-Worm.Win32.SpyBot!O |
| Emsisoft Anti-Malware | 3.0.0.600 | Adware.SwiftBrowse.AA (B) |
| F-Secure | 11.0.19100.45 | Adware.SwiftBrowse.AA |
| G Data | 24 | Adware.SwiftBrowse.AA |
| IKARUS anti.virus | T3.1.6.1.0 | AdWare.Agent |
| McAfee | 6.0.4.564 | Artemis!3DF44BF35075 |
| McAfee-GW-Edition | 2013 | Artemis!3DF44BF35075 |
| MicroWorld-eScan | 12.0.250.0 | Adware.SwiftBrowse.AA |
| nProtect | 2014-07-06.01 | Adware.SwiftBrowse.AA |
| TrendMicro-HouseCall | 9.700.0.1001 | Suspicious_GEN.F47V0621 |
Software Behaviors
- Services:
-
- updatecrimsolite.exe runs as a service named 'Update crimsolite' (Update crimsolite).
Software Details
- URL:
- https://crimsolite.co/support
- Support:
- https://mailto:
- Installation path:
- C:\Program Files\crimsolite
- Uninstaller:
- C:\Program Files\crimsolite\crimsoliteuninstall.exe
- Size:
- 2.00 MB
- Language:
- English
crimsolite Executable Details
- Primary executable:
- crimsoliteBHO.dll
- Name:
- crimsolite
- Path:
- C:\Program Files\crimsolite\crimsoliteBHO.dll
- MD5:
- 3b2b48ad60b752cffe49b18c4c407bc8
- SHA-1:
- –
- SHA-256:
- –
| File Type | Filename | MD5 |
|---|---|---|
|
EXE
|
e92604e043f51c604b6d1ac3bcd3a202 | |
|
EXE
|
updatecrimsolite.exe
Malware
|
3df44bf35075be7a1f7d94ff7c23e5cb |
|
EXE
|
2f4883f3f61a16977c66c71b83bce0c4 | |
|
DLL
|
crimsoliteBHO.dll
Malware
|
3b2b48ad60b752cffe49b18c4c407bc8 |
|
EXE
|
a31b6a992db381741f8049260c164d1d | |
|
EXE
|
68f6b7161df4f5ffa3f50c2536b096bd | |
|
CRX
|
75d9030ca59c98c2bf9de8d18ced8b99 | |
|
DLL
|
05aae3bfe7c49e4a416c386f1bd524a4 | |
|
EXE
|
080444b0b40d822cec7270329a6f0116 |