GrabRez
Known Adware
What is GrabRez?
GrabRez is software application developed by Yontoo Technology, Inc.. It is most commonly found on computers running Windows 7 with nearly 56.78% of installations running this operating system. GrabRez's installer is typically 1.00 MB in size and installs around 9 files. The most common release is 2014.02.26.051729 with 18.64% of all installations currently using this version.
GrabRez is most popular in the United States with 23.42% of installations residing in this country.
About GrabRez?
GrabRez is a web browser extension designed to display popup and banner ads, as well as modify the user's web browser search and home page settings. It may also monitor user behavior and inject rival advertisements or new ads altogether.
Multiple virus scanners have detected malware in GrabRez.
updateGrabRez.exe (MD5: 758d7c3f7317b284693927dad395d4bc) has been flagged by 30 scanners:
| Scanner Software | Version | Result |
|---|---|---|
| Lavasoft Ad-Aware | 12.0.163.0 | Adware.Agent.NYV |
| Agnitum Outpost | 5.5.1.3 | Riskware.Agent! |
| AhnLab-V3 | 2014.10.21.00 | PUP/Win32.OutBrowse |
| Antiy-AVL | 1.0.0.1 | Trojan/Win32.TSGeneric |
| AVG | 14.0.0.4040 | Generic.D20 |
| Avira | 7.11.179.234 | ADWARE/BrowseFox.Gen7 |
| AVware | 1.5.0.21 | Yontoo (fs) |
| Baidu-International | 3.5.1.41473 | Adware.Win32.BrowseFox.BH |
| Bitdefender | 7.2 | Adware.Agent.NYV |
| Comodo Security | 19854 | UnclassifiedMalware |
| Dr.Web | 7.0.10.8210 | Trojan.BPlug.250 |
| Emsisoft Anti-Malware | 3.0.0.600 | Adware.Agent.NYV (B) |
| ESET-NOD32 | 10593 | a variant of Win32/BrowseFox.H |
| Fortinet FortiGate | 5.1.152.0 | Adware/Kranet |
| F-Prot | 4.7.1.166 | W32/A-db42cb3b!Eldorado |
| F-Secure | 11.0.19100.45 | Adware.Agent.NYV |
| G Data | 24 | Adware.Agent.NYV |
| K7 AntiVirus | 9.184.13741 | Trojan ( 0049f7ad1 ) |
| K7GW | 9.184.13741 | Trojan ( 020000001 ) |
| Malwarebytes | 1.75.0.1 | PUP.Optional.GrabRez.A |
| McAfee | 6.0.5.614 | BrowseFox.c |
| McAfee-GW-Edition | v2014.2 | BehavesLike.Win32.Dropper.fh |
| MicroWorld-eScan | 12.0.250.0 | Adware.Agent.NYV |
| nProtect | 2014-10-19.01 | Adware.Agent.NYV |
| Sophos | 4.98.0 | Generic PUA HM |
| Symantec | 20141.1.0.330 | Trojan.Gen.2 |
| Trend Micro | 9.740.0.1012 | TROJ_GEN.R0C1C0EJJ14 |
| TrendMicro-HouseCall | 9.700.0.1001 | TROJ_GEN.R0C1C0EJJ14 |
| VIPRE Antivirus | 34106 | Yontoo (fs) |
| Zillya | 2.0.0.1960 | Backdoor.PePatch.Win32.39756 |
GrabRezBHO.dll (MD5: ee7885eb233aced5b129a72fa0aeddff) has been flagged by 40 scanners:
| Scanner Software | Version | Result |
|---|---|---|
| Lavasoft Ad-Aware | 805 | Adware.Agent.NYV |
| AhnLab-V3 | 2014.09.20 | PUP/Win32.BrowseFox |
| Antiy-AVL | 1.0.0.1 | GrayWare[AdWare:not-a-virus]/Win32.Agent |
| avast! | 2014.9-141121 | Win32:BrowseFox-AX [PUP] |
| AVG | 2015.0.3283 | BrowseFox.F |
| Avira | 7.11.173.104 | ADWARE/BrowseFox.Gen2 |
| AVware | 1.5.0.16 | Yontoo (fs) |
| Baidu-International | 4.0.3.141121 | Adware.Win32.Agent.AR |
| Bitdefender | 1.0.20.1625 | Adware.Agent.NYV |
| Clam AntiVirus | 0.98/21411 | Win.Adware.Agent-7593 |
| Comodo Security | 19556 | Application.Win32.Altbrowse.AK |
| Dr.Web | 9.0.0.0325 | Trojan.BPlug.28 |
| Emsisoft Anti-Malware | 8.14.11.21.02 | Adware.Agent.NYV |
| ESET-NOD32 | 8.10443 | a variant of Win32/BrowseFox.F |
| F-Prot | v6.4.7.1.166 | W32/BadBHO.AW.gen |
| F-Secure | 11.2014-21-11_6 | Adware.Agent.NYV |
| G Data | 14.11.24 | Adware.Agent.NYV |
| Jiangmin | KV141121 | Adware/Agent.izz |
| K7 AntiVirus | 13.183.13432 | Unwanted-Program |
| K7GW | 13.183.13432 | Unwanted-Program ( 004a8e8b1 ) |
| Kaspersky | 14.0.0.2912 | not-a-virus:AdWare.Win32.Agent |
| Kingsoft AntiVirus | 331020.49267 | Win32.Troj.Agent.ah.(kcloud) |
| Malwarebytes | v2014.11.21.02 | PUP.Optional.GrabRez.A |
| McAfee-GW-Edition | 7.6939 | BehavesLike.Win32.Trojan.dh |
| MicroWorld-eScan | 15.0.0.975 | Adware.Agent.NYV |
| NANO AntiVirus | 0.28.2.62151 | Riskware.Win32.Agent.cuenda |
| nProtect | 14.09.19.01 | Trojan-Clicker/W32.Agent.249624 |
| Panda Antivirus | 14.11.21.02 | Trj/CI.A |
| Qihoo-360 | 1.0.0.1015 | HEUR/Malware.QVM30.Gen |
| SUPERAntiSpyware | 10224 | Adware.BrowseFox/Variant |
| Symantec | 11/21/2014 rev. 6 | Trojan.ADH |
| Tencent | 1.0.0.1 | Win32.Adware.Agent.Anfs |
| VIPRE Antivirus | 33258 | Yontoo (fs) |
| Zillya | 2.0.0.1927 | Adware.Agent.Win32.9046 |
| Agnitum Outpost | 5.5.1.3 | Riskware.Agent! |
| Fortinet FortiGate | 5.1.152.0 | Adware/Kranet |
| McAfee | 6.0.5.614 | BrowseFox.c |
| Sophos | 4.98.0 | Generic PUA HM |
| Trend Micro | 9.740.0.1012 | TROJ_GEN.R0C1C0EJJ14 |
| TrendMicro-HouseCall | 9.700.0.1001 | TROJ_GEN.R0C1C0EJJ14 |
Software Behaviors
- Services:
-
- updateGrabRez.exe runs as a service named 'Update GrabRez' (Update GrabRez).
Software Details
- URL:
- https://grabmyrez.co/support
- Support:
- https://mailto:
- Installation path:
- C:\Program Files\GrabRez
- Uninstaller:
- C:\Program Files\GrabRez\GrabRezuninstall.exe
- Size:
- 1.00 MB
- Language:
- English
GrabRez Executable Details
- Primary executable:
- GrabRez.FirstRun.exe
- Name:
- GrabRez
- Path:
- C:\Program Files\GrabRez\GrabRez.FirstRun.exe
- MD5:
- –
- SHA-1:
- –
- SHA-256:
- –
Files installed by GrabRez
| File Type | Filename | MD5 |
|---|---|---|
|
EXE
|
c3b44da13a8e972809780c2f64c6683a | |
|
EXE
|
updateGrabRez.exe
Malware
|
758d7c3f7317b284693927dad395d4bc |
|
DLL
|
GrabRezBHO.dll
Malware
|
ee7885eb233aced5b129a72fa0aeddff |
|
EXE
|
e01ac2ff775a53375d87cb403c98e50e | |
|
EXE
|
da2744c2157964dace7aec883c9c545e | |
|
CRX
|
2f5889f84c7f5917faa04a3fb7ed1bc7 | |
|
EXE
|
c7f636c05a3aa9e3f1d804355a59c6a1 | |
|
DLL
|
00cd7f83964bffb98748f69fd7900c6b | |
|
EXE
|
637905688583717006fe6facf55a2b4e |