SquirrelWeb
What is SquirrelWeb?
SquirrelWeb is software application developed by Yontoo Technology, Inc.. It is most commonly found on computers running Windows 7 with nearly 64.46% of installations running this operating system. SquirrelWeb's installer is typically 0.98 MB in size and installs around 5 files. The most common release is 2013.11.19.222532 with 80.17% of all installations currently using this version.
SquirrelWeb is most popular in the United States with 21.81% of installations residing in this country.
About SquirrelWeb?
This software provides a web browser extension that offers search hijacking and contextual advertising within the user's web browser. It is able to modify the user's home and search pages in order to monetize search activities and can install a Browser Helper Object (BHO) in Internet Explorer to monitor and track user web browsing activities and display various banner and link-context ads in addition to its search redirection. The suite of browser features offered by the software customizes and enhances a user's interaction with various websites by rendering graphics, text, or other functional or interactive content in the browser. These features include tools and applications for search, text referencing, video, social media, website ratings and reviews, coupons, and comparison shopping for various products and services, including travel and insurance. Additionally, the software may be used remotely to support computing research programs. It is compatible with Internet Explorer, Firefox, Safari, Google, and Chrome browsers and will be automatically enabled upon restart after installation. The software may also automatically download upgrades, enable new features or functionality, and install fixes without additional notice. It is important to note that the software is supported by various types of advertising, including search, banner, text link, transitional, interstitial, and full-page ads. These ads and features may appear on websites using the software, but they are not associated with or endorsed by the underlying websites. Some features and ad placements may contain links to further information or disabling instructions. All software features, content, and advertising may be updated, modified, added, enabled, disabled, or discontinued at any time automatically and without additional notice to the user.
Multiple virus scanners have detected malware in SquirrelWeb.
| Scanner Software | Version | Result |
|---|---|---|
| Agnitum Outpost | 5.5.1.3 | PUA.Kranet! |
| Antiy-AVL | 1.0.0.1 | GrayWare[AdWare:not-a-virus,HEUR]/MSIL.Kranet |
| AVG | 14.0.0.4007 | Squiweb |
| AVware | 1.5.0.16 | Yontoo (fs) |
| Baidu-International | 3.5.1.41473 | Adware.Win32.BrowseFox.BH |
| ESET-NOD32 | 10292 | a variant of Win32/BrowseFox.H |
| G Data | 24 | Win32.Trojan.Agent.4FV73O |
| IKARUS anti.virus | T3.1.7.5.0 | PUA.BrowseFox |
| K7 AntiVirus | 9.183.13125 | Trojan ( 0049c6b61 ) |
| K7GW | 9.183.13125 | Trojan ( 0049c6b61 ) |
| Kaspersky | 12.0.0.1225 | not-a-virus:HEUR:AdWare.MSIL.Kranet.heur |
| Kingsoft AntiVirus | 2013.4.9.267 | Win32.Troj.Generic.a.(kcloud) |
| Malwarebytes | 1.75.0.1 | PUP.Optional.SquirrelWeb.A |
| McAfee | 6.0.4.564 | Artemis!0D8697AC5A6F |
| Panda Antivirus | 10.0.3.5 | Trj/Chgt.B |
| Qihoo-360 | 1.0.0.1015 | Win32/Virus.Adware.e4c |
| Sophos | 4.98.0 | Generic PUA HN |
| Symantec | 20141.1.0.330 | Trojan.ADH.2 |
| TrendMicro-HouseCall | 9.700.0.1001 | Suspicious_GEN.F47V0810 |
| VIPRE Antivirus | 32416 | Yontoo (fs) |
| Scanner Software | Version | Result |
|---|---|---|
| Agnitum Outpost | 7.1.1 | PUA.Agent |
| Antiy-AVL | 0.1.0.1 | GrayWare[AdWare:not-a-virus]/Win32.Agent |
| CAT-QuickHeal | 4.14.12.00 | AdWare.Agent.ahbx (Not a Virus) |
| Comodo Security | 17993 | Application.Win32.Altbrowse.AK |
| Dr.Web | 9.0.0.0112 | Trojan.BPlug.28 |
| ESET-NOD32 | 8.9596 | a variant of Win32/BrowseFox.F |
| Fortinet FortiGate | 4/22/2014 | Adware/Agent |
| IKARUS anti.virus | t3scan.2.2.29 | not-a-virus:AdWare.Win32.Agent |
| Jiangmin | KV140422 | Adware/Agent.jaw |
| K7 AntiVirus | 13.176.11566 | Unwanted-Program |
| K7GW | 13.176.11566 | Unwanted-Program ( 00454f261 ) |
| Kaspersky | 14.0.0.3977 | not-a-virus:AdWare.Win32.Agent |
| Kingsoft AntiVirus | 331020.49267 | Win32.Troj.Agent.ah.(kcloud) |
| Malwarebytes | v2014.04.22.02 | PUP.Optional.Squirrelweb.A |
| McAfee | 5600.7152 | Artemis!D4E754EAB096 |
| McAfee-GW-Edition | 7.7152 | Artemis!D4E754EAB096 |
| NANO AntiVirus | 0.28.0.58720 | Riskware.Win32.Agent.cqvnby |
| Sophos | 4.98 | Generic PUA OJ |
| SUPERAntiSpyware | 10650 | Adware.BrowseFox/Variant |
| TrendMicro-HouseCall | 7.2.112 | TROJ_GEN.F47V0301 |
| Vba32 AntiVirus | 3.12.24.3 | AdWare.Agent |
| AVG | 14.0.0.4007 | Squiweb |
| AVware | 1.5.0.16 | Yontoo (fs) |
| Baidu-International | 3.5.1.41473 | Adware.Win32.BrowseFox.BH |
| G Data | 24 | Win32.Trojan.Agent.4FV73O |
| Panda Antivirus | 10.0.3.5 | Trj/Chgt.B |
| Qihoo-360 | 1.0.0.1015 | Win32/Virus.Adware.e4c |
| Symantec | 20141.1.0.330 | Trojan.ADH.2 |
| VIPRE Antivirus | 32416 | Yontoo (fs) |
Software Behaviors
- Services:
-
- updateSquirrelWeb.exe runs as a service named 'Update SquirrelWeb' (Update SquirrelWeb).
Software Details
- URL:
- https://squirrelweb.org/support
- Support:
- https://mailto:
- Installation path:
- C:\Program Files\SquirrelWeb
- Uninstaller:
- C:\Program Files\SquirrelWeb\SquirrelWebuninstall.exe
- Size:
- 0.98 MB
- Language:
- English
SquirrelWeb Executable Details
- Primary executable:
- SquirrelWebBHO.dll
- Name:
- SquirrelWeb
- Path:
- C:\Program Files\SquirrelWeb\SquirrelWebBHO.dll
- MD5:
- d4e754eab0969b7b13a818ed547fc58e
- SHA-1:
- –
- SHA-256:
- –
| File Type | Filename | MD5 |
|---|---|---|
|
EXE
|
0b86536bba2a922f5f32ad1792d8a03b | |
|
EXE
|
updateSquirrelWeb.exe
Malware
|
0d8697ac5a6fdfd30042dc233d0a4dd9 |
|
DLL
|
SquirrelWebBHO.dll
Malware
|
d4e754eab0969b7b13a818ed547fc58e |
|
EXE
|
a9f6734aa64ad1d88c01936152cc99dd | |
|
EXE
|
12723b165657517ba3774015fd459335 |