home

infotrigger2bho.dll

Info Trigger

Part of the Yontoo adware component, a web browser plugin that injects unwanted ads in the browser. The module infotrigger2bho.dll by Info Trigger has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. This file is typically installed with the program InfoTrigger by Yontoo Technology, Inc. which is a potentially unwanted software program.
Publisher:
InfoTrigger  (signed by Info Trigger)

Product:
InfoTrigger

Version:
1.0.0.4

MD5:
a696d2b21cf4c9b27e9403f70b764f37

SHA-1:
883496f510d72c58213c686e4141f6639697d605

Scanner detections:
1 / 68

Status:
Adware

Explanation:
Belongs to the Sambreel/Yontoo progam that inserts various forms of advertising in the user's web browser, installed with minimal or no user consent.

Analysis date:
11/30/2024 8:57:16 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Yontoo (M)
17.3.12.6

File size:
244.8 KB (250,664 bytes)

Product version:
1.0.0.4

Copyright:
(c) InfoTrigger. All rights reserved.

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\infotrigger\infotrigger2bho.dll

Digital Signature
Signed by:
Info Trigger

Authority:
VeriSign, Inc.

Valid from:
1/25/2014 1:00:00 AM

Valid to:
1/26/2015 12:59:59 AM

Subject:
CN=Info Trigger, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Info Trigger, L=Santa Monica, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
5F6A954A46A245E397B52A7179C74493

File PE Metadata
Compilation timestamp:
12/1/2014 8:27:27 AM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

Entry address:
0x12854

Entry point:
55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 41, 8D, 00, 00, FF, 75, 10, FF, 75, 0C, FF, 75, 08, E8, 07, 00, 00, 00, 83, C4, 0C, 5D, C2, 0C, 00, 6A, 0C, 68, 90, 30, 03, 10, E8, BD, 01, 00, 00, 33, C0, 40, 8B, 75, 0C, 85, F6, 75, 0C, 39, 35, 44, 78, 03, 10, 0F, 84, E4, 00, 00, 00, 83, 65, FC, 00, 83, FE, 01, 74, 05, 83, FE, 02, 75, 35, 8B, 0D, 1C, A5, 02, 10, 85, C9, 74, 0C, FF, 75, 10, 56, FF, 75, 08, FF, D1, 89, 45, E4, 85, C0, 0F, 84, B1, 00, 00, 00, FF, 75, 10, 56, FF, 75, 08, E8, 11, FE, FF, FF, 89, 45, E4...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
159 KB (162,816 bytes)

The file infotrigger2bho.dll has been discovered within the following program.

InfoTrigger  by Yontoo Technology, Inc.
InfoTrigger is an web browser advertisement extension that delivers ads to the user's web browser. Ads are in the form of traditional banners as well as context-hyper links.
info-trigger.com/support
79% remove it
 
Powered by Should I Remove It?

Remove infotrigger2bho.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.