webconnect.ieupdate.dll

Super Web LLC

This is the Internet Explorer add-on for the Yontoo Super Web LLC branded web browser plugin (injects banner, text-link and popup ads). The component is responisble for registering the Browser Helper Object into IE and keeping it registered. The module webconnect.ieupdate.dll by Super Web has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Super Web LLC  (signed and verified)

Version:
1.0.5452.17047

MD5:
ad4e173f327f3bbaac32213a8c186a1e

SHA-1:
21eb131fc80c474122f2012c41c1c450f3da59db

SHA-256:
23c1abc4ea5031c24d86278b91034ae9856257e0e935f2079306689cc4e3e558

Scanner detections:
1 / 68

Status:
Adware

Explanation:
Part of the Yontoo distributed ad-supported web browser add-on for Internet Explorer.

Analysis date:
12/24/2024 12:13:36 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Adware.Yontoo (M)
17.3.5.4

File size:
656.3 KB (672,040 bytes)

Product version:
1.0.5452.17047

Original file name:
WebConnect.IEUpdate2014120517.dll

File type:
Dynamic link library (Win32 DLL)

Language:
Language Neutral

Common path:
C:\Program Files\webconnect\bin\plugins\webconnect.ieupdate.dll

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
1/3/2014 8:00:00 AM

Valid to:
1/4/2015 7:59:59 AM

Subject:
CN=Super Web LLC, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Super Web LLC, L=Los Angeles, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
27033EAA9AFF39A69AA31E701AC9D731

File PE Metadata
Compilation timestamp:
12/6/2014 1:28:20 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
6.0

.NET CLR dependent:
Yes

Entry address:
0xA3F5E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.8240

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
648 KB (663,552 bytes)

Remove webconnect.ieupdate.dll - Powered by Reason Core Security