Should I block it?
Yes, 98% block recommendation.
Possible reasons:
Multiple malware detections
Performance resource utilization
Additional versions
(Note, Innovative Apps publishes each variation of this file with the same version, but the hashes are unique.)
Relationships
Supreme Savings.dll
Supreme Savings by Innovative Apps (Signed)
Version: | 1.1.153.44 |
MD5: | 3817af959d89cd3e29050f2ddc9dc5d6 |
SHA1: | 3ff119e0d603660a5636a5023e7cd8faaa4bf9ea |
SHA256: | a4cf821a66f1806aedd427f3ebc715cdb66edca8226774b51d64e36d42246b2e |
Warning 7 antivirus scanners has detected malware.
Overview
supreme savings.dll is malware that is loaded as dynamic link library that runs in the context of Internet Explorer. It is installed in Internet Explorer as a Browser Helper Object (BHO) which has full acess to the web browser's behaviors and content. This is typically installed with the program Supreme Savings published by 215 Apps and is most likely removed by most users once installed (82% removed). The file is digitally signed by Innovative Apps which was issued by the Thawte certificate authority (CA).
Details
File name: | supreme savings.dll |
Publisher: | 215 Apps |
Product name: | Supreme Savings |
Description: | Supreme Savings BHO |
Typical file path: | C:\Program Files\supreme savings\supreme savings.dll |
File version: | 1.1.153.44 |
Size: | 687.88 KB (704,392 bytes) |
Certificate |
Issued to: | Innovative Apps |
Authority (CA): | Thawte |
Effective date: | Tuesday, January 8, 2013 |
Expiration date: | Thursday, January 9, 2014 |
Digital DNA |
File packed: | No |
.NET CLR: | No |
More details
Programs
The following program will install this file
Supreme Savings by 50onRed is a web browser plugin that displays coupon deals and other advertisements when users visit various online shopping sites. When a user visits an online shopping site and the program has a pre-arranged affiliate relationship with a similar merchant it will alert the user that other deals or prices exist, or in many cases just shows adverts. It injects ads and affiliate codes in product links directly by modify...
Behaviors
Internet Explorer Browser Helper Object
Located in the registry at 'SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects'
- BHO CLSID: {11111111-1111-1111-1111-110111991162}
Malware detections
Based on 40+ industry antivirus scanners, 7 of them detected the following malware.
Antivirus engine | Engine version | Detection |
avast! |
8.0.1489.320 |
Win32:Installer-M [Adw] |
Emsisoft Anti-Malware |
3.0.0.569 |
Riskware.Win32.Toolbar.CrossRider.AMN (A) |
ESET NOD32 |
7.9062 |
a variant of Win32/Toolbar.CrossRider.H |
Ikarus |
T3.1.5.6.0 |
AdWare.Win32.CouponCompanion |
Kingsoft |
2013.4.9.267 |
Win32.Troj.Generic.a.(kcloud) |
Sophos |
4.94.0 |
AppRider |
VIPRE Antivirus |
15926 |
GamePlayLabs (v) |
Distribution by Windows OS
OS version | distribution |
Windows 7 Ultimate |
50.00% |
|
Windows 7 Home Premium |
25.00% |
|
Windows 8 Pro |
25.00% |
|
Distribution by country
United States installs about 75.00% of Supreme Savings.
Distribution by PC manufacturer
PC Manufacturer | distribution |
Dell |
33.33% |
|
Hewlett-Packard |
33.33% |
|
ASUS |
33.33% |
|