Western Web Applications, LLC - 18% Detection Rate *

Did you just find a download or a file on your computer that has a digital signature from Western Web Applications, LLC? Some of the security products refers to the detected files as Injekt (fs) and SearchDonkey (fs). The detection rate for the Western Web Applications, LLC files collected here is 18%. Please read on for more details.

You'll typically see Western Web Applications, LLC when clicking to run the file. The publisher name shows up as the "Verified publisher" in the UAC dialog as the screenshot shows:

Screenshot where Western Web Applications, LLC appears as the verified publisher in the UAC dialog

You can also view the Western Web Applications, LLC certificate with the following procedure:

  1. Open Windows Explorer and locate the Western Web Applications, LLC file
  2. Right-click on the file and select Properties
  3. Click the Digital Signatures tab
  4. Click the View Certificate button

Here's a screenshot of a file signed by Western Web Applications, LLC:

Screenshot of the Western Web Applications, LLC certificate

As you can see in the screencap above, the Windows OS reports that "This digital signature is OK". This means that the file has been published by Western Web Applications, LLC and that the file has not been tampered with.

If you click the View Certificate button shown in the screenshot above, you can examine all the details of the certificate, such as when it was issued, who issued the certificate, how long it is valid, and so on. You can also see the address for Western Web Applications, LLC, such as the street name, city and country.

COMODO Code Signing CA 2 and VeriSign Class 3 Code Signing 2010 CA has issued the Western Web Applications, LLC certificates. You can also examine the details of the issuer by clicking the View Certificate button shown in the screenshot above.

Western Web Applications, LLC Files

These are the Western Web Applications, LLC files I have gathered, thanks to the FreeFixer users.

Detection RatioFile Name
1/49SafeMonitorService.exe
1/50safemonitorservice.exe
5/53kdbwtio.exe
1/49Uninstall.exe
22/56Setup.exe
27/55Setup.exe

Scanner and Detection Names

Here's the detection names for the Western Web Applications, LLC files. I have grouped the detection names by each scanner engine. Thanks to VirusTotal for the scan results.

ScannerDetection Names
AVGGeneric.3F7
AVwareInjekt (fs)
AegisLabWebtoolbar.W32.Agent!c
AgnitumRiskware.Agent!
Antiy-AVLRiskWare[WebToolbar]/Win32.Agent.avl, GrayWare[Downloader:not-a-virus]/Win32.Adload.gen
AvastWin32:BHO-AMO [PUP]
AviraPUA/UnfriendT.A
Baidu-InternationalAdware.Win32.PullUpdate.west
BkavW32.HfsAdware.683A
CAT-QuickHealPUA.Conduitltd.Gen
DrWebTrojan.Yontoo.2143
ESET-NOD32a variant of MSIL/Adware.PullUpdate.E, a variant of Win32/ExFriendAlert.B potentially unwanted
FortinetRiskware/ExFriendAlert
GDataWin32.Adware.Conduit.B
IkarusAdWare.Win32.ExFriendAlert, PUA.ExFriendAlert
K7AntiVirusTrojan ( 004b61a91 )
K7GWTrojan ( 004b61a91 )
Kasperskynot-a-virus:WebToolbar.Win32.Agent.avl
KingsoftVIRUS_UNKNOWN
MalwarebytesPUP.Optional.JewelQuest.A, PUP.Optional.SafeMonitor.A, PUP.Optional.BrowseFox
McAfeeArtemis!4FF105CBBA97, Artemis!EED5F672387B
McAfee-GW-EditionArtemis!PUP, BehavesLike.Win32.Tool.tc
NANO-AntivirusTrojan.Win32.Plugin.cummme
PandaTrj/CI.A
RisingPE:Malware.Generic/QRS!1.9E2D [F]
SophosGeneric PUA IH (PUA)
SymantecSuspicious.Cloud.9
VIPRESearchDonkey (fs), Injekt (fs)
ZillyaAdware.Agent.Win32.41549, Adware.Agent.Win32.66548

* How the Detection Percentage is Calculated

The detection percentage is based on that I have gathered 312 scan results for the Western Web Applications, LLC files. 57 of these scan results came up with some sort of detection. If you like, you can view the full details of the scan results by examining the files listed above.

Analysis Details

The analysis has been done on certificates with the following serial numbers:

Comments

No comments posted yet.

Leave a reply