PodoWeb

By GoldSparrow in Browser Hijackers

Threat Scorecard

Ranking:	7,722
Threat Level:	20 % (Normal)
Infected Computers:	2,113

First Seen:	July 30, 2014
Last Seen:	September 14, 2023
OS(es) Affected:	Windows

PodoWeb is an adware program that may generate several pop-up ads that attempt to offer various products and services on the internet. Uses of the PodoWeb ads are known to redirect you to various commercial sites that may be unwanted or have questionable content. PodoWeb ads may be loaded on your screen while you are surfing the internet in different forms, such as pop-unders, pop-ups and banners. The PodoWeb ads could reduce the performance of your web browser in some instances. Loading of the PodoWeb ads may take place from installing random freeware programs or bundled software apps. Eliminating the PodoWeb ads could require that you use an antispyware tool to safely detect and remove all components related to PodoWeb.

Table of Contents

SpyHunter Detects & Remove PodoWeb

File System Details

PodoWeb may create the following file(s):

Expand All | Collapse All

#	File Name	MD5	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	utilPodoWeb.exe	52e4f177d334260a5e273f0cb12d287f	61
Name: utilPodoWeb.exe MD5: 52e4f177d334260a5e273f0cb12d287f Size: 523.5 KB (523504 bytes) Detections: 61 Type: Executable File Path: %PROGRAMFILES%\PodoWeb\bin Group: Malware file Last Updated: October 28, 2014
2.	PodoWeb.BrowserAdapter.exe	78a8e55385d170caab911467166f5959	5
Name: PodoWeb.BrowserAdapter.exe MD5: 78a8e55385d170caab911467166f5959 Size: 96.53 KB (96536 bytes) Detections: 5 Type: Executable File Path: %PROGRAMFILES%\PodoWeb\bin Group: Malware file Last Updated: August 18, 2014
3.	PodoWeb.BrowserAdapter.exe	94cd40d8b0f6b13ab00261d103a39fff	1
Name: PodoWeb.BrowserAdapter.exe MD5: 94cd40d8b0f6b13ab00261d103a39fff Size: 96.53 KB (96536 bytes) Detections: 1 Type: Executable File Path: %PROGRAMFILES%\PodoWeb\bin Group: Malware file Last Updated: August 18, 2014
4.	PodoWeb.FirstRun.exe	c79535227ecd19a5b2a54d03c1d2e5a8	1
Name: PodoWeb.FirstRun.exe MD5: c79535227ecd19a5b2a54d03c1d2e5a8 Size: 1.12 MB (1123608 bytes) Detections: 1 Type: Executable File Path: %PROGRAMFILES(x86)%\PodoWeb Group: Malware file Last Updated: August 18, 2014
5.	PodoWeb.FirstRun.exe	bc7c12d89097b5ab092216c43f9c6882	1
Name: PodoWeb.FirstRun.exe MD5: bc7c12d89097b5ab092216c43f9c6882 Size: 1.12 MB (1123608 bytes) Detections: 1 Type: Executable File Path: %PROGRAMFILES%\PodoWeb Group: Malware file Last Updated: August 18, 2014
6.	utilPodoWeb.exe	d594b4d0dc63d3270c559550ea34eeb8	1
Name: utilPodoWeb.exe MD5: d594b4d0dc63d3270c559550ea34eeb8 Size: 653 KB (653000 bytes) Detections: 1 Type: Executable File Path: %PROGRAMFILES(x86)%\PodoWeb\bin Group: Malware file Last Updated: December 18, 2015
7.	PodoWeb.expext.exe	7a454625fe40ce45879a06be88f0f5f1	1
Name: PodoWeb.expext.exe MD5: 7a454625fe40ce45879a06be88f0f5f1 Size: 115.4 KB (115400 bytes) Detections: 1 Type: Executable File Path: %PROGRAMFILES(x86)%\PodoWeb\bin Group: Malware file Last Updated: December 18, 2015
8.	PodoWeb.PurBrowse64.exe	fd8984accca4d188749baad9e3d32240	1
Name: PodoWeb.PurBrowse64.exe MD5: fd8984accca4d188749baad9e3d32240 Size: 353.48 KB (353480 bytes) Detections: 1 Type: Executable File Path: %PROGRAMFILES(x86)%\PodoWeb\bin Group: Malware file Last Updated: December 18, 2015
9.	PodoWeb.BrowserAdapter.exe	84619d5f34d97331f0fe69ddb51dbb7b	1
Name: PodoWeb.BrowserAdapter.exe MD5: 84619d5f34d97331f0fe69ddb51dbb7b Size: 108.23 KB (108232 bytes) Detections: 1 Type: Executable File Path: %PROGRAMFILES(x86)%\PodoWeb\bin Group: Malware file Last Updated: December 18, 2015

Registry Details

PodoWeb may create the following registry entry or registry entries:

CLSID

{06CDA919-B001-49D5-A555-ADD1AE1BC38E}

{13f75e5b-d92b-4ad2-8c9a-860a287be74c}

{5401490B-25E8-4E30-8AA8-D76E51C2AE99}

{AEDAB5B0-022B-465C-A88B-1E8C2FAAA5A2}

{B3D6B511-4D77-44DB-A459-938D9E6995F7}

HKEY..\..\..\..{RegistryKeys}

Software\Microsoft\Internet Explorer\Approved Extensions\{980B8A8F-EA0B-4C24-A2E9-70635E2502E9}

SOFTWARE\Microsoft\Tracing\PodoWeb_RASAPI32

SOFTWARE\Microsoft\Tracing\PodoWeb_RASMANCS

SOFTWARE\Microsoft\Tracing\updatePodoWeb_RASAPI32

SOFTWARE\Microsoft\Tracing\updatePodoWeb_RASMANCS

SOFTWARE\Microsoft\Tracing\utilPodoWeb_RASAPI32

SOFTWARE\Microsoft\Tracing\utilPodoWeb_RASMANCS

SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{980B8A8F-EA0B-4C24-A2E9-70635E2502E9}

Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{980B8A8F-EA0B-4C24-A2E9-70635E2502E9}

Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{980B8A8F-EA0B-4C24-A2E9-70635E2502E9}

Software\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\{980b8a8f-ea0b-4c24-a2e9-70635e2502e9}

SOFTWARE\PodoWeb

SOFTWARE\Wow6432Node\Microsoft\Tracing\PodoWeb_RASAPI32

SOFTWARE\Wow6432Node\Microsoft\Tracing\PodoWeb_RASMANCS

SOFTWARE\Wow6432Node\Microsoft\Tracing\updatePodoWeb_RASAPI32

SOFTWARE\Wow6432Node\Microsoft\Tracing\updatePodoWeb_RASMANCS

SOFTWARE\Wow6432Node\Microsoft\Tracing\utilPodoWeb_RASAPI32

SOFTWARE\Wow6432Node\Microsoft\Tracing\utilPodoWeb_RASMANCS

SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{13f75e5b-d92b-4ad2-8c9a-860a287be74c}

SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{980B8A8F-EA0B-4C24-A2E9-70635E2502E9}

SOFTWARE\Wow6432Node\PodoWeb

SYSTEM\ControlSet001\services\eventlog\Application\Update PodoWeb

SYSTEM\ControlSet001\services\eventlog\Application\Util PodoWeb

SYSTEM\ControlSet001\services\Update PodoWeb

SYSTEM\ControlSet001\services\Util PodoWeb

SYSTEM\ControlSet002\services\eventlog\Application\Update PodoWeb

SYSTEM\ControlSet002\services\eventlog\Application\Util PodoWeb

SYSTEM\ControlSet002\services\Update PodoWeb

SYSTEM\ControlSet002\services\Util PodoWeb

SYSTEM\CurrentControlSet\services\eventlog\Application\Update PodoWeb

SYSTEM\CurrentControlSet\services\Update PodoWeb

HKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}

PodoWeb

Directories

PodoWeb may create the following directory or directories:

%ALLUSERSPROFILE%\01e58235-010d-43b1-8340-277d43a75321

%ALLUSERSPROFILE%\Application Data\01e58235-010d-43b1-8340-277d43a75321

%PROGRAMFILES%\PodoWeb

%PROGRAMFILES(x86)%\PodoWeb

%Temp%\PodoWeb

Enigma Software Group Prevails Over Malwarebytes at the Ninth Circuit

Search

Change Region

PodoWeb

Threat Scorecard

EnigmaSoft Threat Scorecard

SpyHunter Detects & Remove PodoWeb

File System Details

Registry Details

Directories

Submit Comment

Trending

'YouPorn' Email Scam

Safe Search Eng

Findtheirreport.com

Most Viewed

Is Lookmovie.io Safe?

How To Fix 'Printer Driver is Unavailable' Error

Discord Shows Black Screen when Sharing Screen