OffersWizard
Threat Scorecard
EnigmaSoft Threat Scorecard
EnigmaSoft Threat Scorecards are assessment reports for different malware threats which have been collected and analyzed by our research team. EnigmaSoft Threat Scorecards evaluate and rank threats using several metrics including real-world and potential risk factors, trends, frequency, prevalence, and persistence. EnigmaSoft Threat Scorecards are updated regularly based on our research data and metrics and are useful for a wide range of computer users, from end users seeking solutions to remove malware from their systems to security experts analyzing threats.
EnigmaSoft Threat Scorecards display a variety of useful information, including:
Popularity Rank: The ranking of a particular threat in EnigmaSoft’s Threat Database.
Severity Level: The determined severity level of an object, represented numerically, based on our risk modeling process and research, as explained in our Threat Assessment Criteria.
Infected Computers: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
See also Threat Assessment Criteria.
| Popularity Rank: | 15,247 |
| Threat Level: | 20 % (Normal) |
| Infected Computers: | 42,785 |
| First Seen: | December 6, 2013 |
| Last Seen: | December 2, 2025 |
| OS(es) Affected: | Windows |
OffersWizard is used to generate advertisements revenue. OffersWizard is a Potentially Unwanted Program. Unlike viruses, malware, worms and Trojans, PUPs are not considered a threat and pose a lesser threat to your computer. However, although OffersWizard can be uninstalled as normal and does not have destructive consequences, its effects may be just as disruptive or irritating as many threats. Because of this, PC malware specialists strongly counsel that PC users remove OffersWizard immediately from the affected computer using the assistance of an ethical anti-malware program that is fully up to date.
OffersWizard Uses Its 'Magical Powers' to Favor Its Creators
OffersWizard is designed to generate revenue. There are various strategies in which OffersWizard may be used to make money for a third party at your expense. Below, security researchers have listed the three main ways in which OffersWizard generates revenue:
- OffersWizard delivers advertisements to the victim's computer. OffersWizard is associated with pop-up advertisements, sliding advertisements, banner advertisements, video advertisements and in-text marketing links that cause pop-up windows to appear when the affected computer user passes the mouse cursor over them. These types of marketing materials generate advertisement revenue directly at the expense of affected computer users.
- OffersWizard also causes Web browser redirects. This practice, known as browser hijacking, involves taking over the affected Web browser and redirecting it to determined websites repeatedly. Typically, OffersWizard redirects computer users to websites containing numerous advertisements and sponsored content. This allows marketers to generate revenue from affiliate marketing.
- OffersWizard may also generate revenue through market research. OffersWizard may gather information about your online habits and Web browser settings. This information may be sold to an outsider and may be part of identity theft and other harmful practices.
Do not let marketers generate revenue at your expense! Security researchers strongly recommend that computer users remove OffersWizard immediately from an affected computer. Once OffersWizard has been uninstalled, it is important to verify that OffersWizard has not exposed the affected computer to other potentially unsafe content by scanning the affected computer with a reliable security program.
Aliases
15 security vendors flagged this file as malicious.
| Antivirus Vendor | Detection |
|---|---|
| Sophos | Generic PUA JF |
| Avast | Win32:Amonetize-CW [PUP] |
| Sophos | Mal/Generic-L |
| Kaspersky | Trojan-Downloader.Win32.Agent.aadeh |
| Avast | Win32:Downloader-VLT [Trj] |
| Symantec | PUA.Gen |
| McAfee | PUP-Amonetize!38FA2BAF42C2 |
| AhnLab-V3 | Malware/Win32.Generic |
| Sophos | Generic PUA NB |
| Comodo | Application.Win32.Amonetize.NZ |
| Avast | Win32:Downloader-VLS [Trj] |
| AVG | Generic_r.PM |
| Sophos | Mal/Generic-S |
| Comodo | ApplicUnwnt |
| Kaspersky | Trojan-Downloader.Win32.Agent.hfah |
SpyHunter Detects & Remove OffersWizard
File System Details
| # | File Name | MD5 |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|---|
| 1. | 190.dll | c57f160f4f68b467e8f9d30a06625794 | 498 |
| 2. | netupdsrv.exe | e36f1cdbcfbe9dfff365b0e27232cb47 | 283 |
| 3. | nethtsrv.exe | a36e55b3f9d3320d6f2473d4d6d6183b | 238 |
| 4. | nethfdrv.sys | 86c16406027af7b6bbb676c8038f4e6b | 193 |
| 5. | B9eG190.exe | dec6bf6338138379eac5220d434ae807 | 13 |
| 6. | e6OffersWizard66.exe | 7eb7f61e6f34a9ec18ad568aa1e00076 | 11 |
| 7. | L2h.exe | 6c06ccf468a5b114d5236eee282a391a | 10 |
