MyWebFace Internet Explorer Toolbar
What is MyWebFace Internet Explorer Toolbar?
MyWebFace Internet Explorer Toolbar is software application developed by Mindspark Interactive Network. It is most commonly found on computers running Windows 7 with nearly 53.09% of installations running this operating system. MyWebFace Internet Explorer Toolbar's installer is typically 8.00 MB in size and installs around 51 files. The most common release is 11.0.9600.16438 with 0.62% of all installations currently using this version.
MyWebFace Internet Explorer Toolbar is most popular in the United States with 51.42% of installations residing in this country.
MyWebFace Internet Explorer Toolbar adds 3 scheduled tasks to the Windows Task Scheduler launching the program at randomly scheduled times.
About MyWebFace Internet Explorer Toolbar?
Our software is a toolbar/web browser extension that is supported by advertisements and search revenue. It is commonly installed as an optional offer through bundling with third-party software. Upon installation, the toolbar will adjust the home page and new tab pages to an affiliate search portal using a primary search engine to generate shared search revenue. Additionally, it will modify the default search provider.
Multiple virus scanners have detected malware in MyWebFace Internet Explorer Toolbar.
Software Behaviors
- Services:
-
- 5abarsvc.exe runs as a service named 'HappinessInfusion Service' (HappinessInfusion_5wService).
- Scheduled tasks:
-
- AppIntegrator64.exe is scheduled as a task named 'Price Fountain' (runs daily at 4:45 PM).
- 5amedint.exe is scheduled as a task with the class '{CEC2F177-6434-48CF-AEA5-AB1F3AD5E60A}' (runs on registration).
- 5aSrchMn.exe is scheduled as a task named 'MetaCrawler' (runs daily at 15:24).
Startup Entries
- Startup tasks:
-
- AppIntegrator64.exe is automatically launched at startup through a scheduled task named 7.
- 5aSrchMn.exe is automatically launched at startup through a scheduled task named 3.
- 5amedint.exe is automatically launched at startup through a scheduled task named 2.
- 5abrmon.exe is automatically launched at startup through a scheduled task named 4.
- Registry entries:
-
- 5amedint.exe is loaded in the current user (HKCU) registry as an auto-starting executable named 'MapsGalaxy EPM Support' and executes as "C:\Program Files2\MAPSGA~2\bar\1.bin\39medint.exe" T8EPMSUP.DLL,S.
- 5abrmon.exe is loaded in the current user (HKCU) registry as an auto-starting executable named 'ctfmon.exe' and executes as C:\Program Files3\rundll32.exe C:\Program Files3\lni28.dat,FG00.
- 5aSrchMn.exe is loaded in the current user (HKCU) registry as an auto-starting executable named 'Hoolapp Android' and executes as "C:\users\user\appdata\Roaming\HOOLAP~1\Hoolapp.exe" /Minimized.
Software Details
- URL:
- https://support.mindspark.com
- Support:
- –
- Installation path:
- C:\Program Files\MyWebFace_5a\bar\1.bin
- Uninstaller:
- rundll32 "C:\Program Files\MyWebFace_5a\bar\1.bin\5aBar.dll",O mindsparktoolbarkey="MyWebFace_5a" uninstalltype=IE
- Size:
- 8.00 MB
- Language:
- English
MyWebFace Internet Explorer Toolbar Executable Details
- Primary executable:
- 5abar.dll
- Name:
- MyWebFace Internet Explorer Toolbar
- Path:
- C:\Program Files\MyWebFace_5a\bar\1.bin\5abar.dll
- MD5:
- 3f7583821989e49412f4a3531f04744b
- SHA-1:
- –
- SHA-256:
- –
| File Type | Filename | MD5 |
|---|---|---|
|
DLL
|
2e17faf6a07fda5ec2a3583496d6987f | |
|
DLL
|
db8ea557307d3efa59aaac18e4583d70 | |
|
DLL
|
NP5aStub.dll
Malware
|
f384f5a411e33809235a35ba6d4809c9 |
|
DLL
|
e288c47360f5998329a4733324edaa50 | |
|
EXE
|
5aSrchMn.exe
Toolbar
|
fb85f333d10b1475650c4304f99a1ece |
|
DLL
|
5aSrcAs.dll
Malware
|
31f0fd888f41c6e4b05a8a26a6257bbb |
|
DLL
|
587b0eca091249cc5f82567f30273e3c | |
|
DLL
|
c31f5e3fa214e85e948f6c8f357ebe7b | |
|
DLL
|
79d04f2ee9e27ecc28bae511fd10a6f1 | |
|
DLL
|
84d08ff96927b69bb1e7089d994c9619 |