SuddenlyMusic Internet Explorer Toolbar

SuddenlyMusic Internet Explorer Toolbar

Known Toolbar

by Mindspark Interactive Network

What is SuddenlyMusic Internet Explorer Toolbar?

SuddenlyMusic Internet Explorer Toolbar is software application developed by Mindspark Interactive Network. It is most commonly found on computers running Windows 7 with nearly 44.68% of installations running this operating system. SuddenlyMusic Internet Explorer Toolbar's installer is typically 8.00 MB in size and installs around 54 files.

SuddenlyMusic Internet Explorer Toolbar is most popular in the United States with 77.14% of installations residing in this country.

SuddenlyMusic Internet Explorer Toolbar adds 4 scheduled tasks to the Windows Task Scheduler launching the program at randomly scheduled times.

About SuddenlyMusic Internet Explorer Toolbar?

SuddenlyMusic is a web browser toolbar developed by Mindspark that allows users to customize their search and home pages to Ask.com or MyWebSearch.

Multiple virus scanners have detected malware in SuddenlyMusic Internet Explorer Toolbar.

AppIntegrator64.exe (MD5: 143d634f4f93155d3a4d430c2cf60d11) has been flagged by 15 scanners:
Scanner Software Result
AhnLab-V3 PUP/Win32.MyWebSearch
Antiy-AVL RiskWare[WebToolbar:not-a-virus]/Win32.MyWebSearch
avast! Win32:Mindspark-A [PUP]
AVG Zango
Baidu-International Adware.Win32.MyWebSearch.Aki
Fortinet FortiGate Riskware/MyWebSearch
Kaspersky not-a-virus:WebToolbar.Win32.MyWebSearch.si
Malwarebytes PUP.Optional.MindSpark
Panda Antivirus Adware/WebSearch
Qihoo-360 Win32/Virus.WebToolbar.30b
Tencent Win32.Trojan.Falsesign.Dvqb
VIPRE Antivirus MyWebSearch.J (v) (not malicious)
Bkav FE W32.Clodc29.Trojan.ff33
Dr.Web Adware.BGuard.38
ESET-NOD32 Win32/Toolbar.MyWebSearch.W
APPINTEGRATOR.EXE (MD5: b6940fe9d6fc34ef59f1028ae6018fe1) has been flagged by 20 scanners:
Scanner Software Result
AhnLab-V3 PUP/Win32.MyWebSearch
Antiy-AVL RiskWare[WebToolbar:not-a-virus]/Win32.MyWebSearch
avast! Win32:Mindspark-A [PUP]
AVG MyWebSearch
AVware MyWebSearch.J (v)
Baidu-International Adware.Win32.MyWebSearch.am
ESET-NOD32 a variant of Win32/Toolbar.MyWebSearch.AJ
Fortinet FortiGate Riskware/MyWebSearch
G Data Win32.Adware.Mindspark.C
Kaspersky not-a-virus:WebToolbar.Win32.MyWebSearch.si
Kingsoft AntiVirus Win32.Troj.MyWebSearch.si.(kcloud)
Malwarebytes PUP.Optional.MindSpark
Qihoo-360 Win32/Virus.WebToolbar.30b
Tencent Win32.Trojan.Falsesign.Pgcq
TrendMicro-HouseCall Suspicious_GEN.F47V0812
VIPRE Antivirus MyWebSearch.J (v) (not malicious)
Zillya Adware.MyWebSearch.Win32.1392
Panda Antivirus Adware/WebSearch
Bkav FE W32.Clodc29.Trojan.ff33
Dr.Web Adware.BGuard.38
93brmon.exe (MD5: 35d6caaa9e4d82974a74dbdb53801f98) has been flagged by 7 scanners:
Scanner Software Result
Antiy-AVL Trojan/win32.agent.gen
avast! Win32:PUP-gen [PUP]
AVG AdInstaller.FunWeb
Bkav FE W32.Clodc29.Trojan.ff33
Dr.Web Adware.BGuard.38
ESET-NOD32 Win32/Toolbar.MyWebSearch.W
VIPRE Antivirus MyWebSearch.J (v) (not malicious)
NP93Stub.dll (MD5: 20319dc985b2dbf572dfd05014b89e72) has been flagged by 3 scanners:
Scanner Software Result
AVG Zango
ESET-NOD32 Win32/Toolbar.MyWebSearch.T
VIPRE Antivirus MyWebSearch.J (v) (not malicious)
93SrchMn.exe (MD5: 3c93215de9cc97c60b1892ad8dbe4411) has been flagged by 20 scanners:
Scanner Software Result
AhnLab-V3 Trojan/Win32.Buzus
Antiy-AVL RiskWare[WebToolbar:not-a-virus]/Win32.MyWebSearch
avast! Win32:Mindspark-A [PUP]
AVG MyWebSearch
AVware MyWebSearch.J (v)
Baidu-International Adware.Win32.MyWebSearch.abZ
ESET-NOD32 a variant of Win32/Toolbar.MyWebSearch.AJ
Fortinet FortiGate Riskware/MyWebSearch
G Data Win32.Adware.Mindspark.C
Kaspersky not-a-virus:WebToolbar.Win32.MyWebSearch.si
Kingsoft AntiVirus Win32.Troj.MyWebSearch.si.(kcloud)
Malwarebytes PUP.Optional.MindSpark
Qihoo-360 Win32/Virus.WebToolbar.30b
Tencent Win32.Trojan.Falsesign.Lmut
VIPRE Antivirus MyWebSearch.J (v) (not malicious)
Zillya Adware.MyWebSearch.Win32.1351
TrendMicro-HouseCall Suspicious_GEN.F47V0812
Panda Antivirus Adware/WebSearch
Bkav FE W32.Clodc29.Trojan.ff33
Dr.Web Adware.BGuard.38

Software Behaviors

Services:
  • 93barsvc.exe runs as a service named 'InboxNowService' (InboxNow_drService).
Scheduled tasks:
  • AppIntegrator64.exe is scheduled as a task named 'Price Fountain' (runs daily at 4:45 PM).
  • 93barsvc.exe is scheduled as a task named 'IHUninstallTrackingTASK'.
  • 93medint.exe is scheduled as a task with the class '{CEC2F177-6434-48CF-AEA5-AB1F3AD5E60A}' (runs on registration).
  • 93SrchMn.exe is scheduled as a task named 'MetaCrawler' (runs daily at 15:24).

Startup Entries

Startup tasks:
  • AppIntegrator64.exe is automatically launched at startup through a scheduled task named 7.
  • 93SrchMn.exe is automatically launched at startup through a scheduled task named 3.
  • 93medint.exe is automatically launched at startup through a scheduled task named 2.
  • 93brmon.exe is automatically launched at startup through a scheduled task named 4.
  • APPINTEGRATOR.EXE is automatically launched at startup through a scheduled task named OnlineMapFinder AppIntegrator 32-bit_Reg_HKLMWow6432Run.
Registry entries:
  • 93medint.exe is loaded in the current user (HKCU) registry as an auto-starting executable named 'MapsGalaxy EPM Support' and executes as "C:\Program Files2\MAPSGA~2\bar\1.bin\39medint.exe" T8EPMSUP.DLL,S.
  • APPINTEGRATOR.EXE is loaded in the current user (HKCU) registry as an auto-starting executable named 'PowerSuite' and executes as "C:\Program Files1\Uniblue\POWERS~1\launcher.exe" delay 20000 -m.
  • AppIntegrator64.exe is loaded in the current user (HKCU) registry as an auto-starting executable named 'Hoolapp Android' and executes as "C:\users\user\appdata\Roaming\HOOLAP~1\Hoolapp.exe" /Minimized.
  • 93brmon.exe is loaded in the current user (HKCU) registry as an auto-starting executable named 'ctfmon.exe' and executes as C:\Program Files3\rundll32.exe C:\Program Files3\lni28.dat,FG00.
  • 93SrchMn.exe is loaded in the current user (HKCU) registry as an auto-starting executable named 'Hoolapp Android' and executes as "C:\users\user\appdata\Roaming\HOOLAP~1\Hoolapp.exe" /Minimized.

Software Details

URL:
https://support.mindspark.com
Support:
–
Installation path:
C:\Program Files\SuddenlyMusic_93\bar\1.bin
Uninstaller:
rundll32 "C:\Program Files\SuddenlyMusic_93\bar\1.bin\93Bar.dll",O mindsparktoolbarkey="SuddenlyMusic_93" uninstalltype=IE
Size:
8.00 MB
Language:
English

SuddenlyMusic Internet Explorer Toolbar Executable Details

Primary executable:
93bar.dll
Name:
SuddenlyMusic Internet Explorer Toolbar
Path:
C:\Program Files\SuddenlyMusic_93\bar\1.bin\93bar.dll
MD5:
3f7583821989e49412f4a3531f04744b
SHA-1:
–
SHA-256:
–
Files installed by SuddenlyMusic Internet Explorer Toolbar
File Type Filename MD5
DLL
verify.dll
d245830ad93d799bbca6dc055045d8c0
DLL
TOOLBARGUARD64.DLL
7aaf4b9657c26a93da0e6e2d5ba11372
DLL
TOOLBARGUARD.DLL
7dfcf335c9909df7564e1eafa64a7d22
DLL
T8TICKER.DLL
2b2b2fb577949b5480317d93994eb709
DLL
T8RES.DLL
5c79ea01c491913ed477dfda40d7f113
DLL
T8HTML.DLL
0a5cd0107d4ac7beba3bd67b800f59fd
DLL
T8EXTPEX.DLL
7a3fc6154d8a96d625150a28be4befbf
DLL
T8EXTEX.DLL
34a8be864c08c42a7b71ee22d944b8e8
DLL
T8EPMSUP.DLL
b8274b1454a8c3fca77dd48a7a91bf65
DLL
HKFXMGR64.DLL
efb29070e4643c871e2137d9b98079a3