1gbar.dll
MindSpark Toolbar Platform for Internet Explorer and Firefox by Mindspark Interactive Network (Signed)
| Version: | 2, 5, 11, 6 |
| MD5: | 9715669f38751fff6bbe57c02336b04a |
| SHA1: | 3779c6abb0c7aa100cea9e9bc5c602531e48ce1f |
| SHA256: | a32fa915918bfaf59d7985c314950f8248c3cdfb22833951259b9399683d212c |
Warning 4 antivirus scanners has detected malware.
Overview
1gbar.dll is malware that is loaded as dynamic link library that runs in the context of Internet Explorer. This will ad a run once registry key upon installation for all user profiles of the PC that will cause the file to be executed the first time any user logs in. It is installed in Internet Explorer as a Browser Helper Object (BHO) which has full acess to the web browser's behaviors and content. The file is digitally signed by Mindspark Interactive Network which was issued by the VeriSign certificate authority (CA).
Details
| File name: | 1gbar.dll |
| Publisher: | MindSpark |
| Product name: | MindSpark Toolbar Platform for Internet Explorer and Firefox |
| Description: | MindSpark Toolbar Platform |
| Typical file path: | C:\Program Files\inboxace_1g\bar\2.bin\1gbar.dll |
| Original name: | t8Bar.dll |
| File version: | 2, 5, 11, 6 |
| Size: | 687.57 KB (704,072 bytes) |
| Certificate |
| Issued to: | Mindspark Interactive Network |
| Authority (CA): | VeriSign |
| Effective date: | Monday, April 9, 2012 |
| Expiration date: | Wednesday, May 6, 2015 |
| Digital DNA |
| File packed: | No |
| .NET CLR: | No |
More details
Behaviors
Internet Explorer Browser Helper Object
Located in the registry at 'SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects'
- BHO CLSID: {d5a1d22b-9e17-454f-8ecd-83c578fb3983}
Startup files (all users) run once
Runs under the registry key 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce'
- 'MapsGalaxy_39bar Uninstall' → rundll32 C:\Program Files1\39UNIN~1.DLL,O -3
Malware detections
Based on 40+ industry antivirus scanners, 4 of them detected the following malware.
| Antivirus engine | Engine version | Detection |
| avast! |
8.0.1489.320 |
Win32:Mindspark-A [PUP] |
| AVG |
2014.0.3629 |
Zango |
| Trend Micro HouseCall |
9.700.0.1001 |
TROJ_GEN.F47V0515 |
| VIPRE Antivirus |
21232 |
MyWebSearch.J (v) (not malicious) |
Distribution by Windows OS
| OS version | distribution |
| Microsoft Windows XP |
50.00% |
|
| Windows 7 Ultimate |
50.00% |
|
Distribution by country
United States installs about 100.00% of MindSpark Toolbar Platform for Internet Explorer and Firefox.
Distribution by PC manufacturer
| PC Manufacturer | distribution |
| Hewlett-Packard |
100.00% |
|
