5amedint.exe
MindSpark Toolbar Platform for Internet Explorer and Firefox by Mindspark Interactive Network (Signed)
| Version: | 1, 0, 1, 0 |
| MD5: | 653d0282ab8f798bc435f9c0fbbb14de |
| SHA1: | e96a81614dec84d08db68394ecc6e59a3e9975e6 |
| SHA256: | cdae650807e4b061d83bc555393e66395160d0c5b9830f75a4d213ae8ccdff1e |
Warning 5 antivirus scanners has detected malware.
What is 5amedint.exe?
Installs a MyWebSearch Mindspring Toolbar and Search Assistant in your web browser which monitors your search habits and redirects advertisements and search behaviors.
About 5amedint.exe (from Mindspark Interactive Network)
“The myWebFace Toolbar enables users to access myWebFace, a cool tool to create their online cartoon face by choosing from a huge selection of facial features and characteristics, looks and styles, as ”
Overview
5amedint.exe is malware that executes as a process with the local user's privileges. The file is digitally signed by Mindspark Interactive Network. This particular version is usually found on Windows 7 Ultimate N (6.1.7601.65536).
Details
| File name: | 5amedint.exe |
| Publisher: | MindSpark |
| Product name: | MindSpark Toolbar Platform for Internet Explorer and Firefox |
| Description: | Run a MindSpark DLL as an App |
| Typical file path: | C:\Program Files\MyWebFace_5a\bar\1.bin\5amedint.exe |
| Original name: | t8MedInt.exe |
| File version: | 1, 0, 1, 0 |
| Product version: | 2, 3, 0, 0 |
| Size: | 21.55 KB (22,072 bytes) |
| Certificate |
| Issued to: | Mindspark Interactive Network |
| Digital DNA |
| PE subsystem: | Windows GUI |
| File packed: | No |
| .NET CLR: | No |
More details
Malware detections
Based on 40+ industry antivirus scanners, 5 of them detected the following malware.
| Antivirus engine | Engine version | Detection |
| avast! |
6.0.1289.0 |
Win32:FunWeb-K [PUP] |
| AVG |
2014.0.3629 |
AdInstaller.FunWeb |
| Clam AntiVirus |
0.97.3.0 |
Adware.MyWebSearch-18 |
| Norman |
6.08.03 |
W32/MyWebSearch.BGW |
| VIPRE Antivirus |
11858 |
MyWebSearch.J (v) (not malicious) |
Resource utilization
(Note: statistics below are averages based on a minimum sample size of 200 unique participants)
Averages
| CPU |
| Total CPU: | 0.00028974% | |
| Kernel CPU: | 0.00025111% | |
| User CPU: | 0.00003863% | |
| Kernel CPU time: | 130 ms/min | |
| CPU cycles: | 12,658/sec | |
| Memory |
| Private memory: | 2.77 MB | |
| Private (maximum): | 5.84 MB | |
| Private (minimum): | 5.84 MB | |
| Non-paged memory: | 2.77 MB | |
| Virtual memory: | 70.79 MB | |
| Virtual memory (peak): | 75.68 MB | |
| Working set: | 5.43 MB | |
| Working set (peak): | 9.76 MB | |
| Page faults: | 20,768/min | |
| I/O |
| I/O read transfer: | 400 Bytes/sec | |
| I/O read operations: | 1/sec | |
| I/O write transfer: | 131 Bytes/sec | |
| I/O write operations: | 1/sec | |
| I/O other transfer: | 16 Bytes/sec | |
| I/O other operations: | 2/sec | |
| Resource allocations |
| Threads: | 7 | |
| Handles: | 348 | |
| GUI GDI count: | 9 | |
| GUI GDI peak: | 10 | |
| GUI USER count: | 6 | |
| GUI USER peak: | 6 | |
Process properties
| Integrety level: | Medium |
| Platform: | 32-bit |
| Command line: | C:\progra~1\mywebf~2\bar\1.bin\5amedint.exe C:\progra~1\mywebf~2\bar\1.bin\5ascript.dll,#5 weatherwidgetmultiplebutton |
| Owner: | User |
| Parent process: | iexplore.exe (by Microsoft) |
Threads
Averages
| 5amedint.exe (main module) |
| Total CPU: | 0.00017402% | |
| Kernel CPU: | 0.00013535% | |
| User CPU: | 0.00003867% | |
| CPU cycles: | 7,314/sec | |
| Memory: | 20 KB | |
| 5afeedmg.dll (PRODUCTVERS_NAME by COMPANYVERS_NAME) |
| Total CPU: | 0.00011602% | |
| Kernel CPU: | 0.00011602% | |
| User CPU: | 0.00000000% | |
| CPU cycles: | 2,262/sec | |
| Memory: | 88 KB | |
Common loaded modules
These are modules that are typiclaly loaded within the context of this process.
Distribution by Windows OS
| OS version | distribution |
| Windows 7 Ultimate N |
100.00% |
|
