5zbrmon.exe
VER_PRODUCT_NAME by Mindspark Interactive Network (Signed)
| Version: | 1,0,0,1 |
| MD5: | 35d6caaa9e4d82974a74dbdb53801f98 |
| SHA1: | 0f78fe90af015b0a511ede007bd1791a341e891e |
| SHA256: | 5418b7bb40b097da6370ada1194f8b2d2d3eefa3ca36a6eb31d39df7791a25a3 |
Warning 5 antivirus scanners has detected malware.
What is 5zbrmon.exe?
Installs a MyWebSearch Mindspring Toolbar and Search Assistant in your web browser which monitors your search habits and redirects advertisements and search behaviors.
About 5zbrmon.exe (from Mindspark Interactive Network)
“The Toolbar installs into your Internet browser and allows you to search the Internet with MyWebSearch, a known adware type program that changes and redircts all of your search results as well as DNS ”
Details
| File name: | 5zbrmon.exe |
| Publisher: | VER_COMPANY_NAME |
| Product name: | VER_PRODUCT_NAME |
| Description: | VER_DESCRIPTION |
| Typical file path: | C:\Program Files\couponxplorer_5z\bar\1.bin\5zbrmon.exe |
| Original name: | VER_EXE_FILENAME.exe |
| File version: | 1,0,0,1 |
| Product version: | 2,3,0,0 |
| Size: | 29.39 KB (30,096 bytes) |
| Certificate |
| Issued to: | Mindspark Interactive Network |
| Digital DNA |
| File packed: | No |
| .NET CLR: | No |
More details
Programs
The following programs will install this file
|
Mindspark Interactive Network |
|
Installs an Ask.com toolbar in Internet Explorer as a Browser Helper Object. According to the EULA (see below) as well as the behavior of the software, this toolbar will install search functionality in IE by modifying the default search, address bar and redirect queries. In addition it will change the user's home page and new tabs page to home.tb.ask.com.
The toolbar uses the Price Finder application from Pronto, LLC. From the Privac...
|
Mindspark Interactive Network |
|
WeatherBlink Internet Explorer Toolbar is a web browser extension that changes the browsers search and home pages as well as delivers. In order to provide search advertising revenue, the software is designed not only to modify the search provider but to protect it so that it remains the default browser search engine. It is typically installed via a bundled offer within a third-party software distribution. As for distribution, the toolb...
|
Mindspark Interactive Network |
|
SafePCRepair Internet Explorer Toolbar is a web browser extension that changes the browsers search and home pages as well as delivers. In order to provide search advertising revenue, the software is designed not only to modify the search provider but to protect it so that it remains the default browser search engine. It is typically installed via a bundled offer within a third-party software distribution. As for distribution, the toolb...
|
Mindspark Interactive Network |
|
Functionality of the toolbar includes:
- Changing the web browser's default home page to MyWebSearch.com.
- Changing the browser's search provider, built-in search box to MyWebSearch.com.
- Ability to modify the 'new tab' functionality to launch the modified search portal page.
- Adds an alternative error page, DNS error and 'page not' found functionality.
- Adds additional functionality that is designed to protect the search and h...
|
Mindspark Interactive Network |
|
FromDocToPDF Firefox Toolbar is a web browser toolbar and extension that modifies the browsers search and home pages as well as delivers contextual based advertising. In order to provide search advertising revenue, the software is designed not only to modify the search provider but to protect it so that it remains the default browser search engine. It is typically installed via a co-bundled offer within a third-party software distribut...
|
Mindspark Interactive Network |
|
FromDocToPDF Internet Explorer Toolbar is a web browser extension that changes the browsers search and home pages as well as delivers. In order to provide search advertising revenue, the software is designed not only to modify the search provider but to protect it so that it remains the default browser search engine. It is typically installed via a bundled offer within a third-party software distribution. As for distribution, the toolb...
|
Mindspark Interactive Network |
|
Installs a Mindspark toolbar in your Web browser that collects and stores information about your web browsing habits and sends this information to Mindspark so they can suggest services or provide ads via the toolbar.
|
Mindspark Interactive Network |
|
Installs a Mindspark toolbar in your Web browser that collects and stores information about your web browsing habits and sends this information to Mindspark so they can suggest services or provide ads via the toolbar.
|
Mindspark Interactive Network |
|
FilmFanatic Firefox Toolbar is a web browser extension that changes the browsers search and home pages as well as delivers. In order to provide search advertising revenue, the software is designed not only to modify the search provider but to protect it so that it remains the default browser search engine. It is typically installed via a bundled offer within a third-party software distribution. As for distribution, the toolbar is typic...
|
Mindspark Interactive Network |
|
ReadingFanatic Internet Explorer Toolbar is a web browser extension that changes the browsers search and home pages as well as delivers. In order to provide search advertising revenue, the software is designed not only to modify the search provider but to protect it so that it remains the default browser search engine. It is typically installed via a bundled offer within a third-party software distribution. As for distribution, the too...
|
Mindspark Interactive Network |
|
ReadingFanatic Firefox Toolbar is a web browser extension that changes the browsers search and home pages as well as delivers. In order to provide search advertising revenue, the software is designed not only to modify the search provider but to protect it so that it remains the default browser search engine. It is typically installed via a bundled offer within a third-party software distribution. As for distribution, the toolbar is ty...
|
Mindspark Interactive Network |
|
MapsGalaxy Firefox Toolbar installs is a web browser extension and allows provides users the means to search the Internet with MyWebSearch, a potentially unwanted program that changes and redircts all of your search results as well as DNS errors, and modifies your home page to mywebsearch.com or some other webpage. MyWebSearch automatically becomes your default search service which hijacks all your search requests as well as tracks your...
|
Mindspark Interactive Network |
|
MapsGalaxy Internet Explorer Toolbar installs is a web browser extension and allows provides users the means to search the Internet with MyWebSearch, a potentially unwanted program that changes and redircts all of your search results as well as DNS errors, and modifies your home page to mywebsearch.com or some other webpage. MyWebSearch automatically becomes your default search service which hijacks all your search requests as well as t...
|
Mindspark Interactive Network |
|
Functionality of the toolbar includes:
- Changing the web browser's default home page to MyWebSearch.com.
- Changing the browser's search provider, built-in search box to MyWebSearch.com.
- Ability to modify the 'new tab' functionality to launch the modified search portal page.
- Adds an alternative error page, DNS error and 'page not' found functionality.
- Adds additional functionality that is designed to protect the search and h...
|
Mindspark Interactive Network |
|
RadioRage Internet Explorer Toolbar is a web browser extension that changes the browsers search and home pages as well as delivers. In order to provide search advertising revenue, the software is designed not only to modify the search provider but to protect it so that it remains the default browser search engine. It is typically installed via a bundled offer within a third-party software distribution. As for distribution, the toolbar ...
|
Mindspark Interactive Network |
|
This is a web browser extension/toolbar that will modify the user's home page and search provider to Ask.com.
|
Mindspark Interactive Network |
|
This toolbar/web browser extension is ad/search-supported that is typically installed as an optional offer, users generally have this bundled with 3rd party software. During setup, this toolbar will modify the home page and new tab pages to an affiliate search portal using a primary search engine in order to collect shared search revenue. It will also modify the default search provider as well.
|
Mindspark Interactive Network |
|
Installs a potentailly unwanted Ask.com powered toolbr - "As part of the download process for the Toolbar, you may be given the option to reset your homepage and/or reset your new tab page to an Ask® home page and new tab product. This provides relevant links and results when you make a search request in your browser address bar or if your browser address (DNS) request is invalid, misspelled or incorrectly formatted. This is a search bo...
|
Mindspark Interactive Network |
|
FindMeFreebies is a Mindspark web browser toolbar that is designed to modify the users search and home pages to Ask.com (or MyWebSearch).
|
Mindspark Interactive Network |
|
HeroicPlay is a Mindspark web browser toolbar that is designed to modify the users search and home pages to Ask.com (or MyWebSearch).
Behaviors
Startup files (all users) run
Runs under the registry key 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run'
- 'FileShareFanatic_8l Browser Plugin Loader' → C:\Program Files2\FILESH~2\bar\1.bin\8lbrmon.exe
- 'Zwinky_5q Browser Plugin Loader' → C:\Program Files1\ZWINKY~2\bar\2.bin\5qbrmon.exe
- 'Allin1Convert_8h Browser Plugin Loader' → C:\Program Files1\ALLIN1~2\bar\1.bin\8hbrmon.exe
- 'ReadingFanatic_6x Browser Plugin Loader' → C:\Program Files1\READIN~2\bar\1.bin\6xbrmon.exe
- 'PopularScreensavers_7i Browser Plugin Loader' → C:\Program Files2\POPULA~2\bar\1.bin\7ibrmon.exe
- 'SafePCRepair_89 Browser Plugin Loader' → C:\Program Files2\SAFEPC~2\bar\2.bin\89brmon.exe
- 'Retrogamer_4w Browser Plugin Loader' → C:\Program Files1\RETROG~3\bar\1.bin\4wbrmon.exe
- 'FromDocToPDF_65 Browser Plugin Loader' → C:\Program Files1\FROMDO~2\bar\1.bin\65brmon.exe
- 'CursorMania_7l Browser Plugin Loader' → C:\Program Files1\CURSOR~2\bar\1.bin\7lbrmon.exe
- 'HeadlineAlley_29 Browser Plugin Loader' → C:\Program Files2\HEADLI~2\bar\1.bin\29brmon.exe
- 'MyFunCards_5m Browser Plugin Loader' → C:\Program Files1\MYFUNC~2\bar\1.bin\5mbrmon.exe
- 'MapsGalaxy_39 Browser Plugin Loader' → C:\Program Files1\MAPSGA~2\bar\1.bin\39brmon.exe
- 'TranslationBuddy_5e Browser Plugin Loader' → C:\Program Files1\TRANSL~2\bar\1.bin\5ebrmon.exe
- 'InboxAce_1g Browser Plugin Loader' → C:\Program Files1\INBOXA~2\bar\1.bin\1gbrmon.exe
- 'UtilityChest_49 Browser Plugin Loader' → C:\Program Files2\UTILIT~2\bar\1.bin\49brmon.exe
- 'SoccerInferno Browser Plugin Loader' → C:\Program Files1\SOCCER~2\bar\1.bin\j2brmon.exe
- 'DotSpot_2k Browser Plugin Loader' → C:\Program Files2\DOTSPO~2\bar\1.bin\2kbrmon.exe
- 'MyOwnSuperhero Browser Plugin Loader' → C:\Program Files1\MYOWNS~2\bar\1.bin\v3brmon.exe
- 'WeatherBlink Browser Plugin Loader' → C:\Program Files1\WEATHE~2\bar\1.bin\gcbrmon.exe
- 'GamingWonderland Browser Plugin Loader' → C:\Program Files1\GAMING~2\bar\1.bin\gtbrmon.exe
- 'ReferenceBoss_1p Browser Plugin Loader' → C:\Program Files1\REFERE~3\bar\1.bin\1pbrmon.exe
- 'GamingAssassin_4s Browser Plugin Loader' → C:\Program Files2\GAMING~2\bar\1.bin\4sbrmon.exe
Malware detections
Based on 40+ industry antivirus scanners, 5 of them detected the following malware.
| Antivirus engine | Engine version | Detection |
| Antiy Labs AVL |
2.0.3.7 |
Trojan/win32.agent.gen |
| avast! |
6.0.1289.0 |
Win32:PUP-gen [PUP] |
| AVG |
2014.0.3629 |
AdInstaller.FunWeb |
| Comodo Internet Security |
15843 |
Application.Win32.MyWebSearch.or |
| VIPRE Antivirus |
16628 |
MyWebSearch.J (v) (not malicious) |
Resource utilization
(Note: statistics below are averages based on a minimum sample size of 200 unique participants)
Averages
| CPU |
| Total CPU: | 0.00087151% | |
| Kernel CPU: | 0.00052546% | |
| User CPU: | 0.00034605% | |
| Kernel CPU time: | 4,486 ms/min | |
| CPU cycles: | 12,238/sec | |
| Context switches: | 1/sec | |
| Memory |
| Private memory: | 1.25 MB | |
| Private (maximum): | 3.05 MB | |
| Private (minimum): | 2.07 MB | |
| Non-paged memory: | 1.25 MB | |
| Virtual memory: | 50.02 MB | |
| Virtual memory (peak): | 54.12 MB | |
| Working set: | 2.13 MB | |
| Working set (peak): | 4.1 MB | |
| Page faults: | 4,006/min | |
| I/O |
| I/O read transfer: | 164 Bytes/sec | |
| I/O read operations: | 1/sec | |
| I/O write transfer: | 8 Bytes/sec | |
| I/O write operations: | 1/sec | |
| I/O other transfer: | 31 Bytes/sec | |
| I/O other operations: | 2/sec | |
| Resource allocations |
| Threads: | 2 | |
| Handles: | 82 | |
| GUI GDI count: | 9 | |
| GUI GDI peak: | 10 | |
| GUI USER count: | 4 | |
| GUI USER peak: | 4 | |
Process properties
| Integrety level: | Medium |
| Platform: | 32-bit |
| Command lines: |
- "C:\Program Files\videodownloadconverter_4z\bar\1.bin\4zbrmon.exe"
- "C:\progra~1\videod~2\bar\1.bin\4zbrmon.exe"
- "C:\Program Files\televisionfanatic\bar\1.bin\64brmon.exe"
- "C:\progra~1\dictio~2\bar\1.bin\v4brmon.exe"
- "C:\progra~1\televi~2\bar\1.bin\64brmon.exe"
- "C:\progra~1\marine~1\bar\1.bin\57brmon.exe"
- "C:\Program Files\fromdoctopdf_65\bar\1.bin\65brmon.exe"
- (48 more)
|
| Owner: | User |
| Parent processes: |
|
Threads
Common loaded modules
These are modules that are typiclaly loaded within the context of this process.
Distribution by Windows OS
| OS version | distribution |
| Windows 7 Ultimate N |
23.00% |
|
| Windows 7 Ultimate |
20.50% |
|
| Windows 7 Home Premium |
17.50% |
|
| Microsoft Windows XP |
15.00% |
|
| Windows Vista Home Basic |
4.50% |
|
| Windows 8 Pro |
4.00% |
|
| Windows 8 |
3.50% |
|
| Windows 8 Pro with Media Center |
3.00% |
|
| Windows Vista Home Premium |
2.50% |
|
| Windows 7 Enterprise |
2.50% |
|
| Windows 7 Professional |
2.00% |
|
| Windows 8 Single Language |
1.00% |
|
| Windows 7 Home Basic |
1.00% |
|
Distribution by country
United States installs about 49.18% of VER_PRODUCT_NAME.
Distribution by PC manufacturer
| PC Manufacturer | distribution |
| Dell |
33.07% |
|
| Hewlett-Packard |
18.90% |
|
| Acer |
18.90% |
|
| GIGABYTE |
10.24% |
|
| Toshiba |
9.45% |
|
| ASUS |
4.72% |
|
| Sony |
3.15% |
|
| Intel |
1.57% |
|
