etypemngr.exe
Application Manager by Bit89 Inc. (Signed)
Warning 34 antivirus scanners has detected malware in various versions of etypemngr.exe.
Overview
There are 3 versions of etypemngr.exe in the wild, the latest version being 2,6,1249,132. It is started as a Windows Service called 'Browser Manager' with the name 'eType Manager'. This is executed as a shared service (which simply means that this service can share a process with other Win32 services). The average file size is about 2.4 MB. The file is a digitally signed and issued to Bit89 Inc. by GoDaddy.com. During the process's lifecycle, the typical CPU resource utilization is about 0.0086% including both foreground and background operations, the average private memory consumption is about 3.38 MB.
What is etypemngr.exe?
The PerformerSoft Browser Manager (Application Manager) program classified mostly as exhibiting adware like actions, is bundled with PerformerSoft products including PC Performer. Browser Manager is designed to protect its bundled programs and make sure they remain installed or unchanged by other thrid party programs. The Browser Manager program was developed by Bit89 (Bit89.com) a know adware maker.
About etypemngr.exe (from Bit89 Inc.)
“eType is your online multi-language dictionary with translations and word substitutes to virtually any language in the world. eType is your writing guide that auto-completes your words as you type the”
 Details
|
| File name: | etypemngr.exe |
| Publisher: | PerformerSoft LLC |
| Product name: | Application Manager |
| Typical file path: | C:\ProgramData\etype manager\2.3.813.156\{52de144c-c70b-4e0a-9b16-29a2e18c255e}\etypemngr.exe |
| Certificate |
| Issued to: | Bit89 Inc. |
| Authority (CA): | GoDaddy.com |
| Effective date: | Tuesday, September 4, 2012 |
| Expiration date: | Friday, September 4, 2015 |
| Windows Service |
| Service name: | eType Manager |
| Display name: | Browser Manager |
| Type: | Win32ShareProcess |
Programs installed in
(Note, the programs listed below are for all versions of Application Manager.)
PerformerSoft BrowserProtect is a third party web browser add-in classified mostly as a potentially unwanted software application that used to be bundled with PerformerSoft products including PC Perfo...
Browser Manager is a third party web browser add-in classified as a potentially unwanted application that used to be bundled with PerformerSoft products including PC Performer. At one point PerformerS...
PC Performer Manager is bundled with various PC Performer registry optimization products.
Behaviors
(Note, the behaviors below are for all versions of etypemngr.exe, select a unique version for details.)
Services
Runs under 'SYSTEM\CurrentControlSet\Services' as a shared service by the Service Host (svchost.exe)
- Browser Manager
- 'eType Manager'
Malware detections
Based on 40+ industry antivirus scanners, 34 of them detected the following malware.
| Antivirus engine | Engine version | Detection | File version |
| Avira AntiVir |
7.11.61.114 |
Adware/Agent.2400792 |
2,4,897,176 |
| Avira AntiVir |
7.11.103.178 |
APPL/BProtector.Gen |
2,6,1249,132 |
| Antiy Labs AVL |
2.0.3.7 |
Trojan/Win32.Generic |
2,6,1249,132 |
| avast! |
8.0.1489.320 |
Win32:BProtect-A [PUP] |
2,6,1249,132 |
| AVG |
2014.0.3629 |
Generic5.SCR |
2,4,897,176 |
| AVG |
13.0.0.3169 |
Skodna.Generic_r.FK |
2,6,1249,132 |
| Comodo Internet Security |
16986 |
TrojWare.Win32.bProtector.~A |
2,6,1249,132 |
| Dr.Web |
7.0.4.09250 |
Adware.BGuard.2 |
2,3,813,156 |
| Dr.Web |
8.13.10.1 |
Adware.BGuard.18 |
2,6,1249,132 |
| ESET NOD32 |
7.8018 |
a variant of Win32/bProtector.A |
2,4,897,176 |
| ESET NOD32 |
7.8832 |
a variant of Win32/bProtector.A |
2,6,1249,132 |
| Fortinet |
5.0.43.0 |
Adware/Bromngr |
2,4,897,176 |
| G Data |
13.10.22 |
Win32.Application.BHO.A |
2,6,1249,132 |
| K7 AntiVirus |
9.160.8224 |
Adware |
2,4,897,176 |
| Kaspersky |
9.0.0.837 |
not-a-virus:AdWare.Win32.Bromngr.b |
2,4,897,176 |
| Kaspersky |
9.0.0.837 |
HEUR:Trojan.Win32.Generic |
2,6,1249,132 |
| Kingsoft |
2013.4.9.267 |
Win32.Troj.Generic.a.(kcloud) |
2,6,1249,132 |
| Malwarebytes |
1.75.0.1 |
PUP.Optional.PerformerSoft.A |
2,6,1249,132 |
| McAfee |
5.400.1158 |
Artemis!432348FC02E4 |
2,4,897,176 |
| McAfee |
5.600.1067 |
Adware-Bprotect.b |
2,6,1249,132 |
| McAfee Gateway Anti-Malware |
v2012.1-dat |
Artemis!432348FC02E4 |
2,4,897,176 |
| McAfee Gateway Anti-Malware |
v2013-dat |
Artemis!D9C8DC2D7EC2 |
2,6,1249,132 |
| nProtect |
2013-02-16.01 |
Trojan-Clicker/W32.Agent.2400792 |
2,4,897,176 |
| Panda Antivirus |
10.0.3.5 |
Trj/OCJ.C |
2,4,897,176 |
| PC Tools |
9.0.0.2 |
Adware.GoonSquad!rem |
2,6,1249,132 |
| Sophos |
4.93.0 |
BProtector |
2,6,1249,132 |
| Symantec |
20131.1.5.61 |
Adware.GoonSquad |
2,6,1249,132 |
| Trend Micro |
9.740.0.1012 |
TROJ_SPNR.0BLJ12 |
2,4,897,176 |
| Trend Micro |
9.740.0.1012 |
TROJ_GEN.R0CBC0OIH13 |
2,6,1249,132 |
| Trend Micro HouseCall |
9.700.0.1001 |
TROJ_SPNR.0BLJ12 |
2,4,897,176 |
| Trend Micro HouseCall |
9.700.0.1001 |
ADW_BPROTECT |
2,6,1249,132 |
| Vba32 AntiVirus |
3.12.20.2 |
AdWare.Bromngr.b |
2,4,897,176 |
| VIPRE Antivirus |
15594 |
Bprotector (fs) |
2,4,897,176 |
| VIPRE Antivirus |
21744 |
Bprotector (fs) |
2,6,1249,132 |
All file variations of etypemngr.exe
