iswsvc.exe
ZoneAlarm Browser Security by Check Point Software Technologies Ltd. (Signed)
Warning 4 antivirus scanners has detected malware in various versions of iswsvc.exe.
Overview
iswsvc.exe has 9 known versions, the most recent one is 1, 5, 395, 0. It is started as a Windows Service called 'ZoneAlarm Toolbar IswSvc' with the name 'IswSvc'. In addition, it is run under the context of the SYSTEM account with extensive privileges (the administrator accounts have the same privileges). The average file size is about 664.87 KB. It is an authenticode code-signed executable issued to Check Point Software Technologies Ltd. by the certification authority VeriSign. Numerous variations of iswsvc.exe have been installed with both ZoneAlarm Toolbar and Audio 180%. During the process's lifecycle, the typical CPU resource utilization is less than 0.01%, the average private memory consumption is about 8.44 MB with the maximum memory reaching around 10.14 MB. Addionally, typically read and write I/O disk operations is about 36.32 KB per minute for reads and 6.57 KB per minute for writes.
What is iswsvc.exe?
Check Point's ZoneAlarm ForceField is designed to secure Web browsing sessions through the use of browser virtualization, inline download scanning and DNS validation services.
About iswsvc.exe (from Check Point Software Technologies Ltd.)
“Get ZoneAlarm ForceField for your browser. ForceField works hard at Web safety so you don't have to, but you should continue to browse with common sense in mind.”
 Details
|
| File name: | iswsvc.exe |
| Publisher: | Check Point Software Technologies |
| Product name: | ZoneAlarm Browser Security |
| Typical file path: | C:\Program Files\checkpoint\zaforcefield\iswsvc.exe |
| Certificate |
| Issued to: | Check Point Software Technologies Ltd. |
| Authority (CA): | VeriSign |
| Expiration date: | Monday, May 5, 2014 |
| Windows Service |
| Service name: | IswSvc |
| Display name: | ZoneAlarm Toolbar IswSvc |
| Type: | Win32OwnProcess |
Programs installed in
(Note, the programs listed below are for all versions of ZoneAlarm Browser Security.)
The ZoneAlarm Security Toolbar installs a OurToolbar toolbar in your Web browser that collects and stores information about your web browsing and sends this information to OurToolbar so they can sugg...
“The full version of "Audio 180%" under tidier interface offers a total of ten tools to help you around all common tasks get the job done with audio and sound. using the audio player you give songs and...”
Behaviors
(Note, the behaviors below are for all versions of iswsvc.exe, select a unique version for details.)
Services
Runs under 'SYSTEM\CurrentControlSet\Services' by the Service Controller (services.exe)
- 'IswSvc' (ZoneAlarm Toolbar IswSvc)
- IswSvc
Malware detections
Based on 40+ industry antivirus scanners, 4 of them detected the following malware.
| Antivirus engine | Engine version | Detection | File version |
| ByteHero |
1.0.0.1 |
Virus.Win32.Heur.j |
1, 5, 395, 0 |
| ByteHero |
1.0.0.1 |
Virus.Win32.Heur.j |
1, 5, 388, 0 |
| ByteHero |
1.0.0.1 |
Virus.Win32.Heur.j |
1, 5, 393, 18 |
| ByteHero |
1.0.0.1 |
Virus.Win32.Heur.j |
1, 5, 393, 22 |
All file variations of iswsvc.exe
Distribution by Windows OS
| OS version | distribution |
| Windows 7 Home Premium |
48.00% |
|
| Microsoft Windows XP |
16.00% |
|
| Windows Vista Home Basic |
8.00% |
|
| Windows 8 Pro |
8.00% |
|
| Windows 7 Professional |
8.00% |
|
| Windows 7 Ultimate N |
4.00% |
|
| Windows Vista Ultimate |
4.00% |
|
| Windows 7 Ultimate |
4.00% |
|
Distribution by country
United States installs about 60.00% of ZoneAlarm Browser Security.
Distribution by PC manufacturer
| PC Manufacturer | distribution |
| Hewlett-Packard |
80.00% |
|
| Acer |
20.00% |
|
