Should I block it?

98%
Yes, 98% block recommendation.
Possible reasons:
Multiple malware detections
Performance resource utilization

VersionsAdditional versions

1.1.151.37 33.33%
1.1.151.37 33.33%
1.1.151.36 33.33%

Relationships


PE structurePE file structure

Show functions
Import table
advapi32.dll
RegEnumKeyExA, GetSidSubAuthorityCount, GetTokenInformation, OpenProcessToken, RegCreateKeyExA, RegCloseKey, RegSetValueExA, RegEnumValueA, RegQueryValueExA, RegQueryInfoKeyW, RegDeleteValueA, RegDeleteKeyA, RegOpenKeyExA, LookupPrivilegeValueA, AdjustTokenPrivileges, GetSidSubAuthority
comctl32.dll
ImageList_GetImageCount, ImageList_Remove, ImageList_ReplaceIcon
gdi32.dll
CreateFontA, SelectObject, GetTextExtentPoint32A, DeleteObject, GetObjectA
gdiplus.dll
GdipFillPath, GdipGraphicsClear, GdipDrawPath, GdipSetInterpolationMode, GdipGetImageGraphicsContext, GdipCreatePathGradientFromPath, GdipWindingModeOutline, GdipAddPathEllipseI, GdipAddPathRectangleI, GdipSetStringFormatTrimming, GdipSetStringFormatAlign, GdipCreateSolidFill, GdipCreateHICONFromBitmap, GdipCreateBitmapFromScan0, GdipCloneBitmapAreaI, GdipCreateBitmapFromStream, GdipGetImagePixelFormat, GdipGetImageHeight, GdipGetImageWidth, GdipDrawString, GdipDeleteFont, GdipDeleteGraphics, GdipSetPathGradientFocusScales, GdipSetPathGradientSurroundColorsWithCount, GdipGetPathGradientPointCount, GdipSetPathGradientCenterColor, GdipDeletePath, GdipCreatePath, GdipDeleteStringFormat, GdipCreateStringFormat, GdipDeletePen, GdipCreatePen1, GdipDeleteBrush, GdipAlloc, GdipFree, GdipCloneBrush, GdipCloneImage, GdiplusStartup, GdipMeasureString, GdiplusShutdown, GdipDrawImageRectI, GdipCreateFontFromDC, GdipDisposeImage, GdipCreateFontFromLogfontA, GdipCreateBitmapFromStreamICM
kernel32.dll
CreateThread, GetCurrentThreadId, GetCurrentProcessId, FindClose, FindNextFileA, FindFirstFileA, lstrlenW, EnterCriticalSection, LeaveCriticalSection, GetModuleFileNameA, GetProcAddress, LoadLibraryA, GetLastError, ReleaseMutex, OpenMutexA, CreateMutexA, Sleep, SetEvent, CreateEventA, RaiseException, FlushInstructionCache, GetCurrentProcess, SetLastError, LocalFree, FormatMessageA, GetModuleHandleA, InitializeCriticalSectionAndSpinCount, DeleteCriticalSection, GlobalFlags, GlobalFree, GlobalUnlock, GlobalLock, GlobalAlloc, UnmapViewOfFile, MapViewOfFile, OpenFileMappingA, CreateFileMappingA, lstrcpyA, LocalAlloc, InitializeCriticalSection, WriteFile, ReadFile, SetFilePointer, GetFileSize, CreateFileA, lstrcmpiA, IsDBCSLeadByte, FreeLibrary, SizeofResource, LoadResource, FindResourceA, LoadLibraryExA, GetExitCodeProcess, CreateRemoteThread, VirtualFreeEx, WaitForSingleObject, VirtualAllocEx, OpenProcess, CreateDirectoryA, RemoveDirectoryA, Process32Next, WideCharToMultiByte, TerminateProcess, GetVersion, MoveFileExA, GetTempPathA, CopyFileExA, ExpandEnvironmentStringsA, LoadLibraryW, GetTickCount, QueryPerformanceCounter, GetEnvironmentStringsW, FreeEnvironmentStringsW, GetTimeZoneInformation, LCMapStringW, GetFileType, SetHandleCount, FlushFileBuffers, GetConsoleMode, GetConsoleCP, ExitProcess, HeapSize, GetStringTypeW, GetLocaleInfoW, GetModuleFileNameW, GetStdHandle, IsProcessorFeaturePresent, HeapCreate, IsDebuggerPresent, SetUnhandledExceptionFilter, UnhandledExceptionFilter, TlsFree, TlsSetValue, TlsGetValue, TlsAlloc, IsValidCodePage, GetOEMCP, GetACP, GetCPInfo, GetStartupInfoW, HeapSetInformation, GetCommandLineA, MoveFileA, DeleteFileA, HeapReAlloc, VirtualQuery, GetSystemInfo, CloseHandle, OutputDebugStringA, DebugBreak, InterlockedIncrement, WriteProcessMemory, MultiByteToWideChar, lstrlenA, InterlockedDecrement, GetUserDefaultLCID, GetLocaleInfoA, EnumSystemLocalesA, IsValidLocale, InterlockedExchange, SetStdHandle, WriteConsoleW, CreateFileW, SetEndOfFile, GetProcessHeap, CompareStringW, LCMapStringA, SetEnvironmentVariableA, InterlockedCompareExchange, InterlockedPushEntrySList, GetModuleHandleW, VirtualAlloc, VirtualProtect, HeapAlloc, GetLocalTime, GetSystemTimeAsFileTime, RtlUnwind, EncodePointer, DecodePointer, HeapFree, VirtualFree, InterlockedPopEntrySList, GetStringTypeExA, CreateToolhelp32Snapshot
ole32.dll
CoInitialize, CoCreateInstance, CoUninitialize, CLSIDFromProgID, CoTaskMemAlloc, CoTaskMemRealloc, CoTaskMemFree, CreateStreamOnHGlobal
oleacc.dll
AccessibleObjectFromWindow
shell32.dll
SHGetFolderPathA, ShellExecuteExA
urlmon.dll
URLDownloadToCacheFileA
user32.dll
CharLowerA, MessageBoxA, PostMessageA, CharNextA, SetWindowLongA, GetClassInfoExA, LoadCursorA, DefWindowProcA, RegisterClassExA, CreateWindowExA, GetWindowLongA, CallWindowProcA, UnregisterClassA, GetDesktopWindow, GetWindowThreadProcessId, DestroyIcon, InvalidateRect, SendMessageA, GetWindowRect, ReleaseDC, LoadStringA, SetWindowPos, GetParent, FindWindowExA, UnhookWindowsHookEx, CallNextHookEx, SetWindowsHookExA, SetTimer, KillTimer, DispatchMessageA, TranslateMessage, GetMessageA, GetWindowTextA, EnumWindows, GetForegroundWindow, SetFocus, BringWindowToTop, SetForegroundWindow, AttachThreadInput, IsWindowVisible, GetDC, wvsprintfA, DestroyWindow
wininet.dll
HttpOpenRequestA, InternetConnectA, InternetCrackUrlA, InternetOpenA, InternetGetCookieA, InternetSetCookieA, InternetSetOptionA, InternetReadFile, HttpSendRequestA, HttpQueryInfoA, InternetCloseHandle

savings sidekick-bg.exe

Savings Sidekick by Awesome Apps (Signed)

Remove savings sidekick-bg.exe
Version:   1.1.151.36
MD5:   4ad31b73cecdfa6306ceea395eb1adec
SHA1:   111e4fd38f0f7ad2ec2242aeccf9188f014985e1
SHA256:   dc3cc3e66f5b4bce435d459bb48d2593caedd206595b7546ea1dcdf264af7d59
Warning 15 antivirus scanners has detected malware.

What is savings sidekick-bg.exe?

Savings Sidekick from 215 Apps (Amazing Apps) installs a web browser extension (Internet Explorer Browser Helper Object) to view web pages loaded and looks for affiliated merchants in order to possibly provide better pricing or alternative deals on a given product or merchant. Basically if Savings Sidekick (215 Apps) has a pre-arranged affiliate relationship with a similar merchant it will alert you when you visit through your web browser.

About savings sidekick-bg.exe (from Awesome Apps)

The Savings Sidekick Coupon Book is the perfect fundraising idea and a great way for you to save money at local businesses while supporting local organizations. Thank you for visiting the site of our

DetailsDetails

File name:savings sidekick-bg.exe
Publisher:215 Apps
Product name:Savings Sidekick
Description:Savings Sidekick exe
Typical file path:C:\Program Files\savings sidekick\savings sidekick-bg.exe
Original name:Savings Sidekick.exe
File version:1.1.151.36
Size:886.38 KB (907,648 bytes)
Certificate
Issued to:Awesome Apps
Authority (CA):Thawte
Effective date:Tuesday, August 28, 2012
Expiration date:Thursday, August 29, 2013
Digital DNA
PE subsystem:Windows GUI
File packed:No
.NET CLR:No
More details

ResourcesPrograms

The following program will install this file
215 Apps
  80% remove
Savings Sidekick from 215 Apps (Amazing Apps) installs a web browser extension (Internet Explorer Browser Helper Object) to view web pages loaded and looks for affiliated merchants in order to possibly provide better pricing or alternative deals on a given product or merchant. Basically if Savings Sidekick (215 Apps) has a pre-arranged affiliate relationship with a similar merchant it will alert you when you visit through your web brows...
Network connections
  • [UDP] listens on port 62076

  • MalwareMalware detections

    Based on 40+ industry antivirus scanners, 15 of them detected the following malware.
    Antivirus engineEngine versionDetection
    AVG 13.0.0.3169 MalSign.Skodna.4D3
    BitDefender 7.2 Adware.Agent.NNP
    Clam AntiVirus 0.97.3.0 Win.Adware.Agent-2199
    Comodo Internet Security 17025 UnclassifiedMalware
    Dr.Web 8.13.9.30 Adware.Plugin.14
    Emsisoft Anti-Malware 3.0.0.589 Adware.Agent.NNP (B)
    ESET NOD32 7.8857 a variant of Win32/Toolbar.CrossRider.H
    F-Secure 11.0.19100.45 Adware.Agent.NNP
    G Data 13.9.22 Adware.Agent.NNP
    Malwarebytes 1.75.0.1 PUP.CrossRider.SSK
    eScan by MicroWorld 12.0.250.0 Adware.Agent.NNP
    Trend Micro HouseCall 9.700.0.1001 HV_AGENT_BK084750.TOMC
    Vba32 AntiVirus 3.12.24.3 Trojan.Agent
    VIPRE Antivirus 21960 GamePlayLabs (v)
    ViRobot 2011.4.7.4223 Trojan.Win32.A.Agent.907648

    ResourcesResource utilization

    (Note: statistics below are averages based on a minimum sample size of 200 unique participants)
    Averages
     
    CPU
    Total CPU:0.00097206%
    0.028634%
    Kernel CPU:0.00076872%
    0.013761%
    User CPU:0.00020334%
    0.014873%
    Kernel CPU time:1,792,763,492 ms/min
    100,923,805ms/min
    Memory
    Private memory:6.44 MB
    21.59 MB
    Private (maximum):16.32 MB
    Private (minimum):15.53 MB
    Non-paged memory:6.44 MB
    21.59 MB
    Virtual memory:115.39 MB
    140.96 MB
    Virtual memory (peak):120.64 MB
    169.69 MB
    Working set:16.28 MB
    18.61 MB
    Working set (peak):18.36 MB
    37.95 MB
    Resource allocations
    Threads:5
    12
    Handles:240
    600
    GUI GDI count:9
    103
    GUI USER count:5
    49

    BehaviorsProcess properties

    Integrety level:High
    Platform:64-bit
    Command line:"C:\Program Files\savings sidekick\savings sidekick-bg.exe" /createbg
    Owner:User

    Windows OS versionsDistribution by Windows OS

    OS versiondistribution
    Windows 7 Ultimate N 66.67%
    Windows Vista Home Premium 33.33%

    Distribution by countryDistribution by country

    United States installs about 66.67% of Savings Sidekick.

    OEM distributionDistribution by PC manufacturer

    PC Manufacturerdistribution
    Acer 100.00%
    Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

    Download it for FREE