82,399,351 programs installed

Should I remove SwizzleBiz?

What percent of users and experts removed it?
87% remove it13% keep it
Overall Sentiment
What do people think about it?
(click star to rate)
How common is it?
Reach 0.0004%
Lifespan of installation (until removal)
< 3.73 days
110.12 days >
Average installed length: 57.86 days


2014.05.04.023152 33.33%
2014.04.07.230239 16.67%
2014.04.01.232416 16.67%
2014.03.11.234342 16.67%
2014.02.26.045520 16.67%


What is SwizzleBiz?

This adware software (a branded version of the morphing Yontoo adware browser addon) injects itself into the user's web browser (IE, Chrome and Firefox) and will display out-of context advertising on web sites that are not associated with Yontoo or its affiliate partners. Advertisements will be displayed as banner and video ads, search related ads, transitional and in-text ads and links. The software will also periodically self-update and call home for instructions as well as additional ad feeds and reporting of how the user interacts with the software as well as what domains and web pages the user visits.

This web browser toolbar/extension is a 'startpage' hijacker that is designed to modify the browser's homepage, new tab page and default search page and provider in order to generate search-related revenue.


The most used version is 2014.05.04.023152, with over 98% of all installations currently using this version. It adds a background controller service that is set to automatically run. Delaying the start of this service is possible through the service manager. It adds a Browser Helper Object (BHO) to Internet Explorer. The main program executable is SwizzleBizBHO.dll. Typically most users end up uninstalling this just after a few days. The software installer includes 5 files and is usually about 6.11 MB (6,408,751 bytes).
  • Possible malware installed by this program
  • Loads into the web browser
  • Adds a background Windows Service
  • Installed as part of a co-bundle
  • Generally known to have a low reputation
  • The experts agree, you should remove it!
Warning, multiple anti-virus scanners have detected possible malware in SwizzleBiz.
SwizzleBizBHO.dll (369b9f2e91a4ba96f3de2d6117519175) has been flagged by the following 31 scanners:
Anti-Virus softwareVersionDetection
Lavasoft Ad-Aware 960 Gen:Variant.Adware.BHO.Agent.4
Agnitum Outpost 7.1.1 PUA.Agent
Avira AntiVir APPL/BrowseFox.Gen2
Antiy-AVL GrayWare[AdWare:not-a-virus]/Win32.Agent
AVG 2015.0.3438 BrowseFox.F
Baidu-International Adware.Win32.Agent.akiz
Bitdefender Gen:Variant.Adware.BHO.Agent.4
Comodo Security 18373 Application.Win32.Altbrowse.AK
Dr.Web Trojan.BPlug.17
Emsisoft Anti-Malware Gen:Variant.Adware.BHO.Agent
ESET-NOD32 8.9868 a variant of Win32/BrowseFox.F
Fortinet FortiGate 6/20/2014 Adware/Agent
F-Secure 11.2014-20-06_6 Gen:Variant.Adware.BHO.Agent.4
G Data 14.6.24 Gen:Variant.Adware.BHO.Agent
IKARUS anti.virus t3scan. not-a-virus:AdWare.Win32.Agent
K7 AntiVirus 13.178.12244 Unwanted-Program
K7GW 13.178.12244 Unwanted-Program ( 00454f261 )
Kaspersky not-a-virus:AdWare.Win32.Agent
Kingsoft AntiVirus 331020.49267 Win32.Troj.Agent.ah.(kcloud)
Malwarebytes v2014.06.20.09 PUP.Optional.SwizzleBiz.A
McAfee 5600.7094 Artemis!369B9F2E91A4
McAfee-GW-Edition 7.7094 Artemis!369B9F2E91A4
MicroWorld-eScan Gen:Variant.Adware.BHO.Agent.4
NANO AntiVirus Riskware.Win32.Agent.cqycvd
Panda Antivirus Trj/CI.A
Sophos 4.98 Generic PUA JF
SUPERAntiSpyware 10532 Adware.BrowseFox/Variant
TrendMicro-HouseCall 7.2.171 TROJ_GEN.F47V0503
Vba32 AntiVirus AdWare.Agent
VIPRE Antivirus 29750 Yontoo (fs)
Zillya Adware.Agent.Win32.9011
updateSwizzleBiz.exe (00fbfc9b50abee96e0e363a45ac4704f) has been flagged by the following 17 scanners:
Anti-Virus softwareSoftware versionDetection
Antiy-AVL GrayWare[AdWare:not-a-virus,HEUR]/MSIL.Kranet
AVG Agent.V
AVware Yontoo (fs)
Baidu-International Adware.Win32.BrowseFox.BH
ESET-NOD32 10267 a variant of Win32/BrowseFox.H
IKARUS anti.virus T3. PUA.BrowseFox
K7 AntiVirus 9.183.13054 Trojan ( 0049c6b61 )
K7GW 9.183.13043 Trojan ( 0049c6b61 )
Kaspersky not-a-virus:HEUR:AdWare.MSIL.Kranet.heur
Malwarebytes PUP.Optional.SwizzleBiz.A
McAfee Artemis!00FBFC9B50AB
McAfee-GW-Edition 2013.2 Artemis!00FBFC9B50AB
Panda Antivirus Trj/Chgt.B
Qihoo-360 Win32/Virus.Adware.e4c
Sophos 4.98.0 Generic PUA FG
TrendMicro-HouseCall 9.700.0.1001 Suspicious_GEN.F47V0813
VIPRE Antivirus 32286 Yontoo (fs)
       View all 48 all detections
SwizzleBiz has been found to be bundled with 3rd party software. If you have not purposefully installed this, you should be safe uninstalling it.
Find out how to remove SwizzleBiz.

Program detailsProgram details

Displayed publisher: SwizzleBiz
URL: swizzlebiz.biz/support
Help link: mailto:[email protected]
Installation folder: C:\Program Files\SwizzleBiz
Uninstaller: C:\Program Files\SwizzleBiz\SwizzleBizuninstall.exe
Estimated size: 6.11 MB

Program filesFiles installed by SwizzleBiz

Program module:SwizzleBizBHO.dll (Malware detected)
Path:C:\Program Files\SwizzleBiz\SwizzleBizBHO.dll
Additional files:
  • (Malware detected) SwizzleBizBHO.dll - SwizzleBiz
  • 7za.exe (by Igor Pavlov) - 7-Zip (7-Zip Standalone Console)
  • SwizzleBizUninstall.exe
  • (Malware detected) updateSwizzleBiz.exe

Program behaviorsBehaviors exhibited

Internet Explorer BHO
  • SwizzleBizBHO.dll is installed in Internet Explorer as a BHO (Browser Helper Object) under the name 'SwizzleBiz' with the class of {3398193f-64ac-4438-a9f9-b0aff74b90a8}.
  • updateSwizzleBiz.exe runs as a service named 'Update SwizzleBiz' (Update SwizzleBiz).

How do I remove SwizzleBiz?

Quickly and completely remove SwizzleBiz from your computer by downloading "Should I Remove It?", its 100% FREE and installs in seconds (click the button below).
Download "Should I Remove It?", it's FREE!Remove SwizzleBiz from your computer.
Or, you can uninstall SwizzleBiz from your computer by using the Add/Remove Program feature in the Window's Control Panel.
  1. On the Start menu (for Windows 8, right-click the screen's bottom-left corner), click Control Panel, and then, under Programs, do one of the following:
    • Windows Vista/7/8: Click Uninstall a Program.
    • Windows XP: Click Add or Remove Programs.
  2. When you find the program SwizzleBiz, click it, and then do one of the following:
    • Windows Vista/7/8: Click Uninstall.
    • Windows XP: Click the Remove or Change/Remove tab (to the right of the program).
  3. Follow the prompts. A progress bar shows you how long it will take to remove SwizzleBiz.
  4. If for some reason uninstallation fails, please install Microsoft's uninstall fixer utility which will help fix problems with programs that can't be uninstalled at support.microsoft.com.

How do I reset my web browser?

If your web browser homepage and search settings have been modfied by SwizzleBiz you can restore them to their previous default settings.
Microsoft Internet Explorer
Mozilla Firefox
Google Chrome
Scan your PC for malware
If you do not have a good anti-virus program, please consider installing one. Below are some we highly recommend.

Win 7 (SP1) 83%
Win Vista (SP2) 17%
Windows Service? Yes
(Installs a service)
Uninstall it 87%
Keep it 13%

Windows OS versionsWindows

Which Windows OS versions does it run on?
Windows 7 83.33%
Windows Vista 16.67%
Which OS releases does it run on?
Windows 7 Home Premium 60.00%
Windows 7 Professional 20.00%
Windows Vista Home Premiu... 20.00%

Distribution by countryGeography

90.00% of installs come from the United States
Which countries install it?
  United States 90.00%
  India 10.00%

OEM distributionPC manufacturers

What PC manufacturers (OEMs) have it installed?
Hewlett-Packard 60.00%
Lenovo 20.00%
Dell 20.00%
Common models
Dell Dell System Inspir... 25.00%
Hewlett-Packard Presario ... 25.00%
HP-Pavilion KQ436AA-ABA I... 25.00%
HP Pavilion dv6 Notebook ... 25.00%

About Yontoo Technology

Yontoo, a subsidiary/alias of ad-hijacker Sambreel, is a publisher of ad-supported web browser extensions designed to inject and display advertisements within the browser.
Publisher URL: www.yontoo.com


user comment
No one has commented yet. Help others learn more about this software, share your comments.