home

1vbarsvc.exe

SmileyCentral

The application 1vbarsvc.exe has been detected as adware by 9 anti-malware scanners. It runs as a separate (within the context of its own process) windows Service named “SmileyCentral Service”. This version of the file will bundle a Mindspark/MyWebSearch Toolbar, a potentially unwanted web browser extension.
Publisher:
SmileyCentral

Product:
SmileyCentral

Version:
1, 0, 0, 9

MD5:
ce1b611b88ef62173154521ff3b310d8

SHA-1:
8776633f9b3a785f99d87e1381ca272552b488d3

SHA-256:
16fec2d4a34e8698736d1d69b3926cee2b83a846a4765442b1dfbb19fee6ca5b

Scanner detections:
9 / 68

Status:
Adware

Analysis date:
4/25/2024 4:38:01 AM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:PUP-gen [PUP]
2014.9-151127

AVG
AdInstaller.FunWeb
2016.0.2913

Clam AntiVirus
Adware.Funweb-12
0.98/18155

Comodo Security
UnclassifiedMalware
17137

Dr.Web
Tool.InstallToolbar.5
9.0.1.0331

NANO AntiVirus
Riskware.Win32.InstallToolbar.uwyvi
0.26.0.55532

Reason Heuristics
Win32.Generic.Mindspark.Meta
15.11.27.3

Trend Micro House Call
TROJ_GEN.F47V0817
7.2.331

VIPRE Antivirus
MyWebSearch.J
22592

File size:
36 KB (36,864 bytes)

Product version:
2, 3, 0, 0

Copyright:
Copyright © 2009, 2010

Original file name:
1vsvc.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\smileycentral_1v\bar\2.bin\1vbarsvc.exe

File PE Metadata
Compilation timestamp:
9/28/2010 7:23:29 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
384:klyB7E2SB1Dq/z7dXbtmH6EJAIvV1xFHzP1x0bCf1qMYJLR:bSHDqr7dXb4xpV1rHIbC90LR

Entry address:
0x155F

Entry point:
55, 8B, EC, 83, EC, 44, 53, 56, 6A, 00, FF, 15, 24, 41, 40, 00, A3, 3C, 53, 40, 00, FF, 15, 28, 41, 40, 00, 8B, 1D, 2C, 41, 40, 00, 8B, F0, 85, F6, 75, 04, 6A, FF, FF, D3, 8A, 06, 57, 8B, 3D, 4C, 41, 40, 00, 3C, 22, 75, 1B, 56, FF, D7, 8B, F0, 8A, 06, 3C, 22, 74, 04, 84, C0, 75, F1, 80, 3E, 22, 75, 15, 56, FF, D7, 8B, F0, EB, 0E, 3C, 20, 7E, 0A, 56, FF, D7, 8B, F0, 80, 3E, 20, 7F, F6, 8A, 06, 84, C0, 74, 04, 3C, 20, 7E, E1, 83, 65, E8, 00, 8D, 45, BC, 50, FF, 15, 30, 41, 40, 00, E8, 2D, 00, 00, 00, F6, 45...
 
[+]

Entropy:
5.1780

Developed / compiled with:
Microsoft Visual C++

Code size:
12 KB (12,288 bytes)

Service
Display name:
SmileyCentral Service

Service name:
SmileyCentral_1vService

Type:
Win32OwnProcess


Remove 1vbarsvc.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.