home

pbsvc_pg.exe

Even Balance, Inc.

This is a setup program which is used to install the application. The file has been seen being downloaded from www37.zippyshare.com and multiple other hosts.
Publisher:
Even Balance, Inc.  (signed and verified)

MD5:
e1e5017e3072a4d80227e9e11ad75ea1

SHA-1:
52ad304c0dc72babe01afc75f3528c27c69e8cb8

SHA-256:
d535224d30280cd19aa6777e8a53153ddb7e7408d78fe44d888c6208a345d9da

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 11:44:47 PM UTC  (a few moments ago)

File size:
820.6 KB (840,264 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\windows\syswow64\pbsvc_pg.exe

Digital Signature
Signed by:
Even Balance, Inc.

Authority:
VeriSign, Inc.

Valid from:
1/18/2011 7:00:00 PM

Valid to:
1/23/2012 6:59:59 PM

Subject:
CN="Even Balance, Inc.", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Even Balance, Inc.", S=Texas, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
779269AB55280C74DCE6B7C1A05F8DF1

File PE Metadata
Compilation timestamp:
12/20/2011 4:24:12 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.10

CTPH (ssdeep):
24576:NwotXGvLCXK/c3bUMCYRIPW4YcYu3K6rglHHB2s5A:yEGv+XK/c3tr2PWDcYu3K6rglHHBd5A

Entry address:
0x1A5DD0

Entry point:
60, BE, 00, 50, 4F, 00, 8D, BE, 00, C0, F0, FF, 57, EB, 0B, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, 0B, 75, 28, 8B, 1E, 83, EE, FC, 11, DB, 72, 1F, 48, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, EB, D4, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, EB, 52, 31, C9, 83, E8, 03, 72, 11, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 75, D1, F8, 89, C5, EB, 0B, 01, DB, 75, 07, 8B...
 
[+]

Entropy:
7.6927

Packer / compiler:
UPX v0.89.6 - v1.02 / v1.05 -v1.24

Code size:
708 KB (724,992 bytes)

The file pbsvc_pg.exe has been discovered within the following programs.

Battlefield 3™  by Electronic Arts
Battlefield 3 is a first-person shooter video game developed by EA Digital Illusions CE and published by Electronic Arts. It is a direct sequel to 2005's Battlefield 2, and the twelfth installment in the Battlefield franchise.
www.ea.com
7% remove it
Battlefield 4™  by Electronic Arts
Battlefield 4 is a first-person shooter video game.
12% remove it
BF3 Settings Editor  by Realmware
Publisher's description - “It allows you to easily customise and tweak all of your Battlefield 3 settings, including the ones that aren't displayed on the in-game menu.”
bf3.realmware.co.uk/settings-editor
About 3% of users remove it
Origin  by Electronic Arts
Origin (EA Store) is a digital distribution, digital rights management system from Electronic Arts that allows users to purchase games on the internet for PC and mobile platforms, and download them with the Origin client (formerly EA Download Manager).
24% remove it
Project Reality: BF2  by Project Reality
Publisher's description - “Project Reality (PR) is a modification for the retail Battlefield 2 multi-player PC game. Project Reality's aim is to create a more realistic combat environment than standard Battlefield 2, and place a greater emphasis on teamwork and cooperation.”
realitymod.com
About 1% of users remove it
 
Powered by Should I Remove It?

The file pbsvc_pg.exe has been seen being distributed by the following 22 URLs.

http://www37.zippyshare.com/d/25181373/.../pbsvc_GamesForGamers.exe

http://www37.zippyshare.com/d/25181373/.../pbsvc_GamesForGamers.exe

http://www37.zippyshare.com/d/25181373/.../pbsvc_GamesForGamers.exe

http://www37.zippyshare.com/d/25181373/.../pbsvc_GamesForGamers.exe

https://www.kafemlynek.cz/.../pb_services.exe

http://www37.zippyshare.com/d/25181373/.../pbsvc_GamesForGamers.exe

http://www37.zippyshare.com/d/25181373/.../pbsvc_GamesForGamers.exe

http://www37.zippyshare.com/d/25181373/.../pbsvc_GamesForGamers.exe

http://www37.zippyshare.com/d/25181373/.../pbsvc_GamesForGamers.exe

http://www37.zippyshare.com/d/25181373/.../pbsvc_GamesForGamers.exe

http://www37.zippyshare.com/d/25181373/.../pbsvc_GamesForGamers.exe

http://www37.zippyshare.com/d/25181373/.../pbsvc_GamesForGamers.exe

http://www37.zippyshare.com/d/25181373/.../pbsvc_GamesForGamers.exe

about:internet

http://127.0.0.1:37848/continue?TiCredToken=4174&Source=WTP&URL=http://www.evenbalance.com/downloads/.../pbsvc.exe

http://www37.zippyshare.com/d/25181373/.../pbsvc_GamesForGamers.exe

https://steamcommunity.com/linkfilter/http://www.evenbalance.com/downloads/.../pbsvc.exe

http://evenbalance.com/downloads/.../pbsvc.exe

https://dl.dropboxusercontent.com/s/.../pbsvc.exe

http://dc414.2shared.com/download/.../pbsvc.exe

http://www.punkbuster.com/downloads/.../pbsvc.exe

http://www.evenbalance.com/downloads/.../pbsvc.exe

Scan pbsvc_pg.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.