home

Smartbar.GUI.MainClient.dll

Smartbar

ReSoft LTD.

This is part of the Linkury/SnapDo monetization software, a web browser toolbar used to hijack a user's search in order to collect revenues. The SmartBar is a a potentially unwanted toolbar and Windows Gadget that is advertising supported (adware). The module Smartbar.GUI.MainClient.dll by ReSoft has been detected as adware by 18 anti-malware scanners. This file is typically installed with the program Snap.Do by ReSoft Ltd. which is a potentially unwanted software program.
Publisher:
ReSoft LTD.  (signed and verified)

Product:
Smartbar

Version:
1.2.0.0

MD5:
20f6bcd40a56b87fb5fbb5d1a9f0ddf3

SHA-1:
c64da95c50673a98e40ac70797ff61fc12f162af

SHA-256:
33740087dcca7225d3447fa022da14bc17e49a02d78e79a53a647040e369f6b4

Scanner detections:
18 / 68

Status:
Adware

Analysis date:
4/19/2024 7:12:14 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Adware.Linkury.B
838

Avira AntiVirus
TR/Trash.Gen
7.11.30.172

AVG
AdInject.Resoft
2015.0.3316

Baidu Antivirus
Adware.Win32.unwant
4.0.3.141019

Bitdefender
Adware.Linkury.B
1.0.20.1460

Dr.Web
Trojan.Damaged.1
9.0.1.0292

Emsisoft Anti-Malware
Adware.Linkury
8.14.10.19.06

ESET NOD32
Win32/Toolbar.Linkury.F potentially unwanted application
8.7.0.302.0

G Data
Adware.Linkury
14.10.24

IKARUS anti.virus
PUA.Linkury
t3scan.1.6.1.0

McAfee
Artemis!5C60C6139F11
5600.6972

MicroWorld eScan
Adware.Linkury.B
15.0.0.876

nProtect
Adware.Linkury.B
14.08.06.01

Panda Antivirus
PUP/LinkUry
14.10.19.06

Reason Heuristics
PUP.Smartbar.ReSoft.V
14.10.19.18

SUPERAntiSpyware
Trojan.Agent/Gen-Nullo[Short]
10289

Trend Micro House Call
Suspicious_GEN.F47V0613
7.2.292

VIPRE Antivirus
Adware.Linkury
30470

File size:
1.6 MB (1,711,104 bytes)

Product version:
1.2.0.0

Original file name:
Smartbar.GUI.MainClient.dll

File type:
Dynamic link library (Win32 DLL)

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\smartbar\application\smartbar.gui.mainclient.dll

Digital Signature
Signed by:
ReSoft LTD.

Authority:
COMODO CA Limited

Valid from:
7/30/2012 8:00:00 AM

Valid to:
7/31/2013 7:59:59 AM

Subject:
CN=ReSoft LTD., O=ReSoft LTD., STREET=4th Hanevi'im, L=Tel Aviv, S=Israel, PostalCode=64356, C=IL

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
7ABDE829D4244ADA77EE42C7A70C0FA3

File PE Metadata
Compilation timestamp:
6/3/2013 10:24:31 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
24576:bfwCnV5JdtT04TXLcWrd/IuIdjjJk0qTZvBt:bo6JzFTXLB5IukjtdOH

Entry address:
0x1A170E

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.7804

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
1.6 MB (1,701,888 bytes)

The file Smartbar.GUI.MainClient.dll has been discovered within the following program.

Snap.Do  by ReSoft Ltd.
Snap.Do is a web browser addin/toolbar (depending on the browser it is installed within) that plugs into all the major web browsers including Internet Explorer, Chrome and Firefox. Snap.
snap.do
85% remove it
 
Powered by Should I Remove It?

Remove Smartbar.GUI.MainClient.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.