SmartbarInternetExplorerBHO.dll

SmartbarInternetExplorerBHO

PINWID LTD

The module SmartbarInternetExplorerBHO.dll by PINWID has been detected as adware by 3 anti-malware scanners. It is installed within the context of Internet Explore as a BHO (Browser Helper Object) under the name ‘SmartbarInternetExplorerBHOEngine’. Additionally, the file is typically installed by a number of programs including Muvic Smartbar Engine by Pinwid Ltd. and Muvic Smartbar by Pinwid Ltd., both potentially unwanted software.
Publisher:
PINWID LTD  (signed and verified)

Product:
SmartbarInternetExplorerBHO

Version:
1.0.0.0

MD5:
935fbc87461dae5ca59bfe07cbd7c2e0

SHA-1:
244ff9280a33142ad90eddafe2f98400b09e03f2

SHA-256:
6ff2621c7cef642ac4c8286afb747a45e16087d2b3dbeb860ad0cd022b001ab9

Scanner detections:
3 / 68

Status:
Adware

Analysis date:
3/24/2014 4:21:52 AM UTC  (six months ago)

Scan engine
Detection
Engine version

AVG
MalSign.Pindi
2015.0.3526

Boost by Reason
Optional.BHO.PINWID.BB
188861

Reason Heuristics
PUP.BHO.PINWID.BB
14.3.13.22

File size:
146 KB (149,536 bytes)

Product version:
1.0.0.0

Original file name:
SmartbarInternetExplorerBHO.dll

File type:
Dynamic link library (Win32 DLL)

Language:
Language Neutral

Common path:
C:\users\user\appdata\local\smartbar\application\smartbarinternetexplorerbho.dll

Digital Signature
Signed by:

Authority:
COMODO CA Limited

Valid from:
2/4/2014 7:00:00 PM

Valid to:
2/5/2015 6:59:59 PM

Subject:
CN=PINWID LTD, O=PINWID LTD, STREET=14 Shenkar Arie, L=HERZLIYA, S=NA, PostalCode=46733, C=IL

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00D9AC9FC9A1B1E8FD63013E3CCE7B0578

File PE Metadata
Compilation timestamp:
2/25/2014 4:50:58 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
6.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
3072:EGj9N9Ub6GvCi09s2o2skAiei5OHp4hN:EG3STvCD8kAiezHp4

Entry address:
0x242C6

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.1405

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
137 KB (140,288 bytes)

Internet Explorer BHO
CLSID:
{31ad400d-1b06-4e33-a59a-90c2c140cba0}

CLSID name:
SmartbarInternetExplorerBHOEngine


The file SmartbarInternetExplorerBHO.dll has been discovered within the following programs.

Muvic Smartbar  by Pinwid Ltd.
This adware injects advertising in the user's Internet browser by running as an extension and/or add-on. Ads are delivered in the form of banners and text-links (roll-overs) as well as some popup ads.
www.browse-search.com/?
80% remove it
Muvic Smartbar Engine  by Pinwid Ltd.
This adware program injects advertisements with its affiliate ad providers in order to serve a number of ad types including banner, inline text links and popups.
82% remove it
 
Powered by Should I Remove It?

There are 2 known versions of SmartbarInternetExplorerBHO.dll.

2 / 68      (Adware)
SmartbarInternetExplorerBHO.dll  1.0.0.0  (7adce847d4cba2322e4517fa8cd158f28dc6e2d3)

1 / 68      (Adware)
SmartbarInternetExplorerBHO.dll  1.0.0.0  (e352943344b2d758f591ee84b518eee2bcc36418)

11 / 68    (Adware)
smartbarfirefoxremoteplugin_27.dll  (4daaf48aabce45e5033c7a5172ced0360e6eb2f2)

3 / 68      (Adware)
installer.exe  (2ecfac6c3fc4e13f894d89a3cfa89c57bb1039ce)

3 / 68      (Adware)
srpts.exe  (50c1ec642a5a5258c17db267c6ff3768449106cc)

3 / 68      (Adware)
srpt.dll  (65fcd4cb2f73a97e38c0a7e93fd45328a5e301e9)

2 / 68      (Adware)
Smartbar.Communication.NamedPipe.dll  (778f38ae4a151a337b6a846cd551dce2759cde0c)

2 / 68      (Adware)
Smartbar.Communication.dll  (0c756d33ed8662a26c11c862adfbcfb705a6928b)

3 / 68      (Adware)
srptc.dll  (8ddc81202b07814c5f01d582b8491b17149a12c3)

2 / 68      (Adware)
Smartbar.Common.dll  (53776c68d7f2bb104aa35585dab3d15cf6a0b208)

2 / 68      (Adware)
srptm.exe  (bd4dc01cc4472486b8c6ba87eb9a8eb2a991d708)

3 / 68      (Adware)
srut.dll  (559656c5c50d651482f0697368373652b1828394)

3 / 68      (Adware)
sppsm.dll  (c145eafae7afd3e087a726fdac42520952363021)

3 / 68      (Adware)
spusm.dll  (50afa9026144ed5316773e055f7a056f392b530d)

3 / 68      (Adware)
Smartbar.Resources.HistoryAndStatsWrapper.dll  (bd0f6d1e02f99c56d0a386a4eeffdf18dacb8952)

2 / 68      (Adware)
Smartbar.Personalization.Common.dll  (2254806f1e6bfe4030e5e63b342af4bbaff1a5e1)

2 / 68      (Adware)
Smartbar.Infrastructure.Utilities.dll  (da628bf41c53488a6146dc50aa94a0796a3c624f)

3 / 68      (Adware)
srbs.dll  (aeaa3beebed0f09e9c43a254665f4400dc04019b)

Detection Incidence by Country