SmartbarInternetExplorerBHO.dll

SmartbarInternetExplorerBHO

ReSoft LTD.

The module SmartbarInternetExplorerBHO.dll by ReSoft has been detected as adware by 6 anti-malware scanners. It is installed within the context of Internet Explore as a BHO (Browser Helper Object) under the name ‘SmartbarInternetExplorerBHOEngine’. This file is typically installed with the program Snap.Do by ReSoft Ltd. which is a potentially unwanted software program.
Publisher:
ReSoft LTD.  (signed and verified)

Product:
SmartbarInternetExplorerBHO

Version:
1.0.0.0

MD5:
3868b20559b30999684e00213b792e80

SHA-1:
3a6c6f6279e5c550ae65c673d614c4fe8203f49f

SHA-256:
63ce4d0a15454ce1e3a35e9f3d723a3a102b1b85e1ea77004a5619662d878691

Scanner detections:
6 / 68

Status:
Adware

Analysis date:
8/8/2014 5:19:47 AM UTC  (one month ago)

Scan engine
Detection
Engine version

Boost by Reason
Optional.BHO.ReSoft.BB
188838

ESET NOD32
MSIL/Toolbar.Linkury (variant)
8.9427

Panda Antivirus
PUP/LinkUry
14.08.08.01

Reason Heuristics
PUP.BHO.ReSoft.BB
14.8.8.1

Trend Micro House Call
HV_ZYX_BK08328F.TOMC
7.2.220

VIPRE Antivirus
Adware.Linkury
28350

File size:
146 KB (149,536 bytes)

Product version:
1.0.0.0

Original file name:
SmartbarInternetExplorerBHO.dll

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\user\appdata\local\smartbar\application\smartbarinternetexplorerbho.dll

Digital Signature
Signed by:

Authority:
COMODO CA Limited

Valid from:
7/31/2013 7:00:00 PM

Valid to:
8/1/2015 6:59:59 PM

Subject:
CN=ReSoft LTD., O=ReSoft LTD., STREET=4th Hanevi'im, L=Tel Aviv, S=Israel, PostalCode=64356, C=IL

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
51FA31336CEC649121E9A908289950D2

File PE Metadata
Compilation timestamp:
3/20/2014 7:36:10 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
6.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
1536:uIznuXlkpTX4TuQZNYRKUfAjtledhTmtaFyQHGvCXsedOGRc9izzr4yff8teLvHt:uITuXu9Ub6GvCi09s2o2skAieiV5ryMT

Entry address:
0x2420A

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.1230

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
137 KB (140,288 bytes)

Internet Explorer BHO
CLSID:
{31ad400d-1b06-4e33-a59a-90c2c140cba0}

CLSID name:
SmartbarInternetExplorerBHOEngine


The file SmartbarInternetExplorerBHO.dll has been discovered within the following programs.

Snap.Do  by ReSoft Ltd.
Snap.Do is a web browser addin/toolbar (depending on the browser it is installed within) that plugs into all the major web browsers including Internet Explorer, Chrome and Firefox. Snap.
snap.do
85% remove it
 
Powered by Should I Remove It?

There are 9 known versions of SmartbarInternetExplorerBHO.dll.

9 / 68      (Adware)
SmartbarInternetExplorerBHO.dll  1.0.0.0  (386efad34de840d164d12d7b21da5e4cb6cb6b8f)

9 / 68      (Adware)
SmartbarInternetExplorerBHO.dll  1.0.0.0  (44415c9a0bc82b19006986e2a35ecd229a60798c)

9 / 68      (Adware)
SmartbarInternetExplorerBHO.dll  1.0.0.0  (717d7bcf852059bf698cafe49bd3e6adccec300b)

6 / 68      (Adware)
SmartbarInternetExplorerBHO.dll  1.0.0.0  (212bf0b19735e9c47b6e48e79d836238f5370863)

6 / 68      (Adware)
SmartbarInternetExplorerBHO.dll  1.0.0.0  (602728989a2cffe79843f3db5484cf3c7a532448)

6 / 68      (Adware)
SmartbarInternetExplorerBHO.dll  1.0.0.0  (b50f7540b69a0f61421a463b4066cf6f069676fa)

7 / 68      (Adware)
SmartbarInternetExplorerBHO.dll  1.0.0.0  (4a9d10e62948f42e45087f26861d551c56d771cd)

6 / 68      (Adware)
SmartbarInternetExplorerBHO.dll  1.0.0.0  (1d6fe8659e4d81c588a8bdfe006005efd55ccbca)

6 / 68      (Adware)
SmartbarInternetExplorerBHO.dll  1.0.0.0  (b05f74a3892b5e39160ba71f7737455512387e6b)

7 / 68      (Adware)
muvic.exe  (d329850fc26f93566b763bb78976fe0ad936d132)

10 / 68    (Adware)
Smartbar.Infrastructure.Core.dll  (ad0b4f20f53713348c038ebc007e8925045be5fe)

6 / 68      (Adware)
Smartbar.Resources.AutomaticUpdates.dll  (3673354d5231b05490922f9b5c4fe6a19496fc49)

7 / 68      (Adware)
Smartbar.Infrastructure.Utilities.dll  (59d7599fbad9b825ab8d1e1cedf5313605f541c9)

2 / 68      (Adware)
Smartbar.Personalization.Settings.PersonalizationSettingsManager.dll  (c5779804ae30100407bbdd4c89cdac3d2039125e)

10 / 68    (Adware)
Smartbar.Resources.HistoryAndStatsWrapper.dll  (79c0e5ce2edc324c58238d281cde3b372fc40925)

6 / 68      (Adware)
Smartbar.Resources.SetBrowsersSettingsAutoUpdater.dll  (55f6b5c7b5e632f317d31ce5aad73e14b2d645d4)

11 / 68    (Adware)
Smartbar.GUI.MainClient.dll  (66c08d84fa4c7466db5e092d615e5dfad5c47cc1)

7 / 68      (Adware)
Smartbar.Personalization.BusinessLogic.dll  (4bf25b7a5569fcc513d335ba68f0ae9106e73b10)

3 / 68      (Adware)
Smartbar.Personalization.Settings.UserSettingsManager.dll  (1a3ed0a8d2af708163a417b9818818274376d107)

6 / 68      (Adware)
Smartbar.Infrastructure.Plugins.Base.dll  (8e55da1d59f8dfba2f0fc6d2e90a94b1b2e36fa3)

2 / 68      (Adware)
Smartbar.Infrastructure.EventManager.dll  (dfca7efec43ba6d7f7d0f9a8e7ddc14ab18d3dac)

8 / 68      (Adware)
Smartbar.GUI.Controls.dll  (0590fd7322377029e1b8335b9c5535ab7653aa87)

6 / 68      (Adware)
Smartbar.Personalization.BusinessEntities.dll  (b25807ab36e395eaf1a0f61f0a67b9a806aeb95b)

6 / 68      (Adware)
Smartbar.Infrastructure.Plugins.ChromeLocalPlugin.dll  (93ff00b16f14829093af16c06451b92d629c3e16)

9 / 68      (Adware)
Smartbar.Resources.SetBrowsersSettings.dll  (fd16f1387d6d7ea38673491aab5260a7dfe91f6d)

Detection Incidence by Country