toolbarupdaterservice.exe

The application toolbarupdaterservice.exe has been detected as a potentially unwanted program by 2 anti-malware scanners. It runs as a separate (within the context of its own process) windows Service named “Updater Service for EazelBar”. This file is typically installed with the program EazelBar by Vittalia Internet, SLU which is a potentially unwanted software program.
MD5:
067d63bb81dc675f53541166b8c0ff57

SHA-1:
676ca5bcd7448cfdb7ff3d44958979558c4e703b

SHA-256:
904b937ed5c9cfedd824f4a30fb9f7e5e6184ea754b5e6ccf0fc632585381220

Scanner detections:
2 / 68

Status:
Potentially unwanted

Analysis date:
11/25/2017 2:42:37 AM UTC  (today)

Scan engine
Detection
Engine version

Dr.Web
Adware.Toolbar.176
9.0.1.038

Reason Heuristics
PUP.Eazelbar (M)
16.10.26.11

File size:
217.5 KB (222,720 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\eazelbar\toolbarupdaterservice.exe

File PE Metadata
Compilation timestamp:
4/18/2013 7:09:25 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
3072:Kb8Ei2iRA7LA7y0cXz6skubMym5YoKFzLNWOmuDV+QwE7ZW0Gl/++Zp4v:Ky2Nv6sbMyaKFzLQ1WVNZW0GlzZpS

Entry address:
0x10E4B

Entry point:
E8, 22, 52, 00, 00, E9, 79, FE, FF, FF, 8B, FF, 55, 8B, EC, 6A, 00, FF, 75, 08, FF, 15, E8, 11, 42, 00, 85, C0, 75, 08, FF, 15, 30, 11, 42, 00, EB, 02, 33, C0, 85, C0, 74, 0C, 50, E8, 50, 0E, 00, 00, 59, 83, C8, FF, 5D, C3, 33, C0, 5D, C3, 8B, FF, 55, 8B, EC, 53, 56, 8B, 75, 08, 57, 33, FF, 83, CB, FF, 3B, F7, 75, 1C, E8, 07, 0E, 00, 00, 57, 57, 57, 57, 57, C7, 00, 16, 00, 00, 00, E8, 8F, 0D, 00, 00, 83, C4, 14, 0B, C3, EB, 42, F6, 46, 0C, 83, 74, 37, 56, E8, 08, 59, 00, 00, 56, 8B, D8, E8, CF, 58, 00, 00...
 
[+]

Entropy:
6.1409

Code size:
126 KB (129,024 bytes)

Service
Display name:
Updater Service for EazelBar

Type:
Win32OwnProcess


The file toolbarupdaterservice.exe has been discovered within the following programs.

EazelBar  by Vittalia Internet, SLU
EazelBar is a web browser plugin for Intenet Explorer and Firefox. The toolbar collects and stores information about your web browsing habits and sends this information to Conduit so they can suggest services or provide advertising via the toolbar.
search.eazel.com
63% remove it
 
Powered by Should I Remove It?

The executing file has been seen to make the following network communication in live environments.

TCP (HTTP):
Connects to ec2-54-72-9-51.eu-west-1.compute.amazonaws.com  (54.72.9.51:80)

Remove toolbarupdaterservice.exe - Powered by Reason Core Security