V-bates

Known Toolbar

What is V-bates?

V-bates is software application developed by Bit Cocktail Ltd.. It is most commonly found on computers running Windows 7 with nearly 54.90% of installations running this operating system. V-bates's installer is typically 5.00 MB in size and installs around 19 files. The most common release is 2.0.0.442 with 70.99% of all installations currently using this version.

V-bates is most popular in the United States with 67.62% of installations residing in this country.

V-bates adds 1 scheduled task to the Windows Task Scheduler launching the program at randomly scheduled times.

About V-bates?

The Wajamu toolbar/web browser extension is an ad/search-supported tool commonly installed as an optional offer, often bundled with third-party software. Upon installation, the toolbar will adjust the home page and new tab pages to an affiliate search portal utilizing a primary search engine to generate shared search revenue. It will also modify the default search provider. It should be noted that this add-on is installed into Firefox and Chrome silently, which goes against the Add-on Guidelines.

Multiple virus scanners have detected malware in V-bates.

notifier.exe (MD5: afe8f17cb9444b2f78681e4cb9a71c9c) has been flagged by 11 scanners:

Scanner Software	Version	Result
Lavasoft Ad-Aware	12.0.163.0	Adware.SearchGuard.B
AVG	14.0.0.3986	Wajamu.F3D
AVware	1.5.0.16	Wajamu (fs)
Baidu-International	3.5.1.41473	Adware.Win32.BitCocktail.81
Bitdefender	7.2	Adware.SearchGuard.B
Emsisoft Anti-Malware	3.0.0.600	Adware.SearchGuard.B (B)
F-Secure	11.0.19100.45	Adware.SearchGuard.B
G Data	24	Adware.SearchGuard.B
MicroWorld-eScan	12.0.250.0	Adware.SearchGuard.B
nProtect	2014-07-30.01	Adware.SearchGuard.B
VIPRE Antivirus	31776	Wajamu (fs)

Extension64.dll (MD5: 6047ff74d5f44577390893cb1ecbc5ea) has been flagged by 15 scanners:

Scanner Software	Version	Result
Lavasoft Ad-Aware	12.0.163.0	Adware.SearchGuard.B
AVG	14.0.0.3986	Wajamu.F3D
AVware	1.5.0.16	Wajamu (fs)
Baidu-International	3.5.1.41473	Adware.Win32.Agent.40
Bitdefender	7.2	Adware.SearchGuard.B
Emsisoft Anti-Malware	3.0.0.600	Adware.SearchGuard.B (B)
F-Secure	11.0.19100.45	Adware.SearchGuard.B
G Data	24	Adware.SearchGuard.B
McAfee	6.0.4.564	Artemis!6047FF74D5F4
McAfee-GW-Edition	2013	Artemis!6047FF74D5F4
MicroWorld-eScan	12.0.250.0	Adware.SearchGuard.B
nProtect	2014-07-31.01	Adware.SearchGuard.B
TrendMicro-HouseCall	9.700.0.1001	Suspicious_GEN.F47V0701
VIPRE Antivirus	31782	Wajamu (fs)
Symantec	20131.1.5.61	WS.Reputation.1

ExtensionUpdaterService.exe (MD5: cf66ca0b94d9ca6f02aa36f78aca5542) has been flagged by 17 scanners:

Scanner Software	Version	Result
AVG	2015.0.3390	Wajamu
Baidu-International	4.0.3.1486	Adware.Win32.BitCocktail.81
ESET-NOD32	8.10123	a variant of Win32/Toolbar.BitCocktail.B
Malwarebytes	v2014.08.06.09	PUP.Optional.SweetPacks.A
VIPRE Antivirus	31426	Wajamu (fs)
Lavasoft Ad-Aware	12.0.163.0	Adware.SearchGuard.B
AVware	1.5.0.16	Wajamu (fs)
Bitdefender	7.2	Adware.SearchGuard.B
Emsisoft Anti-Malware	3.0.0.600	Adware.SearchGuard.B (B)
F-Secure	11.0.19100.45	Adware.SearchGuard.B
G Data	24	Adware.SearchGuard.B
McAfee	6.0.4.564	Artemis!6047FF74D5F4
McAfee-GW-Edition	2013	Artemis!6047FF74D5F4
MicroWorld-eScan	12.0.250.0	Adware.SearchGuard.B
nProtect	2014-07-31.01	Adware.SearchGuard.B
TrendMicro-HouseCall	9.700.0.1001	Suspicious_GEN.F47V0701
Symantec	20131.1.5.61	WS.Reputation.1

Extension32.dll (MD5: 81391e0177f7f853f89ac488fa6ab20d) has been flagged by 5 scanners:

Scanner Software	Version	Result
AVG	14.0.0.3986	Wajamu.F3D
AVware	1.5.0.16	Wajamu (fs)
Baidu-International	3.5.1.41473	Adware.Win32.Agent.40
G Data	24	Win32.Adware.Wajamu.B
VIPRE Antivirus	31726	Wajamu (fs)

guardsvc.exe (MD5: 257754e4713a1bed11d1d674106d8dc6) has been flagged by 11 scanners:

Scanner Software	Version	Result
Lavasoft Ad-Aware	12.0.163.0	Adware.SearchGuard.B
AVG	14.0.0.3986	Wajamu.F3D
AVware	1.5.0.16	Wajamu (fs)
Baidu-International	3.5.1.41473	Adware.Win32.Wajam.81
Bitdefender	7.2	Adware.SearchGuard.B
Emsisoft Anti-Malware	3.0.0.600	Adware.SearchGuard.B (B)
F-Secure	11.0.19100.45	Adware.SearchGuard.B
G Data	24	Adware.SearchGuard.B
MicroWorld-eScan	12.0.250.0	Adware.SearchGuard.B
nProtect	2014-07-30.01	Adware.SearchGuard.B
VIPRE Antivirus	31776	Wajamu (fs)

Software Behaviors

Services:: ExtensionUpdaterService.exe runs as a service named 'V-bates Updater' (V-bates Updater).
Scheduled tasks:: PrefHelper.exe is scheduled as a task named 'FF Watcher {5547EFC4-6E5D-4CB6-8978-1BBB0D295BD6}'.

Startup Entries

Startup tasks:: PrefHelper.exe is automatically launched at startup through a scheduled task named FF Watcher {047ACC18-6D1C-4A44-9029-AAD8CA307DC7}.

PrefHelper.exe is automatically launched at startup through a scheduled task named FF Watcher {14CABEE5-1F2F-447B-A633-274B777B84D7}.

Software Details

URL:: –
Support:: –
Installation path:: C:\Program Files\V-bates\
Uninstaller:: "C:\Program Files\V-bates\unins000.exe"
Size:: 5.00 MB
Language:: English

V-bates Executable Details

Primary executable:: ExtensionUpdaterService.exe
Name:: V-bates
Path:: C:\Program Files\V-bates\ExtensionUpdaterService.exe
MD5:: cf66ca0b94d9ca6f02aa36f78aca5542
SHA-1:: –
SHA-256:: –

Files installed by V-bates

File Type	Filename	MD5
EXE	unins000.exe	717e78c455ac2ee64060c6af9573ce1f
DLL	QtWebKit4.dll	9306c7873fb88df77d09e847c5ac9d3d
EXE	notifier.exe Malware	afe8f17cb9444b2f78681e4cb9a71c9c
DLL	InstallerHelper.dll	d196a5253c6f4c2af863178c2b59b88c
DLL	Extension64.dll Malware	6047ff74d5f44577390893cb1ecbc5ea
EXE	ExtensionUpdaterService.exe Malware	cf66ca0b94d9ca6f02aa36f78aca5542
DLL	Extension32.dll Malware	81391e0177f7f853f89ac488fa6ab20d
EXE	DGChrome.exe	c7f40fc7f9968f74ba320a63578eded0
CRX	source.crx	81792b6e2ae9bf716d9e4ded73ec52b8
DLL	IssSurvey.dll	25d0b2f54f0605c227d9e75c07878e7a

Repair V-bates

Having issues with V-bates?

We recommend Fortect System Repair to automatically fix these issues

Download Now

Popularity

20% of users keep V-bates installed

Overall Rating

Bad

Known Versions (3)

2.0.0.438: 9.16%
2.0.0.444: 19.85%
2.0.0.442: 70.99%

Geography Distribution