What is OfferBLVD?

OfferBLVD is software application developed by ReSoft Ltd.. It is most commonly found on computers running Windows 10 with nearly 60.00% of installations running this operating system. OfferBLVD's installer is typically 1.00 MB in size and installs around 8 files. The most common release is 1.0.6.5 with 56.00% of all installations currently using this version.

OfferBLVD is most popular in India with 31.03% of installations residing in this country.

OfferBLVD adds 1 scheduled task to the Windows Task Scheduler launching the program at randomly scheduled times.

About OfferBLVD?

OfferBLVD, also known as SnapDo, is a Smartbar adware application distributed by the same distributor as Linkury by Resoft. This adware software is designed to display unwanted ads, potentially unwanted programs (PUPs), and other offers. Once installed, OfferBLVD integrates into the user's web browser using various methods and delivers ads such as banner ads, text-links, coupons, price comparisons, and other offers. These ads may be injected into the browser itself or displayed as pop-ups outside of the browser. In some cases, the source of the ad is attributed, but in most cases, it is not, potentially leading to confusion for the user. According to ReSoft, OfferBLVD is marketed as a solution for users who compare prices while browsing the web. It is described as an advanced, dynamic, and user-friendly tool that automatically offers the best prices and coupons for the products being shopped for online. OfferBLVD aims to help users save money effortlessly and is offered as a free tool.

Multiple virus scanners have detected malware in OfferBLVD.

OfferBLVD.exe (MD5: 03edc2a7a007dc2f7bd8382c28fdff60) has been flagged by 37 scanners:

Scanner Software	Version	Result
Lavasoft Ad-Aware	663	Trojan.Generic.12954911
ALYac	1.0.1.4	Trojan.Generic.12954911
avast!	2014.9-150413	Win32:GenMaliciousA-FSK [Adw]
AVG	2016.0.3141	Generic6
AVware	1.5.0.21	Adware.Linkury (fs)
Baidu-International	4.0.3.15413	PUA.Win32.Ag.81
Bitdefender	1.0.20.515	Trojan.Generic.12954911
Cyren	5.4.16.7	W32/GenPua.03EDC2A7!Olympus
Emsisoft Anti-Malware	8.15.04.13.01	Trojan.Generic.12954911
ESET-NOD32	9.11462	a variant of MSIL/Toolbar.Linkury.M potentially unwanted
F-Secure	11.2015-13-04_2	Trojan.Generic.12954911
G Data	15.4.25	Trojan.Generic.12954911
Jiangmin	KV150413	AdWare/MSIL.chx
Kaspersky	14.0.0.2200	not-a-virus:HEUR:AdWare.MSIL.DealPly
McAfee	5600.6797	RDN/Generic PUP.z!fn
McAfee-GW-Edition	7.6797	RDN/Generic PUP.z!fn
MicroWorld-eScan	16.0.0.309	Trojan.Generic.12954911
NANO AntiVirus	0.30.10.952	Riskware.Win32.Toolbar.dnrlcd
nProtect	15.04.10.01	Trojan.Generic.12954911
Panda Antivirus	15.04.13.01	Generic Suspicious
Symantec	4/13/2015 rev. 2	Trojan.Gen
Tencent	1.0.0.1	Msil.Adware.Dealply.Glx
Trend Micro	10.465.13	TROJ_GEN.R002C0OCG15
TrendMicro-HouseCall	7.2.103	TROJ_GEN.R002C0OCG15
VIPRE Antivirus	39274	Adware.Linkury (fs)
Agnitum Outpost	5.5.1.3	PUA.Toolbar.Linkury!
Avira	8.3.1.6	TR/Kazy.468568
CAT-QuickHeal	14.00	AdWare.MSIL.r3 (Not a Virus)
Comodo Security	22989	UnclassifiedMalware
Fortinet FortiGate	5.1.220.0	Adware/Linkury
K7 AntiVirus	9.208.16865	Trojan ( 700000121 )
K7GW	9.208.16866	Trojan ( 700000121 )
Qihoo-360	1.0.0.1015	Win32/Trojan.554
Rising Antivirus	25.0.0.17	PE:Trojan.Win32.Generic.1784AD16!394571030
Sophos	4.98.0	Generic PUA MG (PUA)
SUPERAntiSpyware	5.6.0.1032	Adware.Linkury/Variant
Total Defense	37.1.62.1	Heur/TrojanHorse.ZCHY!suspicious

OfferBLVDW.exe (MD5: f9776683ca262da6e4113410c3f78f25) has been flagged by 26 scanners:

Scanner Software	Version	Result
Agnitum Outpost	5.5.1.3	PUA.Toolbar.Linkury!
avast!	8.0.1489.320	Win32:PUP-gen [PUP]
Avira	8.3.1.6	TR/Kazy.468568
AVware	1.5.0.21	Trojan.Win32.Generic!BT
Baidu-International	3.5.1.41473	Adware.MSIL.Linkury.M
CAT-QuickHeal	14.00	AdWare.MSIL.r3 (Not a Virus)
Comodo Security	22989	UnclassifiedMalware
ESET-NOD32	12083	a variant of MSIL/Toolbar.Linkury.M.gen potentially unwanted
Fortinet FortiGate	5.1.220.0	Adware/Linkury
G Data	25	Win32.Application.SmartBar.D
Jiangmin	16.0.100	AdWare/MSIL.fep
K7 AntiVirus	9.208.16865	Trojan ( 700000121 )
K7GW	9.208.16866	Trojan ( 700000121 )
Kaspersky	15.0.1.10	not-a-virus:AdWare.MSIL.PennyBee.o
McAfee	6.0.5.614	Artemis!F9776683CA26
McAfee-GW-Edition	v2015	Artemis!PUP
NANO AntiVirus	0.30.24.3079	Trojan.Win32.Kazy.dhorhg
Panda Antivirus	4.6.4.2	Trj/CI.A
Qihoo-360	1.0.0.1015	Win32/Trojan.554
Rising Antivirus	25.0.0.17	PE:Trojan.Win32.Generic.1784AD16!394571030
Sophos	4.98.0	Generic PUA MG (PUA)
SUPERAntiSpyware	5.6.0.1032	Adware.Linkury/Variant
Symantec	20141.2.0.56	Trojan.Gen.2
Total Defense	37.1.62.1	Heur/TrojanHorse.ZCHY!suspicious
Trend Micro	9.740.0.1012	TROJ_GEN.R0C1C0EGJ15
VIPRE Antivirus	42818	Trojan.Win32.Generic!BT

Software Behaviors

Services:

OfferBLVD.exe runs as a service named 'OfferBLVD service' (OfferBLVD) "OfferBLVD".

Scheduled tasks:

PackerV2.exe is scheduled as a task with the class '{E8A6ACAA-971F-489F-9739-8126987AB711}' (runs on registration).

Software Details

URL:

https://www.offerblvd.com

Support:

–

Installation path:

C:\Program Files\offerblvd

Uninstaller:

C:\Program Files\OfferBLVD\uninstall.exe

Size:

1.00 MB

Language:

English

OfferBLVD Executable Details

Primary executable:

OfferBLVD.exe

Name:

OfferBLVD

Path:

C:\Program Files\offerblvd\OfferBLVD.exe

MD5:

03edc2a7a007dc2f7bd8382c28fdff60

SHA-1:

–

SHA-256:

–

File Type

Filename

MD5

EXE

uninstall.exe

c8979769eaa80840e869610bf6c4739a

EXE

smia64.exe

9643b8aaab7deef86ce0faaff36db76c

DLL

DPHelper.dll

2bff97c12342e8eb70cd520e8b67f36d

EXE

PennyBeeW.exe

02418c3533493e0ac6df342d64186d4d

EXE

PackerV2.exe

005090b72162a8ea3f09ff1611f21780

EXE

OfferBLVD.exe

Malware

03edc2a7a007dc2f7bd8382c28fdff60

EXE

OfferBLVDW.exe

Malware

f9776683ca262da6e4113410c3f78f25

EXE

OfferBLVDU.exe

40134f1969e15959282e1a4475c5d740