home

DefaultTabWrap.dll

Search Results

Search Results, LLC

The file DefaultTabWrap.dll by Search Results has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Search Results LLC.  (signed by Search Results, LLC)

Product:
Search Results

Version:
1.8.4.5

MD5:
174b32e9940bdfe3e633d89086705315

SHA-1:
2245c1cf16338cbf36ed25103cbd9961d8815e52

SHA-256:
3af7898b8758d9904fed6ef9520570fd49918b128368fa81a1448dc3f72adf90

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
4/16/2024 3:56:21 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
16.9.30.17

File size:
514.6 KB (526,968 bytes)

Product version:
1.8.4.5

Copyright:
Search Results LLC. All rights reserved.

Original file name:
DefaultTabWrap.dll

Language:
English (United States)

Common path:
C:\ProgramData\avg2012\temp\avg-6ebc8477-deaf-4d3a-9458-a0485810dd59.tmp

Digital Signature
Signed by:
Search Results, LLC

Authority:
COMODO CA Limited

Valid from:
4/25/2012 3:00:00 AM

Valid to:
4/26/2014 2:59:59 AM

Subject:
CN="Search Results, LLC", O="Search Results, LLC", STREET="2751 Hennepin Ave S #252", L=Minneapolis, S=MN, PostalCode=55405, C=US

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00B6815DF3B6D64839E008D65B53EF0170

File PE Metadata
Compilation timestamp:
1/23/2014 9:43:08 PM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
12288:DbKAoLrefx1T7iacLmmaSxA+Ys/d7o+WvE7RHD4B+ES:DbKAoHefxtXSxRV7o+6aRHD4MES

Entry address:
0x36694

Entry point:
7B, FB, C9, 4C, 97, 17, 41, EE, A4, 24, E7, 97, 63, 81, F8, 00, 05, 7A, 37, ED, 23, E3, C4, BC, 4B, 2D, 06, C9, 8A, A1, 02, 5B, 90, 76, E7, E5, 24, 22, F1, F8, 93, F8, 57, 85, 4F, 39, 9C, A6, 7F, 85, 42, 8F, C2, BA, E9, C1, 45, 2B, 19, B6, 47, 45, 14, 56, E4, 85, 00, E2, 8A, 28, 02, 48, F7, BB, 04, 55, 2C, C7, 80, 00, C9, 34, F2, 86, 26, 1B, D5, 90, 8F, EF, 0C, 57, B6, 6B, 9A, 5E, 9D, E0, FF, 00, D9, 5F, C1, BA, 86, 94, 90, 49, AE, 78, AB, 5A, BF, 4D, 42, E8, AA, 3C, B0, C3, 6A, B0, 79, 51, 29, 23, 28, 0B...
 
[+]

Entropy:
7.8557  (probably packed)

Code size:
331.5 KB (339,456 bytes)

Remove DefaultTabWrap.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.