home

toolbar1.dll

Zorba Networks SL

The module toolbar1.dll by Zorba Networks SL has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This file is typically installed with the program RechercherWeb Toolbar by Conduit Ltd. which is a potentially unwanted software program.
Publisher:
Zorba Networks SL  (signed and verified)

MD5:
0b870e94c8af093863a84ebc25fcf724

SHA-1:
81d4cdf4bb9dcf6ebedb2d4ac52d82d0a9e6fa13

SHA-256:
9267ae86546e3b0a38e0ac948efebf0544829eabd9470f0c467d9ff6a5c3f6e6

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
4/24/2024 8:39:49 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.ZorbaNetworks (M)
16.2.4.4

File size:
45.2 KB (46,296 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\Program Files\rechercherweb toolbar\toolbar1.dll

Digital Signature
Signed by:
Zorba Networks SL

Authority:
The USERTRUST Network

Valid from:
12/1/2010 1:00:00 AM

Valid to:
12/2/2011 12:59:59 AM

Subject:
CN=Zorba Networks SL, O=Zorba Networks SL, STREET=Jativa 11, L=Madrid, S=Madrid, PostalCode=28007, C=ES

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
00F76718D8D4283725CF8801D7DED56F05

File PE Metadata
Compilation timestamp:
12/4/2008 8:16:26 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
768:RQ/C64d6dZClwZIh+ah7TRBsX01iWoMRM7q/Lky:6Kk8lwZGh7T1HRM7iY

Entry address:
0x1285

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 17, 17, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, 8B, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, 80, AD, 00, 10, 89, 0D, 7C, AD, 00, 10, 89, 15, 78, AD, 00, 10, 89, 1D, 74, AD, 00, 10, 89, 35, 70, AD, 00, 10, 89, 3D, 6C, AD, 00, 10, 66, 8C, 15, 98, AD, 00, 10, 66, 8C, 0D, 8C, AD, 00, 10, 66, 8C, 1D, 68, AD, 00, 10, 66, 8C, 05, 64, AD, 00, 10, 66, 8C, 25, 60, AD, 00, 10, 66, 8C, 2D, 5C, AD, 00, 10, 9C, 8F, 05, 90, AD...
 
[+]

Code size:
25 KB (25,600 bytes)

The file toolbar1.dll has been discovered within the following program.

RechercherWeb Toolbar  by Conduit Ltd.
This is a Conduit toolbar installed in the user's Web browsers (IE, Chrome and Firefox) that collects and stores information about your web browsing habits and sends this information to Conduit so they can suggest services or provide ads via the toolbar.
64% remove it
 
Powered by Should I Remove It?

Remove toolbar1.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.