home

toolbar_x64.dll

VeriSign, Inc.

The module toolbar_x64.dll by VeriSign has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
VeriSign, Inc.  (signed and verified)

MD5:
2646b076c23a2393e13aa633f79d2ff9

SHA-1:
969232d1d2394c43b980ee199ca1cfd80b78731e

SHA-256:
ba79a457e563ccde3535a1a83b5a94a52f14f64a9f26a173a6d912fe18e5dc7d

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
4/24/2024 1:09:18 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Ask.Toolbar (M)
16.11.7.1

File size:
265.6 KB (271,944 bytes)

File type:
Dynamic link library (Win64 DLL)

Common path:
C:\Program Files\askpartnernetwork\toolbar\clm-sp\source\Program Files\askpartnernetwork\toolbar\toolbar_x64.dll

Digital Signature
Signed by:
VeriSign, Inc.

Authority:
VeriSign, Inc.

Valid from:
1/29/1996 2:00:00 AM

Valid to:
8/2/2028 1:59:59 AM

Subject:
OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US

Issuer:
OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US

Serial number:
70BAE41D10D92934B638CA7B03CCBABF

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
6144:UqU0m2oR1PTLtaY89iUFkJ50G4EAFtWkQE+2t0NvI6ut3e:XUUoTtnGkJ572FA2twvr

Entry point:
A2, 7E, 93, 28, F2, 9B, 29, EA, 1E, A7, 8D, 24, F4, D3, D4, 9B, 29, E9, 0F, 48, C8, 6C, A7, A9, 84, F5, 04, 89, 10, 20, 10, 04, 69, A6, 80, 00, 40, C4, 61, 19, 34, C9, A1, A0, 34, 10, C2, 6D, 00, 09, 93, 08, C4, C2, 69, A6, 00, 81, 91, 81, 34, D3, 13, 22, 66, 80, D3, 11, A0, 00, 4C, 00, 26, 0D, 04, 68, C8, D1, 82, 9B, 43, 26, A4, FD, 26, A6, DF, 3F, 20, F6, 45, FD, B6, DA, 78, D8, F9, 1E, 8A, C5, 3E, C5, 62, 2C, C4, C9, 93, 63, 70, D4, 2D, 65, BA, A4, 16, B9, ED, 3C, 69, F9, 4E, 13, 9E, 39, 6E, A6, BC, 09...
 
[+]

Entropy:
7.8782  (probably packed)

Remove toolbar_x64.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.