home

Snav.DLL

Snav Module

The module Snav.DLL has been detected as a potentially unwanted program by 14 anti-malware scanners. It is installed within the context of Internet Explore as a BHO (Browser Helper Object) under the name ‘Snav’.
Product:
Snav Module

Version:
1, 0, 0, 9

MD5:
afd74ba63778ecefdb2cc5cab101d4eb

SHA-1:
a2c316d4aeb6ebb5a4e79f46d5a957f48b84296c

Scanner detections:
14 / 68

Status:
Potentially unwanted

Analysis date:
4/30/2024 12:59:28 PM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
TR/Spy.Agent.139371
7.9.1.53

Emsisoft A-Squared
Trojan-Spy.Agent.139371!IK
4.5.0.41

avast!
Win32:Spyware-gen
2014.9-170314

AVG
PSW.Agent
2018.0.2439

Comodo Security
UnclassifiedMalware
2832

ESET NOD32
Win32/Spy.Agent (variant)
11.4570

F-Secure
Application.Generic.28640
11.2017-14-03_3

G Data
Win32:Spyware-gen
17.3.19

IKARUS anti.virus
Trojan-Spy.Agent.139371
t3scan.1.1.72.0

K7 AntiVirus
Trojan.Win32.Malware.1
13.7.10.887

McAfee
potentially unwanted program Generic PUP
5600.6095

nProtect
Trojan-PWS/W32.WebGame.139383
2009.1.8.0

Panda Antivirus
Trj/CI.A
17.03.14.05

Quick Heal
Trojan.Agent.ATV
3.17.10.00

File size:
136.1 KB (139,383 bytes)

Product version:
1, 0, 0, 9

Copyright:
Copyright 2006

Original file name:
Snav.DLL

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\Windows\System32\snav.dll

Registration
CLSID:
{635A7AFA-FB22-4A4E-8AB8-C85CFAB14626}

ProgID:
Snav.SearchHook.1

COM registered:
Yes

File PE Metadata
Compilation timestamp:
10/11/2007 3:17:50 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

Entry address:
0xD93D

Entry point:
55, 8B, EC, 53, 8B, 5D, 08, 56, 8B, 75, 0C, 57, 8B, 7D, 10, 85, F6, 75, 09, 83, 3D, E8, AC, 01, 10, 00, EB, 26, 83, FE, 01, 74, 05, 83, FE, 02, 75, 22, A1, 04, AD, 01, 10, 85, C0, 74, 09, 57, 56, 53, FF, D0, 85, C0, 74, 0C, 57, 56, 53, E8, 15, FF, FF, FF, 85, C0, 75, 04, 33, C0, EB, 4E, 57, 56, 53, E8, 86, 37, FF, FF, 83, FE, 01, 89, 45, 0C, 75, 0C, 85, C0, 75, 37, 57, 50, 53, E8, F1, FE, FF, FF, 85, F6, 74, 05, 83, FE, 03, 75, 26, 57, 56, 53, E8, E0, FE, FF, FF, 85, C0, 75, 03, 21, 45, 0C, 83, 7D, 0C, 00...
 
[+]

Entropy:
5.3219

Developed / compiled with:
Microsoft Visual C++ 6.0

Code size:
60 KB (61,440 bytes)

Internet Explorer BHO
Display name:
Snav

CLSID:
{635A7AFA-FB22-4A4E-8AB8-C85CFAB14626}

CLSID name:
SearchHook Class


Remove Snav.DLL - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.