srprl.dll

srprl

Resoft Ltd

The module srprl.dll by Resoft has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. Additionally, the file is typically installed by a number of programs including Snap.Do by ReSoft Ltd. and LPT System Updater Service by Linkury Ltd., both potentially unwanted software.
Publisher:
Resoft Ltd  (signed and verified)

Product:
srprl

Version:
1.0.0.0

MD5:
31153fa0db29b175792ca22a76298cb1

SHA-1:
0a3e9efd505746784f15aa9a4a6e1d4da1f8b60d

SHA-256:
5517c95135fa0c3af084fcff32ed160ab231a7087b8834addf306c2ddce6715b

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
12/24/2024 12:15:44 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Resoft (M)
16.5.19.11

File size:
53 KB (54,288 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © 2012

Original file name:
srprl.dll

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\local\smartbar\application\srprl.dll

Digital Signature
Signed by:

Authority:
COMODO CA Limited

Valid from:
7/27/2014 2:00:00 AM

Valid to:
7/28/2015 1:59:59 AM

Subject:
CN=Resoft Ltd, OU=514841295, O=Resoft Ltd, STREET=Shenkar 14, L=Hertzlya, S=TLV, PostalCode=4672514, C=IL

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00B62CA8A9ACC55E3B44E1AF28CC92345B

File PE Metadata
Compilation timestamp:
10/23/2014 3:41:10 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
6.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
768:pq5uk+tKeHHdn66YYtKX4cBRahYssfA8Xfp/z40YjIx5IGkWgMEHQY:pq5sKec6GX4ueYnA8Xfp/z40r5gWiHQY

Entry address:
0xCEA2

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
44 KB (45,056 bytes)

The file srprl.dll has been discovered within the following programs.

LPT System Updater Service  by Linkury Ltd.
This is a potentially unwanted web browser extension this is distributed and installed by PINWID LTD, ReSoft LTD., MY POP SHOP LTD and Linkury. It will display advertisements including banners and popups in the user's web browser.
81% remove it
Snap.Do  by ReSoft Ltd.
Snap.Do is a web browser addin/toolbar (depending on the browser it is installed within) that plugs into all the major web browsers including Internet Explorer, Chrome and Firefox. Snap.
snap.do
85% remove it
 
Powered by Should I Remove It?

Remove srprl.dll - Powered by Reason Core Security