uninstalldt.exe

Search Results, LLC

The application uninstalldt.exe, “Uninstall DefaultTab” by Search Results has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a self-extracting archive and installer and has been known to bundle potentially unwanted software. This is the uninstaller utility registered in the Windows Control Panel for the program DefaultTab by Search Results, LLC.
Publisher:
Search Results, LLC  (signed and verified)

Product:
Search Results, LLC

Description:
Uninstall DefaultTab

Version:
1.0.6.0

MD5:
10a89c8567cc2655115e23bd4ca956bd

SHA-1:
1e5cb57ea49d5775b26a5735bfc4c64fe5c45328

SHA-256:
fe06b44619c3fef89bdd9df2148ecfaa7c171ca3e4620e322ac24d90c429c913

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
11/27/2024 12:37:20 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
16.11.26.10

File size:
621.6 KB (636,552 bytes)

Product version:
1.0.2.0

Copyright:
Search Results, LLC

Trademarks:
Search Results, LLC

Original file name:
uninstalldt.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\roaming\defaulttab\defaulttab\uninstalldt.exe

Digital Signature
Authority:
COMODO CA Limited

Valid from:
4/25/2012 2:00:00 AM

Valid to:
4/26/2014 1:59:59 AM

Subject:
CN="Search Results, LLC", O="Search Results, LLC", STREET="2751 Hennepin Ave S #252", L=Minneapolis, S=MN, PostalCode=55405, C=US

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00B6815DF3B6D64839E008D65B53EF0170

File PE Metadata
Compilation timestamp:
6/20/1992 12:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
12288:7pG44ICVjh1dXiyBGJa3pigJiPrEUXgdUv0oeeCZnwMGU/cmayQhX/:444ICVjz5mepiks19WdwMj/vxoX/

Entry address:
0x192001

Entry point:
60, E8, 03, 00, 00, 00, E9, EB, 04, 5D, 45, 55, C3, E8, 01, 00, 00, 00, EB, 5D, BB, ED, FF, FF, FF, 03, DD, 81, EB, 00, 20, 19, 00, 83, BD, 88, 04, 00, 00, 00, 89, 9D, 88, 04, 00, 00, 0F, 85, CB, 03, 00, 00, 8D, 85, 94, 04, 00, 00, 50, FF, 95, A9, 0F, 00, 00, 89, 85, 8C, 04, 00, 00, 8B, F0, 8D, 7D, 51, 57, 56, FF, 95, A5, 0F, 00, 00, AB, B0, 00, AE, 75, FD, 38, 07, 75, EE, 8D, 45, 7A, FF, E0, 56, 69, 72, 74, 75, 61, 6C, 41, 6C, 6C, 6F, 63, 00, 56, 69, 72, 74, 75, 61, 6C, 46, 72, 65, 65, 00, 56, 69, 72, 74...
 
[+]

Packer / compiler:
ASPack v2.12

Code size:
1.3 MB (1,350,144 bytes)

Program Uninstaller
Program name:
DefaultTab

Display publisher:
Search Results, LLC

Display version:
2.3.7.0

Uninstall string:
"C:\users\{user}\appdata\roaming\defaulttab\defaulttab\uninstalldt.exe"


Remove uninstalldt.exe - Powered by Reason Core Security