How to remove $RSTZUB0.dll

$RSTZUB0.dll

The module $RSTZUB0.dll has been detected as Adware.ELEX

$RSTZUB0.dll
Remove $RSTZUB0.dll

File Details

Product Name:

Network Security Services
Company Name:

Mozilla Foundation
MD5: 5caff847d44cfa05c7503c6b1ab165ba
Size: 401 KB
First Published: 2017-05-21 04:03:35 (7 years ago)
Latest Published: 2019-04-10 02:33:02 (5 years ago)
Status: Adware.ELEX (on last analysis)
Analysis Date: 2019-04-10 02:33:02 (5 years ago)

Overview

Signed By: Mengmeng Wang
Status: Valid

Common Places:

%programfiles%\firefox
%sysdrive%\adwcleaner\quarantine\files\elpsmjvvmbctzuzgymreqtfnlrfefdyb
%profile%\dropbox\farina\backup c\adwcleaner\quarantine\files\elpsmjvvmbctzuzgymreqtfnlrfefdyb
%sysdrive%\$recycle.bin\s-1-5-21-1992274373-2149420621-907573384-1000
%sysdrive%\adwcleaner\quarantine\files\qivticfbhplowovmvofwbvcmqdkrzqie
%sysdrive%\adwcleaner\quarantine\files\brtzueofziatokksflqoyuuhpwqqkxer
%sysdrive%\adwcleaner\quarantine\files\ukyiiewribfnwsfajtujlibnuipogenb
%programfiles%\5901eb50_jumpeasy\sdirec
%programfiles%
%programfiles%\5901c7ea_jumpeasy

File Names:

nssckbi.dll
$RSTZUB0.dll

Geography:

18.5%
14.8%
11.1%
11.1%
11.1%
11.1%
7.4%
3.7%
3.7%
3.7%
3.7%

OS Version:

Windows 7 48.1%
Windows 10 37.0%
Windows XP 11.1%
Windows 8 3.7%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x10000000
Entry Address: 0x0000a91c

PE Sections:

Name Size of data MD5
.text 41984 c862c5fdd62bfc7d6c1a66668fdd0c62
.rdata 324608 0d29c4daf9bfcf9a955ea37d17c24252
.data 24064 debef1a3aa9be0ffb1af8716d82c51ff
.gfids 512 a92cc8ed8c85d36fee9303020b9c9396
.rsrc 1024 af1b0c9cbc517a9e991dd2c5cd8b7198
.reloc 12288 af45fdb6b1cba7fd30c91103b9b733bf

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for $RSTZUB0.dll
copyright for information about $RSTZUB0.dll