GridinSoft Threat Intelligence

Geo-Tough.dll threat report

Detected as Adware.Linkury File reputation report
MD5 098e1bcc85bb32d92f9d69327346672a
Latest seen 2024-11-24 23:00:56 (a year ago)
First seen 2017-05-21 05:04:17 (9 years ago)
Size 335 KB

GridinSoft Anti-Malware detection

Detected by GridinSoft before you download

The current ThreatInfo record shows this exact file hash detected as Adware.Linkury. Download GridinSoft Anti-Malware to scan the device, confirm whether this file is present, and remove the detected object if it is found.

Detection name
Adware.Linkury
Recommended action
Scan and remove
Last analysis
2024-11-24 23:00:56 (a year ago)
File hash
098e1bcc85bb32d92f9d69327346672a
Download Anti-Malware

Why it matters

Why GridinSoft flags this file

Detection

GridinSoft identifies the sample as Adware.Linkury.

Timeline

First seen 2017-05-21 05:04:17 (9 years ago); latest analysis 2024-11-24 23:00:56 (a year ago).

Aliases

This hash has appeared under multiple file names, which can happen with repackaging, bundling, or deliberate renaming.

Observed locations

ThreatInfo has seen this file in user or system paths listed below. Unexpected locations increase the need for local verification.

Recommended action

What to do next

  1. Compare the MD5 above with the file found on the device.
  2. Check whether the file appears in the observed locations or under one of the alternate names.
  3. Run GridinSoft Anti-Malware to confirm the detection and remove the file if it is present.

File context

Geo-Tough.dll is a Windows file recorded in the ThreatInfo database. The current detection status is Adware.Linkury, based on the latest analysis from 2024-11-24 23:00:56 (a year ago).

If Geo-Tough.dll appears on your computer unexpectedly, treat it as suspicious. Check its location, digital signature, and recent system changes before allowing it to run. A full anti-malware scan is recommended when this file is detected as Adware.Linkury.

File Details

MD5: 098e1bcc85bb32d92f9d69327346672a
Size: 335 KB
First Published: 2017-05-21 05:04:17 (9 years ago)
Latest Published: 2024-11-24 23:00:56 (a year ago)
Status: Adware.Linkury (on last analysis)
Analysis Date: 2024-11-24 23:00:56 (a year ago)

Detection screenshot

Geo-Tough.dll detection screenshot

The screenshot is a visual record of a GridinSoft Anti-Malware detection for this sample. Use the hash and metadata above as the primary identifiers when comparing the file on your system.

Common Places:

%commonappdata%\hotfresh
%commonappdata%\plusdax
%commonappdata%\appxadsulp
%commonappdata%\utatity
%commonappdata%\subair
%commonappdata%\voyasollam
%commonappdata%\appmallosayov
%commonappdata%\locep
%commonappdata%\affenpinscher
%commonappdata%\hayzumflex

ThreatInfo has observed Geo-Tough.dll in the locations listed above. Files found in temporary folders, user profile folders, startup locations, or unusual application directories should be reviewed more carefully than files installed under a known program directory.

File Names:

903 observed names
dripdox.dll Mat-Touch.dll tamptone.dll Hotnix.dll Rankeytop.dll Unosing.dll Unofintip.dll toughlight.dll StatIs.dll sumplus.dll Joblam.dll techin.dll Trustdamis.dll GeoTrax.dll CanQvokix.dll sanbam.dll Voyahome.dll stanplus.dll Truelatnix.dll Joyphase.dll driptam.dll RanHotsoft.dll vialam.dll Whiteflex.dll Canair.dll PlusAnstock.dll Lastock.dll Zonesailtrax.dll keyplus.dll IsFinnix.dll Lamquosing.dll Dingsoft.dll Fasestock.dll Freshtanfan.dll Confind.dll SunCof.dll x-eco.dll Saltcom.dll ZamIs.dll Greenhome.dll zunsoft.dll Tan-Ron.dll Matdom.dll hottrax.dll Konktip.dll Alphaing.dll Jaytrax.dll Tranlab.dll Tanlux.dll Zathtone.dll dalttouch.dll lambam.dll Betaair.dll String-Eco.dll Zoostock.dll Zundex.dll LamKaystock.dll RunEx.dll Geoplus.dll newcom.dll Alphaity.dll freshtop.dll KeyLatex.dll Trislex.dll Stimphase.dll Inchit.dll Fasetax.dll Icela.dll Hot-Hold.dll qvostring.dll labfax.dll Vol-La.dll Anhold.dll Stimit.dll Conzap.dll KinSanlux.dll goldhome.dll Conhold.dll rerantech.dll Sanfix.dll driptip.dll Lamlex.dll Zoomtax.dll Hotlab.dll Freetom.dll Daltnamlight.dll Zonelax.dll homefax.dll RedDanplus.dll ron-fix.dll Cofcom.dll zimhome.dll Toughsoft.dll UnaBam.dll Lexicof.dll Openstrong.dll Overit.dll Voltranlab.dll flexhome.dll topcof.dll Fin-Fax.dll VentoCom.dll Laflex.dll BioStatlight.dll Quotejob.dll alphahotnix.dll Unohome.dll Freshair.dll Goodtontip.dll geotip.dll indigolab.dll Ranfix.dll nimla.dll Homesailkix.dll Icecom.dll blue-nix.dll stringla.dll Treetone.dll alphatone.dll zunjaysing.dll softis.dll subsilcof.dll FreeCore.dll saltquaddom.dll plusdox.dll lexifind.dll La-Dex.dll sol-eco.dll HotCanjob.dll Fixhome.dll quadis.dll Haydox.dll Hayair.dll Funity.dll U-tax.dll Lexidom.dll Uniex.dll Stattom.dll Biosunphase.dll gravetough.dll sailstrong.dll DongLux.dll Isair.dll Konklight.dll Stockflex.dll Silfan.dll LamFan.dll dentoflex.dll Tree-Lex.dll Zathflex.dll Tipnix.dll OpeRunla.dll Lotcore.dll Soltech.dll Warmlex.dll StrongLax.dll zoophase.dll Zoom-Dox.dll Qvohold.dll icelax.dll Zumron.dll Tripple-Tom.dll Greenity.dll Lotlux.dll Joyquoing.dll Xxx-tonzap.dll Zonelight.dll Roundzunla.dll tan-phase.dll StrongTancore.dll Whitehold.dll SaoDamtrax.dll JaySolofind.dll Indigolex.dll Daltlam.dll zonron.dll Xxx-ex.dll Goldtrax.dll Ranktip.dll BamQvolex.dll vaiasolflex.dll FaxTex.dll dripdex.dll stimtax.dll Ap-Dex.dll Isronstring.dll Silverlab.dll tripplezenfind.dll Touchin.dll Freshtam.dll Overtech.dll joysing.dll Vivaqvokix.dll Trueity.dll Mathla.dll Trustla.dll SanLa.dll Dontocore.dll Zoneron.dll ranzamfan.dll Keystrong.dll BigWarm.dll LaOttough.dll Lamcore.dll Qvoplus.dll FreeQvodom.dll DanFresh.dll Zathity.dll KonKix.dll voltovelux.dll San-Tax.dll ronfresh.dll StrongDonhome.dll Solo-Tax.dll VentoLam.dll Islax.dll volronflex.dll Hayjob.dll s-eco.dll Math-Strong.dll Zone-In.dll Singfan.dll Warm-Plus.dll NewRonhold.dll alphahold.dll Suntone.dll Sumtouch.dll dontip.dll RoundRon.dll k-zap.dll mathtone.dll temp-tip.dll Greentech.dll StatIt.dll Fincof.dll Hoteco.dll tindansoft.dll Ranstrong.dll lam-it.dll Konplus.dll Konkfan.dll warmbam.dll lexisollab.dll Dinghottip.dll Freedom.dll Indigofresh.dll airtraxtip.dll Danfix.dll Geolam.dll Movephase.dll Bigair.dll Quadjob.dll lotex.dll Holdantough.dll Treefind.dll Sanair.dll Newremnix.dll tamlight.dll Spantom.dll fasedox.dll bluedax.dll String-Fax.dll Unonimtouch.dll BlueZooflex.dll Black-Flex.dll Tancof.dll run-dox.dll Zumfix.dll DripZenity.dll Hattone.dll stringdax.dll hotla.dll Betaplus.dll Zummaqvofax.dll Scotsuncof.dll Iceit.dll Fixcof.dll supersansing.dll X-trax.dll HoldAplex.dll Trippletop.dll Alpha-Lex.dll Zerla.dll kay-plus.dll Geodonstring.dll lamfresh.dll Truesonex.dll Viatip.dll Zonozefix.dll Freshplus.dll TechRedfresh.dll Zummasing.dll ZooString.dll zumphase.dll Med-Air.dll RedStatsoft.dll JoyNamcore.dll Lamstock.dll Freshlight.dll Konex.dll icequohome.dll Ronlotlam.dll dentolight.dll keytax.dll Inchdex.dll Joblax.dll Voya-Is.dll Greenex.dll Tontech.dll SingleLatkix.dll Domlax.dll Duocore.dll SingKeytax.dll Ansaildex.dll Transtouch.dll Traning.dll Sumdox.dll Moveing.dll Silverwarm.dll Kintip.dll Scothold.dll Santam.dll ronfan.dll TrueTech.dll Jobdax.dll Villa-Top.dll Matjob.dll dripapjob.dll Laing.dll Duoin.dll Bamtam.dll Son-Lux.dll RonString.dll SailAnla.dll Latfind.dll string-fresh.dll Lexi-Trax.dll Labfan.dll Voltlux.dll Key-Plus.dll Namhome.dll domtoncom.dll TanRunair.dll Betabam.dll Nam-Tip.dll tanron.dll transanjob.dll Treeozein.dll Betajob.dll Lamzumlight.dll UniAptouch.dll Saltron.dll Tampnix.dll Goldenzamcof.dll Villazamstring.dll Freshcom.dll Viazenflex.dll alphajob.dll TipApzap.dll Hatity.dll Faxphase.dll zensoltouch.dll Strongdom.dll toplab.dll sonhold.dll SingDox.dll latom.dll strongis.dll LotIng.dll Lexiis.dll Zerzap.dll solnamtip.dll softkix.dll HatSing.dll Kontonfan.dll Techtax.dll Sonlatin.dll Cofsoft.dll Trippledom.dll Cof-Lex.dll Subtrax.dll tamphase.dll Joblux.dll Fixfix.dll Techla.dll Driptouch.dll Warmfan.dll Quadlight.dll Damla.dll Ranzimfan.dll Unitouch.dll Fixeco.dll lalam.dll Damdax.dll supersolfind.dll qvolax.dll BetaZendox.dll In-Tom.dll DomAir.dll Sonair.dll VolHold.dll Hottax.dll UnoSanlab.dll Warmstrong.dll Sanlam.dll AlphaZap.dll Unitom.dll MatTone.dll itsuning.dll Zonlex.dll LatTam.dll Namnix.dll Geofresh.dll RoundDubflex.dll Ontonix.dll daltflex.dll zummadax.dll Lexiozeis.dll Transair.dll Kay-Dom.dll movetrax.dll plusfresh.dll latit.dll Viazooin.dll dento-tone.dll Temptom.dll MedCore.dll Solosoft.dll goodtom.dll K--Tam.dll Flexbam.dll GeoZamlux.dll salteco.dll Inair.dll latsunity.dll Bigtough.dll Trio-Lux.dll Jobfax.dll Donair.dll Fasezimron.dll S-ron.dll Black-Tip.dll airair.dll Tempfind.dll Quadla.dll Lighttough.dll Zumma-Is.dll Medzap.dll Inantrax.dll U-lamtax.dll Lamfind.dll Goldtam.dll Strongla.dll Insolosoft.dll Jayozephase.dll Singletone.dll Zathtam.dll Unieco.dll haydax.dll Lattone.dll Zaamhold.dll Sun-Tax.dll Hometop.dll LotIt.dll Alpha-Top.dll Zunhold.dll TipFlex.dll Plussoft.dll groovestock.dll IsString.dll Nimremjob.dll Zummatex.dll x-tontam.dll Zummatex.dll.quarantined Donstring.dll Sunkix.dll Zunla.dll Ventojayfan.dll.quarantined Zoneit.dll viladax.dll Mathtom.dll Ronnamlab.dll Whitejaytax.dll Lexieco.dll zootip.dll Latstrong.dll Sailtosing.dll Strongcore.dll zenin.dll Mattax.dll Qvodox.dll Jobhome.dll Y-nix.dll Alphalax.dll Uni-Lam.dll Freelab.dll ittech.dll Rantough.dll roundjob.dll Trust-Tam.dll fixcore.dll Goldenhome.dll Itbam.dll Newin.dll Super-Air.dll Voyalight.dll newex.dll Saillam.dll qvocore.dll treslight.dll quadtip.dll Singin.dll GraveRuntrax.dll S-strong.dll GeoZozstrong.dll tip-fresh.dll lamdex.dll Betadox.dll airtincore.dll year-find.dll Zam-Bam.dll AlphaNimair.dll Lamlux.dll indigotouch.dll GoodZap.dll Stansoft.dll S-saohome.dll Freshsantip.dll Zumdex.dll restock.dll unilam.dll Vilabam.dll Zath-Tech.dll Kinstatflex.dll Konkhome.dll Kayjob.dll Anfresh.dll KeyDamlex.dll Zonein.dll Ranknix.dll Fun-Dom.dll Trippleranjob.dll Vaialex.dll LotJob.dll donex.dll K-eco.dll Sontinfax.dll Physsanlex.dll Bigtamhome.dll Zoomhold.dll Retanlam.dll Sanhotjob.dll quadphase.dll Sumronity.dll Lamtex.dll singrunstock.dll Trustlux.dll tonkaytom.dll Goodstock.dll Medtax.dll toughfresh.dll Whitelux.dll TouchJob.dll Stronglotis.dll Stimcof.dll Qvozimsoft.dll Stateco.dll ZonZamdax.dll saltzoztam.dll RonSailplus.dll Homelax.dll Tampity.dll Kinhold.dll Dong-Strong.dll Tiptam.dll Ice-Hold.dll y-fan.dll Singledex.dll Freenix.dll Freshtough.dll Latla.dll Dingnix.dll Tancandex.dll Trissoft.dll StanJob.dll OpeKaytone.dll Hatfan.dll saotodex.dll VentoSailtop.dll Alphaplus.dll Whitestrong.dll Stringtip.dll mathlux.dll Infax.dll Indigodamlab.dll Voltjob.dll New-Dox.dll Sailstring.dll Openremsoft.dll SaltZumit.dll Namfax.dll Voyadom.dll daltcom.dll Rantone.dll Damcof.dll Year-Fix.dll Bamnix.dll Koneco.dll Koneco.dll.quarantined xxx-lamphase.dll Silvertaneco.dll Openfan.dll Transplus.dll SumRemtom.dll Finfax.dll TranToncom.dll Techtam.dll Sollam.dll Viaron.dll Konkbam.dll Tristech.dll Black-Zap.dll Sumsolfind.dll IndigoTonphase.dll zottough.dll Uni-Dom.dll Zumfax.dll GoldenFind.dll new-lux.dll Superlux.dll Alphadex.dll tinlam.dll Kankeyfax.dll Scotfax.dll Lafind.dll Movecom.dll Namqvolight.dll Doublesing.dll Zoozap.dll DoubleOvestrong.dll TrustDomlax.dll Kaycom.dll S-Namstock.dll Solodox.dll LatZunstrong.dll xxx-light.dll Uniair.dll Opesoft.dll Retough.dll Saltit.dll bamzunkix.dll ToughNix.dll Unohattop.dll Zoning.dll Stat-Tam.dll Inchflex.dll Xxx-stock.dll Homedox.dll LamAir.dll LamAir.dll.quarantined FunLux.dll Jay-Lab.dll Groovehold.dll Toplight.dll Tempstrong.dll FlexIty.dll Warm-Eco.dll sundox.dll tresfax.dll ZamIng.dll BamSolotrax.dll FixKix.dll Zumdom.dll Mathzap.dll San-Com.dll SunStock.dll bigcore.dll Biodom.dll Biodom.dll.quarantined Hotdox.dll TresTex.dll Voltzentouch.dll CofSing.dll Statfan.dll Apwarm.dll Goldzamis.dll KeySing.dll Overdox.dll Yearcof.dll Zontop.dll Sumlax.dll Biotech.dll Nim-Eco.dll FreshPhase.dll Intough.dll Sonfax.dll Nim-Kix.dll Konkfresh.dll Islight.dll Ranktouch.dll Goldex.dll TreeTouch.dll Vaiatough.dll Dan-Soft.dll Tech-Air.dll lotzimhold.dll X-La.dll Tampjob.dll Ancore.dll ZotSilcof.dll Toughcom.dll Stanfix.dll Dripdax.dll zenlux.dll faxjob.dll Airtough.dll Lamtone.dll Tempjoytop.dll Trusthotfind.dll VivaQuadphase.dll Vilacore.dll TopBam.dll Flexsilstring.dll Yeartech.dll Trustovela.dll Tampair.dll keytrax.dll Vivaex.dll Tiphotlight.dll Ventolotlax.dll Funtrax.dll doubletip.dll Inchdax.dll Zen-Cof.dll Opecof.dll Geostock.dll Tantough.dll Physdox.dll betalight.dll Dankeyplus.dll Trustsoft.dll k-hotcore.dll jaysailtone.dll Fixlex.dll Zoodox.dll Rundax.dll Funjob.dll Jobnix.dll K-is.dll PhysStatlax.dll Freelight.dll Tinflex.dll Physfix.dll Goldeco.dll vaiadom.dll Golding.dll fixdonnix.dll RanLex.dll Zathtop.dll stringstring.dll Lala.dll Siltech.dll goldfix.dll Tresfan.dll Run-Ex.dll Kontom.dll Zootom.dll Joylam.dll Lattrax.dll Tipfix.dll X-core.dll Nimfax.dll Ozerex.dll SilverCore.dll quodonfix.dll vilaphase.dll Ton-Find.dll tampcore.dll Driplab.dll Latity.dll Runjaylex.dll bamhome.dll Airflex.dll soloeco.dll Warmcof.dll Cofstock.dll KonTrax.dll Redtip.dll Jobplus.dll Xxx-lux.dll Opeanex.dll Konktex.dll MoveEco.dll Viva-Flex.dll Andom.dll canbam.dll inchjob.dll Blackdex.dll Uniin.dll zathdonlax.dll Blackronfan.dll Strongtax.dll Ithold.dll SingCore.dll Vivanix.dll physdomplus.dll Conlam.dll Bamity.dll MatQuadflex.dll Trandax.dll Damfax.dll Daltcof.dll InchDoncof.dll VentoTax.dll Freelating.dll Xxx-strong.dll Temptraxity.dll Sonlex.dll LightTamstrong.dll Dongdax.dll Geonix.dll Soltax.dll ap-light.dll rank-stock.dll Zimstock.dll OpenSaolex.dll Softtom.dll Canlax.dll Keycore.dll NewTostring.dll Mathbam.dll ZooZooplus.dll Voltstrong.dll Sailtrax.dll.quarantined Konfax.dll Zoom-Tough.dll ZerTone.dll Condax.dll Transkaydex.dll Kinair.dll QuadDax.dll Silfind.dll StimLex.dll Kancore.dll unisailfresh.dll Medex.dll Joytom.dll OverJaytip.dll EcoRedzap.dll Zuning.dll Geolax.dll mathtax.dll Tiptip.dll keycom.dll Villatax.dll Goldenair.dll Goodfax.dll Hatbam.dll Lexitam.dll Zumtax.dll Strong-Is.dll Econix.dll Zaamrundax.dll U-Godom.dll Hot-Dax.dll Coflex.dll Topdomtouch.dll Ecoeco.dll VillaDamex.dll Voyaron.dll treeing.dll Airsoft.dll Roundzimis.dll Tamlam.dll K-Saotop.dll LabZooplus.dll Y-Trax.dll StimRontech.dll saofax.dll SuperDinsing.dll Doublezumstring.dll Cofjaytech.dll Isstock.dll Tanair.dll Tipwarm.dll betadex.dll TrisLa.dll Dongkix.dll Kay-Dax.dll LabIn.dll rank-dom.dll Kintam.dll Zentip.dll Tamp-Dex.dll Faxron.dll Tough-Tom.dll DuoPhase.dll Canity.dll MedOveex.dll freetip.dll Openfax.dll Betafan.dll Geo-Tough.dll

This hash has been seen with multiple file names. Alternate names can appear when software is updated, copied between folders, packed by an installer, or deliberately renamed to avoid recognition. Compare the exact MD5 above before assuming two names refer to the same file.

Geographic signal

Observed country distribution

ThreatInfo has seen Geo-Tough.dll across 84 countries. Use this signal to compare local evidence with where the sample is most often reported.

Top country Indonesia
Share 22.0%
Low High activity

The strongest geographic signal for this file is Indonesia with 22.0% of observed hits. Geographic distribution can help identify targeted campaigns, regional software bundles, or where a file is most commonly reported.

OS Version:

Windows 7 69.6%
Windows 8.1 14.7%
Windows 10 12.5%
Windows 8 1.6%
Windows Vista 1.0%
Windows XP 0.5%

The most common operating system signal for Geo-Tough.dll is Windows 7 with 69.6% of observed hits. If your system differs from the common profile, check whether the file was introduced by a specific installer, archive, or removable device.

Analysis

Geo-Tough.dll is identified as pe for 64-bit systems. The subsystem is Windows GUI. PE header values are useful for triage, especially when they do not match the expected publisher, product, or release timeline.

Format pe
Architecture 64-bit
Subsystem Windows GUI
Entry point 0x0000a10c
Image base 0x0000000180000000

PE Sections:

Sections 6
Raw data 342528

Section layout highlights raw-size concentration, repeated names, packer markers, and hashes that can be compared across related samples.

.text 225280 bytes · 65.8% of section data
MD5 caddb8176f0c76aa3a16787279f2b695
.rdata 85504 bytes · 25.0% of section data
MD5 82e712513ca4113887a0b263e0d7edeb
.data 12288 bytes · 3.6% of section data
MD5 41d4322e0c958480d35f660947ef231a
.pdata 14848 bytes · 4.3% of section data
MD5 4a8a0b2fae4e14d3394ab125b2dc0fb5
.rsrc 1024 bytes · 0.3% of section data
MD5 12e664a30673d7d1104d59d718e8358b
.reloc 3584 bytes · 1.0% of section data
MD5 250c64e884610ba802a0a9d27e1593de

PE section names and hashes can reveal packing, injected resources, or unusual build artifacts. Sections with uncommon names, very large raw data, or hashes that differ from a trusted copy deserve additional review.

Report conclusion

GridinSoft detects this file as Adware.Linkury

This report identifies Geo-Tough.dll by MD5 098e1bcc85bb32d92f9d69327346672a. If the same file is present on your device, scan the system and remove the detected object after confirming the hash and location.

Download GridinSoft Anti-Malware Scan the device and confirm whether this exact hash is present. Check this hash on VirusTotal

Recommended next steps

  • Compare the local file MD5 with 098e1bcc85bb32d92f9d69327346672a.
  • Check the file path, publisher, and signature against the details in this report.
  • Run a GridinSoft scan and remove the object if the same hash is found.