How to remove GpShlExt_64.dll.vir

GpShlExt_64.dll.vir

The module GpShlExt_64.dll.vir has been detected as PUP.Gen

GpShlExt_64.dll.vir
Remove GpShlExt_64.dll.vir

File Details

Product Name:

万能播放器
Company Name:

爱奇艺
MD5: 8c302a9b1b6909a8d0c37a50af3e1708
Size: 39 KB
First Published: 2017-05-21 09:02:41 (8 years ago)
Latest Published: 2021-01-10 10:59:58 (4 years ago)
Status: PUP.Gen (on last analysis)
Analysis Date: 2021-01-10 10:59:58 (4 years ago)

Common Places:

%programfiles%\iqiyi video\geeplayer
%sysdrive%\iqiyi video\geeplayer
%sysdrive%\adwcleaner\quarantine\c\iqiyi video\geeplayer
%sysdrive%\adwcleaner\quarantine\xrpmcarcr4
%sysdrive%\iqiyi video
%sysdrive%\新增資料夾 (4)\綜合\iqiyi video
%programfiles%\iqiyi video
%sysdrive%\adwcleaner\quarantine\c\iqiyi video
%sysdrive%\adwcleaner\quarantine\yct4aj6pkn
%sysdrive%\adwcleaner\quarantine\gtxsl1c00g

File Names:

GpShlExt_64.dll
GpShlExt_64.dll.vir
gpshlext_64.dll

Geography:

20.0%
17.5%
8.8%
6.3%
6.3%
6.3%
5.0%
2.5%
2.5%
2.5%
2.5%
2.5%
1.3%
1.3%
1.3%
1.3%
1.3%
1.3%
1.3%
1.3%
1.3%
1.3%
1.3%
1.3%
1.3%
1.3%

OS Version:

Windows 10 53.8%
Windows 7 32.5%
Windows 8.1 7.5%
Windows XP 3.8%
Windows 8 2.5%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 64
Image Base: 0x0000000180000000
Entry Address: 0x000045b8

PE Sections:

Name Size of data MD5
.text 17408 710a47c9b8ca1b06922001bd00e031ef
.rdata 10752 75598c4b0584c0f03f350ceae2bde718
.data 512 d6b02c4284cc3b58a284f82cb694f083
.pdata 1536 b85c2e29e79107f15bd26ed6d8bdfe34
.rsrc 2560 5ae38e3889ab71d3e395ee5577e765d1
.reloc 512 37cd6173e83260dc3c1eba6dec07b8ad

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for GpShlExt_64.dll.vir
copyright for information about GpShlExt_64.dll.vir