How to remove STShell64.dll
- File Details
- Overview
- Analysis
STShell64.dll
The module STShell64.dll has been detected as PUP.Toolbar
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
c7d85c0fad805ba5c4f4115e3f04fd63 |
| Size: |
1 MB |
| First Published: |
2017-06-23 17:08:59 (7 years ago) |
| Latest Published: |
2024-11-15 23:01:04 (7 months ago) |
| Status: |
PUP.Toolbar (on last analysis) |
|
| Analysis Date: |
2024-11-15 23:01:04 (7 months ago) |
Overview
| %programfiles%\spyware terminator |
| %desktop%\spywaqre terminetor premiun 2015\spyware terminator premium 2015 3.0.1.112 portable\data\roaming\modified\@programfilesx86@\spyware terminator |
| %sysdrive%\windows.old.000\program files (x86)\spyware terminator |
| %commonappdata%\martau\total uninstall 6\backup\spyware terminator 2015.analyzed.zip\c:\program files (x86)\spyware terminator |
| %programfiles%\spyware terminator.$quar |
| %programfiles% |
| %sysdrive%\w.system |
| %profile%\1 mynextportables\1 aa for128gigstickportable\spyware terminator premium 2015 3 0 1 112 portable\spyware terminator premium 2015 3.0.1.112 portable\data\roaming\modified\@appdatacommon@\spyware terminator\shared |
| %profile%\1 mynextportables\1 aa for128gigstickportable\spyware terminator premium 2015 3 0 1 112 portable\spyware terminator premium 2015 3.0.1.112 portable\data\roaming\modified\@programfilesx86@ |
| %commonappdata%\martau\total uninstall 6\backup\spyware terminator 2015.analyzed.zip\c:\program files (x86) |
| stshell64.dll |
| STShell64.dll |
| STShell64.dll.vir |
| STShell64_IObitDel.dll |
|
23.4% |
|
|
15.3% |
|
|
11.4% |
|
|
7.1% |
|
|
5.2% |
|
|
4.2% |
|
|
4.2% |
|
|
2.6% |
|
|
2.6% |
|
|
2.3% |
|
|
1.9% |
|
|
1.9% |
|
|
1.9% |
|
|
1.9% |
|
|
1.6% |
|
|
1.6% |
|
|
1.3% |
|
|
1.3% |
|
|
1.0% |
|
|
1.0% |
|
|
0.6% |
|
|
0.6% |
|
|
0.6% |
|
|
0.6% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
|
0.3% |
|
| Windows 10 |
53.5% |
|
| Windows 7 |
32.6% |
|
| Windows 8.1 |
13.2% |
|
| Windows 8 |
0.6% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
64 |
| Image Base: |
0x0000000000400000 |
| Entry Address: |
0x0010b190 |
| Name |
Size of data |
MD5 |
| .text |
1090560 |
93d967ee52289390c7cc2fcd3f1d0ce0 |
| .data |
91648 |
6a5f7da185f1ba9367ae5b8bf8628ed4 |
| .bss |
0 |
00000000000000000000000000000000 |
| .idata |
7168 |
a7318b3ef20d0538095692675d3ec56b |
| .didata |
1024 |
1e859590855807c775633eebcd64e0e9 |
| .edata |
512 |
e316142fceb6ee9ced186fb05a2e1e25 |
| .reloc |
68608 |
02f444b4d26cff26bbfc1908848fa926 |
| .pdata |
55296 |
cdd50bc5d3daf91e3c44cb1e1936ce95 |
| .rsrc |
109056 |
b48a7ca76074a632e4ff89b5dcb4a683 |
