How to remove main.dll
main.dll
The module main.dll has been detected as Adware.Gen
File Details
| Product Name: | 口水党插件模块 |
| Company Name: | koushuidang.cn |
| MD5: | 5811a581a4cea18c6a79944efeef302a |
| Size: | 1 MB |
| First Published: | 2017-07-22 17:16:03 (6 years ago) |
| Latest Published: | 2018-10-04 11:10:56 (5 years ago) |
| Status: | Adware.Gen (on last analysis) | |
| Analysis Date: | 2018-10-04 11:10:56 (5 years ago) |
Overview
| Signed By: | Shanghai Ban Ru Tech Co. Ltd. |
| Status: | Valid |
Common Places:
| %localappdata%\tencent\qqbrowser\user data\default\extensions\kdcgipkhkbeipbooplfcdgclhecfngfi\1.3.0.21_0\plugins |
| %appdata%\baidu\baidubrowser\user_data\default\chrome_profile\extensions\djghkggdampkogmkmnmpfhfpbgedpmfm\1.3.0.19_0\plugins |
| %localappdata%\ucbrowser\user data\default\extensions\djghkggdampkogmkmnmpfhfpbgedpmfm\1.3.0.19_0\plugins |
| %localappdata%\tencent\qqbrowser\user data\default\extensions\kdcgipkhkbeipbooplfcdgclhecfngfi\1.3.0.21_0 |
| %localappdata%\tucao\1.2.0.10\extension\chrome2\kdcgipkhkbeipbooplfcdgclhecfngfi\1.3.0.21_0 |
| %localappdata%\tucao\1.2.0.10\extension\koushuidang |
| %localappdata%\tucao\1.2.0.10\extension\chrome\djghkggdampkogmkmnmpfhfpbgedpmfm\1.3.0.19_0 |
| %localappdata%\tucao\1.2.0.10\extension\chrome3\khleiodbpecegjhigehdodndohdlpdcd\1.3.0.22_0 |
| %appdata%\baidu\baidubrowser\user_data\default\chrome_profile\extensions\djghkggdampkogmkmnmpfhfpbgedpmfm\1.3.0.19_0 |
| %localappdata%\tucao\1.2.0.10\extension\qhrome\jeklffnjfjoniccahojafcomliabidpf\1.3.0.21_0 |
File Names:
| main.dll |
| sputil.dll |
Geography:
| 43.5% | ||
| 30.4% | ||
| 26.1% |
OS Version:
| Windows 7 | 69.6% | |
| Windows 8.1 | 30.4% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x10000000 |
| Entry Address: | 0x00153321 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 1627648 | 225df3db00ea0187314d8a75ac30135d |
| .rdata | 226304 | 5fe791dc1d2857569a35b29809505c1e |
| .data | 20480 | 5057de0c3837b481d359c96593b6052f |
| .rsrc | 2048 | 57745d8ae6291093729a99fded7022b6 |
| .reloc | 170496 | 92f737e7d72cf5bb120389975335b0d0 |
More information:
Download GridinSoft
Anti-Malware - Removal tool for main.dll
