How to remove edtool.dll.vir

edtool.dll.vir

The module edtool.dll.vir has been detected as PUP.Gen

edtool.dll.vir
Remove edtool.dll.vir

File Details

Product Name:

EncryptT Dynamic Link Library
MD5: dd9a05981d3bcd06b44d0979a6a917c7
Size: 319 KB
First Published: 2017-05-30 16:08:15 (8 years ago)
Latest Published: 2021-01-10 11:00:59 (4 years ago)
Status: PUP.Gen (on last analysis)
Analysis Date: 2021-01-10 11:00:59 (4 years ago)

Overview

Signed By: BEIJING QIYI CENTURY SCIENCE@amp;TECHNOLOGY CO.,LTD.
Status: Valid

Common Places:

%sysdrive%\iqiyi video\lstyle
%temp%\qyanti
%sysdrive%\adwcleaner\quarantine\c\iqiyi video\lstyle
%sysdrive%\$recycle.bin\s-1-5-18\$rjk29q0\lstyle
%sysdrive%\iqiyi video
%sysdrive%\adwcleaner\quarantine\c\iqiyi video
%sysdrive%\adwcleaner\quarantine\gtxsl1c00g
%sysdrive%\iqiyi video
%sysdrive%\iqiyi video
%sysdrive%\iqiyi video

File Names:

edtool.dll
edtool.dll.vir

Geography:

15.8%
10.5%
10.5%
10.5%
5.3%
5.3%
5.3%
5.3%
5.3%
5.3%
5.3%
5.3%
5.3%
5.3%

OS Version:

Windows 10 47.4%
Windows 7 36.8%
Windows 8.1 15.8%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x10000000
Entry Address: 0x00009742

PE Sections:

Name Size of data MD5
.text 73728 e93ea2643fc3b4d0308cf6b5e1f0cfde
.rdata 33280 6dc74bba691a4fabe673113183c7565c
.data 6144 402139cbaf51ae514c468f396080e7a8
.rsrc 1536 093bdc4cd41a4ee938f98cbcdb72991c
.kkkkk0 7680 4ec19464176ff47487ddcd14bd15c93b
.kkkkk1 194048 6e3ed873aedd38d0b2e1e68d022b1ba9
.reloc 3584 98e1401f03ff4bcd95e462f6bfbce2da

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for edtool.dll.vir
copyright for information about edtool.dll.vir