» bprotector-9.0.1.dll
Overview
Analysis
File Details

bprotector-9.0.1.dll

The module bprotector-9.0.1.dll has been detected as a potentially unwanted program by 22 anti-malware scanners.

File name:

MD5:

ce1c9c1fc55dcd114a310b260851a13a

SHA-1:

d0737e10603910b76b45b74c3c43d7916eb11af8

Scanner detections:

22 / 68

Status:

Potentially unwanted

Explanation:

This service will prevent resources from modifying the web browser's home and search pages as well as the search provider set by the product, an affiliate search engine partner.

Analysis date:

4/16/2024 5:14:22 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Trojan.Generic.10366397

675

AhnLab V3 Security

Trojan/Win32.Rotbrow

2015.03.01

Avira AntiVirus

TR/BProtector.Gen

7.11.212.246

avast!

Win32:Adware-gen [Adw]

2014.9-150401

AVG

Dropper.Generic8

2016.0.3153

Baidu Antivirus

Adware.Win32.Bbylon

4.0.3.1541

Bitdefender

Trojan.Generic.10366397

1.0.20.455

Emsisoft Anti-Malware

Trojan.Generic.10366397

8.15.04.01.12

ESET NOD32

Win32/bProtector.I potentially unwanted (variant)

9.11249

Fortinet FortiGate

Adware/Bprotect

4/1/2015

F-Secure

Trojan.Generic.10366397

11.2015-01-04_4

G Data

Trojan.Generic.10366397

15.4.25

IKARUS anti.virus

Trojan-Dropper.Win32.Rotbrow

t3scan.1.8.6.0

K7 AntiVirus

Riskware

13.1915120

McAfee

Adware-Bprotect

5600.6809

Microsoft Security Essentials

TrojanDropper:Win32/Rotbrow.B

1.1.11400.0

MicroWorld eScan

Trojan.Generic.10366397

16.0.0.273

nProtect

Trojan.Generic.10366397

15.02.27.01

Reason Heuristics

Threat.Win.Reputation.IMP

15.4.1.0

Sophos

Troj/BProtect-B

4.98

SUPERAntiSpyware

Trojan.Agent/Gen-Rotbrow

9963

VIPRE Antivirus

Trojan.Win32.Generic

38010

File size:

413 KB (422,912 bytes)

File type:

Dynamic link library (Win32 DLL)

Common path:

C:\Documents and Settings\{user}\Application data\bprotectorforwindows\2.2.448.52\firefoxextension\components\bprotector-9.0.1.dll

File PE Metadata

Compilation timestamp:

6/4/2012 9:04:12 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

6144:b26fYkwNBBxApTV5gbR/3ZFmk9jsgRtC//QEsUkJKWPSWTBjhfn:hABxcTV5gbRPZ/pRUn0hJKWPSWTF

Entry address:

0x1E03B

Entry point:

8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 42, 7A, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, CC, CC, 8B, 4C, 24, 04, F7, C1, 03, 00, 00, 00, 74, 24, 8A, 01, 83, C1, 01, 84, C0, 74, 4E, F7, C1, 03, 00, 00, 00, 75, EF, 05, 00, 00, 00, 00, 8D, A4, 24, 00, 00, 00, 00, 8D, A4, 24, 00, 00, 00, 00, 8B, 01, BA, FF, FE, FE, 7E, 03, D0, 83, F0, FF, 33, C2, 83, C1, 04, A9, 00, 01, 01, 81, 74, E8, 8B, 41, FC, 84, C0, 74, 32, 84, E4, 74, 24, A9, 00, 00, FF, 00, 74, 13, A9... 
[+]

Code size:

287 KB (293,888 bytes)

Remove bprotector-9.0.1.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.