» HandleUpdate.dll
Overview
Analysis
File Details
Programs (1)

HandleUpdate.dll

PGsurfer

MyTurboPC.com LLC

The module HandleUpdate.dll by MyTurboPC.com has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This file is typically installed with the program MyTurboPC by MyTurboPC.com which is a potentially unwanted software program.

File name:

HandleUpdate.dll

Publisher:

Paretologic (signed by MyTurboPC.com LLC)

Product:

PGsurfer

Description:

HandleUpdate.dll

Version:

1.0.0.1

MD5:

fe6b6a240deedadb55f7d51adc910404

SHA-1:

b2951894957bb255b877dc16539d586f4aad398b

SHA-256:

c08d3fed69bd731d655525425cbdd47400ae89d8deaf034b788a1975badec0fb

Scanner detections:

1 / 68

Status:

Potentially unwanted

Analysis date:

4/16/2024 2:03:55 PM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.Optional.MyTurboPC

15.3.2.15

File size:

1.6 MB (1,630,160 bytes)

Product version:

1.0.0.1

Original file name:

HandleUpdate.dll

File type:

Dynamic link library (Win32 DLL)

Language:

English (United States)

Common path:

C:\Program Files\myturbopc.com\myturbopc\handleupdate.dll

Digital Signature

Signed by:

MyTurboPC.com LLC

Authority:

GoDaddy.com, Inc.

Valid from:

2/6/2014 7:06:01 PM

Valid to:

1/31/2015 12:58:47 PM

Subject:

CN=MyTurboPC.com LLC, O=MyTurboPC.com LLC, L=Elkhart, C=US

Issuer:

SERIALNUMBER=07969287, CN=Go Daddy Secure Certification Authority, OU=http://certificates.godaddy.com/repository, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:

27F01690A50670

File PE Metadata

Compilation timestamp:

1/9/2014 11:17:44 AM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

49152:MRdmg2N77gKqehfyjpKERve9XBDRWnT1qwJ4FEpmpjzK/a7Pi1FwtH:Gmp3RqehfyjpKEpSxVkT4wJjmtzK/az5

Entry address:

0xF6122

Entry point:

8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 2D, 6D, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, 8B, FF, 55, 8B, EC, 53, 8B, 5D, 08, 83, FB, E0, 77, 6F, 56, 57, 83, 3D, C0, 75, 16, 10, 00, 75, 18, E8, 6C, 6F, 00, 00, 6A, 1E, E8, B6, 6D, 00, 00, 68, FF, 00, 00, 00, E8, E5, 06, 00, 00, 59, 59, 85, DB, 74, 04, 8B, C3, EB, 03, 33, C0, 40, 50, 6A, 00, FF, 35, C0, 75, 16, 10, FF, 15, 1C, A3, 11, 10, 8B, F8, 85, FF, 75, 26, 6A, 0C, 5E, 39, 05, F4, 7B, 16, 10, 74, 0D, 53... 
[+]

Entropy:

6.4757

Code size:

1.1 MB (1,147,904 bytes)

The file HandleUpdate.dll has been discovered within the following program.

MyTurboPC by MyTurboPC.com

Publisher's description - “MyTurboPC is a comprehensive diagnostic program that increases the speed, performance and security of your Windows based personal computer. It cleans your registry, defrag your PC or manage startup items to increase overall speed and performance.”

www.MyTurboPC.com

64% remove it

Remove HandleUpdate.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.