» jptjanydlw.dll
Overview
Analysis
File Details

jptjanydlw.dll

The module jptjanydlw.dll has been detected as a potentially unwanted program by 11 anti-malware scanners.

File name:

jptjanydlw.dll

MD5:

d68324ede470887f003ecdfa4a4d8658

SHA-1:

63914cc0e72394381e8964458c0d9be69fef4f6f

SHA-256:

4fb22216e7334958dcf58c65c5ae11be7a8ef6e1644d30dffb2a02b646eae356

Scanner detections:

11 / 68

Status:

Potentially unwanted

Analysis date:

4/24/2024 9:54:35 PM UTC (today)

Scan engine

Detection

Engine version

Agnitum Outpost

PUA.Agent

7.1.1

Dr.Web

Adware.Yontoo.68

9.0.1.0185

ESET NOD32

MSIL/Adware.PullUpdate.K.gen application

9.7.0.302.0

herdProtect (fuzzy)

variant of zobnlhdhg.dll (Adware)

2015.7.4.23

K7 AntiVirus

Adware

13.202.15427

Kaspersky

not-a-virus:AdWare.Win32.Agent

14.0.0.2265

Malwarebytes

PUP.Optional.ZombieInvasion.A

v2015.07.04.11

McAfee

Artemis!E9F6090B4AEE

5600.6714

Reason Heuristics

Threat.Win.Reputation.IMP

15.3.31.2

Sophos

Generic PUA FE

4.98

Trend Micro House Call

TROJ_GEN.R0C1H07CT15

7.2.185

File size:

1.2 MB (1,241,048 bytes)

File type:

Dynamic link library (Win32 DLL)

Common path:

C:\ProgramData\uqstvbytlhp\dat\jptjanydlw.dll

File PE Metadata

Compilation timestamp:

3/28/2015 11:15:43 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

24576:O6X//ZtFAvDOEFsPHVM82G4UUgfivt7HdSwtCcUJwrvrO8HyO:O6XJ3AvSEaz2dZgfil7HdIJwrvrOw

Entry address:

0x268B

Entry point:

8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 4E, 26, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, 8B, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, 30, BD, 00, 10, 89, 0D, 2C, BD, 00, 10, 89, 15, 28, BD, 00, 10, 89, 1D, 24, BD, 00, 10, 89, 35, 20, BD, 00, 10, 89, 3D, 1C, BD, 00, 10, 66, 8C, 15, 48, BD, 00, 10, 66, 8C, 0D, 3C, BD, 00, 10, 66, 8C, 1D, 18, BD, 00, 10, 66, 8C, 05, 14, BD, 00, 10, 66, 8C, 25, 10, BD, 00, 10, 66, 8C, 2D, 0C, BD, 00, 10, 9C, 8F, 05, 40, BD... 
[+]

Entropy:

7.9775 (probably packed)

Code size:

28 KB (28,672 bytes)

Remove jptjanydlw.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.