» listsvc.dll
Overview
Analysis
File Details

listsvc.dll

The library listsvc.dll has been detected as malware by 43 anti-virus scanners.

File name:

listsvc.dll

MD5:

b18421917243d6b90b02c67ad8222e13

SHA-1:

5c408a826d029cb74d2c6b41f1e90c98688309a0

SHA-256:

14b6271f9c2fbfd1aa2f97c1bda07d908895b5c1a3a78a34c7a6489b832edf9c

Scanner detections:

43 / 68

Status:

Malware

Analysis date:

4/24/2024 4:39:29 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Mikey.15570

577

Agnitum Outpost

Backdoor.Bedep

7.1.1

AhnLab V3 Security

ASD.Reputation

2015.06.20

Avira AntiVirus

TR/Crypt.ZPACK.12490

8.3.1.6

Arcabit

Trojan.Mikey.D3CD2

1.0.0.425

avast!

Win32:Malware-gen

2014.9-150707

AVG

Win32/Heim

2016.0.3055

Baidu Antivirus

Backdoor.Win32.Bedep

4.0.3.1577

Bitdefender

Gen:Variant.Mikey.15570

1.0.20.940

Bkav FE

HW32.Packed

1.3.0.6379

Emsisoft Anti-Malware

Gen:Variant.Mikey.15570

8.15.07.07.03

ESET NOD32

Win32/Bedep

9.11816

Fortinet FortiGate

W32/Bedep.D!tr

7/7/2015

F-Secure

Gen:Variant.Mikey.15570

11.2015-07-07_3

G Data

Gen:Variant.Mikey.15570

15.7.25

K7 AntiVirus

Riskware

13.205.16308

Kaspersky

Backdoor.Win32.Bedep

14.0.0.1772

Malwarebytes

Trojan.Bedep.HP

v2015.07.07.03

McAfee

Artemis!B18421917243

5600.6711

Microsoft Security Essentials

Backdoor:Win32/Bedep!rfn

1.1.11701.0

MicroWorld eScan

Gen:Variant.Mikey.15570

16.0.0.564

NANO AntiVirus

Trojan.Win32.Bedep.dsryhr

0.30.24.2086

Panda Antivirus

Trj/Genetic.gen

15.07.07.03

Qihoo 360 Security

Win32/Trojan.245

1.0.0.1015

Rising Antivirus

PE:Trojan.Win32.Generic.18C01751!415242065

23.00.65.15705

Sophos

Mal/Generic-S

4.98

SUPERAntiSpyware

Trojan.Agent/Gen-Malagent

9768

Trend Micro House Call

TROJ_GEN.R00JH07FE15

7.2.188

VIPRE Antivirus

Trojan.Win32.Generic

41296

File size:

200 KB (204,800 bytes)

File type:

Dynamic link library (Win32 DLL)

Common path:

C:\ProgramData\{49a0bac7-3326-4433-9373-4aa8793abb5c}\listsvc.dll

Registration

CLSID:

{F7117AE6-81F2-45B8-96EE-56F6FD357A48}

COM registered:

Yes

File PE Metadata

Compilation timestamp:

6/25/1997 4:51:10 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.56

CTPH (ssdeep):

3072:RSAzI4CJtsr4Vnd6m/ob+O6/ErWqpUDuqpgx+y1YFDPQL271JeQ55nyc:RSgvCJjldAbH6sy4JX+TD481r55ny

Entry address:

0xAC7E

Entry point:

8B, FF, 55, 8B, EC, C7, 05, D0, 20, 03, 10, 2E, 00, 00, 00, 83, 3D, D0, 20, 03, 10, 00, 7E, 27, 6A, 1B, 68, E0, 31, 03, 10, 6A, 00, 6A, 00, 6A, 01, 68, 00, 08, 00, 00, FF, 15, 60, 10, 00, 10, A1, D0, 20, 03, 10, 83, E8, 02, A3, D0, 20, 03, 10, EB, D0, 8B, C5, 50, E8, 00, 00, 00, 00, 55, 8B, EC, 81, EC, 84, 00, 00, 00, 8B, 15, 67, 43, 00, 10, 81, EA, B5, 7D, 67, DE, 89, 55, A0, A1, 6B, 43, 00, 10, 2D, 15, 36, 47, 10, 89, 45, 84, 8D, 45, 90, 89, 45, 88, 50, 8B, 8D, 7C, FF, FF, FF, 68, 62, 43, 00, 10, 8B, 55... 
[+]

Entropy:

7.5725

Code size:

76 KB (77,824 bytes)

Remove listsvc.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.