lpk.dll

The library lpk.dll has been detected as malware by 48 anti-virus scanners.
Remove lpk.dll - Powered by Reason Core Security
MD5:
d2b777a93719e548d0baf4c886e124d3

SHA-1:
55e328477afc3005e24222456ee874a5e43955f9

SHA-256:
28085a4341c06951fac8a483a38f501f017332fcecadc69d2154533a8dab6042

Scanner detections:
48 / 68

Status:
Malware

Explanation:
lpk.dll is infected by a worm that might download, install and run additional malware as well as may spread to other executable files.

Analysis date:
12/9/2016 6:50:47 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.Microfake.D
970

Agnitum Outpost
Trojan.Scar
7.1.1

AhnLab V3 Security
Trojan/Win32.Scar
2014.06.08

Avira AntiVirus
TR/Nitol.blanu
7.11.153.220

Antiy Labs AVL
Trojan/Win32.MicroFake
1.0.0.1

avast!
Win32:Nitol-A [Trj]
2014.9-140610

AVG
Generic21
2015.0.3448

Baidu Antivirus
Trojan.Win32.LpkHijack
4.0.3.14610

Bitdefender
Trojan.Microfake.D
1.0.20.805

Bkav FE
W32.FakeLpkMVf.Trojan
1.3.0.4959

Clam AntiVirus
Trojan.MicroFake-1
0.98/21155

CMC Antivirus
Trojan.Win32.MicroFake!O
1.1.0.977

Commtouch SDK
W32/Risk.OEEL-3408
5.4.1.7

Comodo Security
TrojWare.Win32.Ramnit.d
18472

Dr.Web
DDoS.Rincux.438
9.0.1.0161

Emsisoft Anti-Malware
Trojan.Microfake
8.14.06.10.09

ESET NOD32
Win32/Agent.RNS
8.9910

Fortinet FortiGate
W32/MicroFake.BA!tr
6/10/2014

F-Prot
W32/MalwareF.YMPW
v6.4.7.1.166

F-Secure
Trojan:W32/MicroFake.A
11.2014-10-06_3

G Data
Trojan.Microfake
14.6.24

IKARUS anti.virus
Trojan.Win32.MicroFake
t3scan.1.6.1.0

K7 AntiVirus
Trojan
13.1712333

K7 Gateway Antivirus
Trojan
13.1712333

Kaspersky
Trojan.Win32.MicroFake
14.0.0.3733

Kingsoft AntiVirus
Win32.Malware.Heur_Generic.B.(kcloud)
331020.49267

Malwarebytes
Trojan.Agent
v2014.06.10.09

McAfee
Generic.nb
5600.7104

McAfee Web Gateway
Generic.nb
7.7104

Microsoft Security Essentials
DDoS:Win32/Nitol.A
1.10600

MicroWorld eScan
Trojan.Microfake.D
15.0.0.483

NANO AntiVirus
Trojan.Win32.MicroFake.brqlq
0.28.0.60100

Norman
Nitol.A
11.20140610

nProtect
Trojan/W32.Agent.47104.KG
14.06.05.01

Panda Antivirus
Generic Malware
14.06.10.09

Qihoo 360 Security
Trojan.Win32.FakeLPK.A
1.0.0.1015

Quick Heal
Trojan.MicroFake.ba6
6.14.14.00

Reason Heuristics
Threat.Win.Reputation.IMP
14.6.10.9

Rising Antivirus
PE:Trojan.Win32.Generic.152AD979!355129721
23.00.65.14608

Sophos
Mal/Nitol-C
4.98

SUPERAntiSpyware
Trojan.Agent/Gen-Riskyr
10552

The Hacker
Trojan/MicroFake.ba
6.8.0.5.464

Total Defense
Win32/Redosdru.HF
37.0.10985

Trend Micro House Call
TROJ_SPNR.0BHI12
7.2.161

Trend Micro
TROJ_SPNR.0BHI12
10.465.10

Vba32 AntiVirus
Trojan.MicroFake
3.12.26.0

VIPRE Antivirus
Trojan.Win32.Generic
30066

ViRobot
Trojan.Win32.Scar.45056.H
2011.4.7.4223

Remove lpk.dll - Powered by Reason Core Security
File size:
46 KB (47,104 bytes)

File type:
Dynamic link library (Win32 DLL)

File PE Metadata
Compilation timestamp:
6/8/2010 5:59:36 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
768:hojY9PfJdMmJyj0Ml+oi/XSpSZbVfDnoWyHaojY9Po:0mnJdMmJyDl+tVZloWyHjmg

Entry address:
0x1A32

Entry point:
83, 7C, 24, 08, 01, 56, 75, 6F, 8B, 74, 24, 08, 68, 04, 01, 00, 00, 68, 18, 30, 00, 10, 56, 89, 35, 90, 32, 00, 10, FF, 15, 58, 20, 00, 10, 56, FF, 15, AC, 20, 00, 10, E8, D3, F6, FF, FF, 83, F8, 01, 75, 3C, E8, CD, F8, FF, FF, 85, C0, 75, 0E, E8, 49, F8, FF, FF, 85, C0, 75, 05, E8, 16, F7, FF, FF, E8, 74, F8, FF, FF, 83, F8, 01, 75, 1B, 6A, 00, 6A, 00, 50, 6A, 00, FF, 15, A8, 20, 00, 10, A3, 9C, 32, 00, 10, 85, C0, 74, 05, E8, 44, FF, FF, FF, E8, 27, F6, FF, FF, EB, 43, 83, 7C, 24, 0C, 00, 75, 39, A1, 9C...
 
[+]

Entropy:
5.8517

Code size:
3 KB (3,072 bytes)

Remove lpk.dll - Powered by Reason Core Security