» msvcp100.dll
Overview
Analysis
File Details

msvcp100.dll

Microsoft Visual Studio 2010

337 Technology Limited

msvcp100.dll is the runtime components of Visual C++ Libraries required to run applications developed with Visual C++ and is recompiled by 337 Technology Limited. While the file properties state the file is developed by 'Microsoft Corporation', this is not the case and it is designed just to look like a legitimate Microsoft system file. The module msvcp100.dll, “Microsoft® C Runtime Library” by 337 Technology Limited has been detected as adware by 4 anti-malware scanners. Note, this is a common distributed file and although it has been detected it might not be a threat is un-coupled from its distribution source.

File name:

msvcp100.dll

Publisher:

Microsoft Corporation (signed by 337 Technology Limited)

Product:

Microsoft® Visual Studio® 2010

Description:

Microsoft® C Runtime Library

Version:

10.00.40219.1

MD5:

a70402332a1f63bad7cbec37a7f88b5a

SHA-1:

cfe8d68be7cb47c083fb5b9abd6083a37780792c

SHA-256:

e89efb82f1772a85a7044ca04fb154f2c3176550266f845a5029eb6e29a5560a

Scanner detections:

4 / 68

Status:

Adware

Explanation:

This is the runtime components of Visual C++ Libraries required to run applications developed with Visual C++. While the file itself is not dangerous, it is part of a program that has been detected.

Analysis date:

4/23/2024 8:17:50 AM UTC (today)

Scan engine

Detection

Engine version

Comodo Security

ApplicUnwnt

17288

Kaspersky

not-a-virus:AdWare.Win32.D365

14.0.0.4572

Reason Heuristics

Common.CRuntimePackaged.PUP.I

14.8.7.20

Trend Micro House Call

TROJ_GEN.F47V0910

7.2.330

File size:

411.1 KB (420,944 bytes)

Product version:

10.00.40219.1

Original file name:

msvcp100.dll

File type:

Dynamic link library (Win32 DLL)

Language:

English (United States)

Common path:

C:\Windows\System32\msvcp100.dll

Digital Signature

Signed by:

337 Technology Limited

Authority:

GlobalSign nv-sa

Valid from:

6/25/2012 4:04:18 PM

Valid to:

6/26/2015 4:04:18 PM

Subject:

CN=337 Technology Limited, O=337 Technology Limited, L=香港, S=香港, C=HK

Issuer:

CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:

1121A511A565DC1022CCD7BA41E2E418FE65

File PE Metadata

Compilation timestamp:

2/19/2011 7:18:09 AM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

12288:/Nb8zxr1aWPaHX7dGP57rhUgiW6QR7t5qv3Ooc8UHkC2ejU:/Nb8Fpa6aHX7dGP5Kv3Ooc8UHkC2ew

Entry address:

0x33CF4

Entry point:

8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 26, 04, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, C7, FE, FF, FF, 59, 5D, C2, 0C, 00, CC, CC, CC, CC, CC, FF, 25, B0, 11, 05, 78, CC, CC, CC, CC, CC, CC, FF, 25, C0, 11, 05, 78, CC, CC, CC, CC, CC, 6A, 0A, FF, 15, 24, 10, 05, 78, A3, 14, 1A, 0B, 78, 33, C0, C3, CC, CC, CC, CC, CC, FF, 25, C4, 11, 05, 78, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 68, BE, 3D, 08, 78, 64, FF, 35, 00, 00, 00, 00, 8B, 44, 24, 10, 89, 6C, 24, 10... 
[+]

Entropy:

6.5958

Code size:

371.5 KB (380,416 bytes)

Remove msvcp100.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.