» nsishelper.dll
Overview
Analysis
File Details

nsishelper.dll

TomorrowGames

The module nsishelper.dll has been detected as a potentially unwanted program by 15 anti-malware scanners.

File name:

nsishelper.dll

Publisher:

TomorrowGames

Product:

TomorrowGames

Description:

Application

Version:

0, 16, 780, 0

MD5:

90ff0ca676532f70771835ac851e467a

SHA-1:

a6823abef028c6db4fb681d81e258aeee193ffa8

Scanner detections:

15 / 68

Status:

Potentially unwanted

Analysis date:

4/26/2024 11:44:20 PM UTC (a few moments ago)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Adware.Mikey.27460

431

Agnitum Outpost

PUA.CouponMarvel

7.1.1

AhnLab V3 Security

PUP/Win32.Helper

2015.12.01

Avira AntiVirus

ADWARE/CouponMarvel.502272.14

8.3.2.4

Arcabit

Trojan.Adware.Mikey.D6B44

1.0.0.627

Baidu Antivirus

Adware.Win32.CouponMarvel

4.0.3.15121

Bitdefender

Gen:Variant.Adware.Mikey.27460

1.0.20.1675

Emsisoft Anti-Malware

Gen:Variant.Adware.Mikey.27460

8.15.12.01.06

ESET NOD32

Win32/Adware.CouponMarvel (variant)

9.12648

F-Secure

Gen:Variant.Mikey.27460

11.2015-01-12_3

G Data

Gen:Variant.Adware.Mikey.27460

15.12.25

MicroWorld eScan

Gen:Variant.Adware.Mikey.27460

16.0.0.1005

Reason Heuristics

PUP.LolliScan.TomorrowGames.Meta (M)

15.12.1.6

SUPERAntiSpyware

PUP.TomorrowGames/Variant

9474

VIPRE Antivirus

Trojan.Win32.Generic

45526

File size:

490.5 KB (502,272 bytes)

Product version:

2, 0, 0, 0

Original file name:

TomorrowGames

File type:

Dynamic link library (Win32 DLL)

Language:

English (United States)

Common path:

C:\Documents and Settings\{user}\Local settings\temp\{random}.tmp\nsishelper.dll

File PE Metadata

Compilation timestamp:

11/29/2015 3:30:31 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

12.0

CTPH (ssdeep):

12288:ykHgYeTd7E0ogY8gZdMJ4hDb0Hl53w5W/kVYu/:rHheftYN7Re5h/kVX/

Entry address:

0x2D64F

Entry point:

55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 80, 34, 01, 00, FF, 75, 10, FF, 75, 0C, FF, 75, 08, E8, 1B, 13, 02, 00, 83, C4, 0C, 5D, C2, 0C, 00, 6A, 38, B8, D3, 42, 05, 10, E8, 60, A0, 01, 00, 33, F6, 8B, DE, 89, 5D, F0, 8B, 7D, 08, 85, FF, 74, 5A, 39, 37, 75, 56, 6A, 08, E8, 0E, A7, 01, 00, 59, 89, 45, 08, 89, 75, FC, 85, C0, 74, 24, 8B, 4D, 0C, E8, 53, D6, FD, FF, 50, 8D, 4D, BC, E8, 47, 6B, 00, 00, 43, 88, 5D, FC, 56, 89, 5D, F0, 8B, 4D, 08, 50, E8, 03, 8A, 00, 00, 8B, F0, C7, 45, FC, 02, 00, 00, 00, 89, 37... 
[+]

Entropy:

6.5449

Developed / compiled with:

Microsoft Visual C++

Code size:

365.5 KB (374,272 bytes)

Remove nsishelper.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.