home

OVShell.dll

Online Vault

Crawler, LLC

The module OVShell.dll, “Online Vault Shell Menu Extension” by Crawler has been detected as a potentially unwanted program by 5 anti-malware scanners.
Publisher:
Crawler.com  (signed by Crawler, LLC)

Product:
Online Vault

Description:
Online Vault Shell Menu Extension

Version:
1.0.0.8

MD5:
a76a660377d36c8baa6c956f499bd6de

SHA-1:
9f30857d2cc9487312e79b42e85116322c56de5d

SHA-256:
2ebc1d3841ec7c69d5a85b54db7323ba9916e65aea9eff6ae42b27c584fcacd7

Scanner detections:
5 / 68

Status:
Potentially unwanted

Analysis date:
2/7/2026 7:31:48 AM UTC  (today)

Scan engine
Detection
Engine version

Baidu Antivirus
Adware.Win32.Crawler
4.0.3.16217

Kaspersky
not-a-virus:WebToolbar.Win32.CrawBar
14.0.0.647

Reason Heuristics
PUP.Crawler (M)
16.2.17.16

Trend Micro House Call
Suspicious_GEN.F47V0107
7.2.48

XVirus List
Win.Detected
2.3.31

File size:
398.4 KB (407,912 bytes)

Product version:
1.0.0.8

Copyright:
© Crawler.com

Original file name:
OVShell.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\onlinevault\ovshell.dll

Digital Signature
Signed by:
Crawler, LLC

Authority:
VeriSign, Inc.

Valid from:
11/27/2013 5:30:00 AM

Valid to:
1/26/2017 5:29:59 AM

Subject:
CN="Crawler, LLC", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Crawler, LLC", L=Boca Raton, S=Florida, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
48E3A7F6CBA47D0C3FCD17CF81AB3F76

File PE Metadata
Compilation timestamp:
10/30/2012 1:16:39 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
6144:GQ9UvX1l40C3TAiL9pwY6WE3tZjiEGlCWzikC:GeUvX/40lzZjNGAgBC

Entry address:
0x54CB4

Entry point:
55, 8B, EC, 83, C4, C0, B8, C0, F8, 44, 00, E8, 84, 53, FB, FF, E8, 1B, 17, FB, FF, 8D, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.4566

Developed / compiled with:
Microsoft Visual C++

Code size:
334.5 KB (342,528 bytes)

Approved Shell Extension
Name:
OVShellHandler

CLSID:
{91355F74-D76B-11DF-91F3-0FB0DFD72085}


Remove OVShell.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.