home

screenhooks.dll

GlavSoft LLC.

Publisher:
GlavSoft LLC.  (signed and verified)

MD5:
362ba3b724eb94eef488f6865d1b54e6

SHA-1:
17650a06446b06c20b3da6d056e214378dfb8f78

SHA-256:
c92512c7d0319fff8d773558e5a2ac77ebbd74452f03482ab3b68b782ad161ce

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 8:46:00 PM UTC  (today)

File size:
67.1 KB (68,696 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\-pctechview3514\screenhooks.dll

Digital Signature
Signed by:
GlavSoft LLC.

Authority:
Thawte Consulting (Pty) Ltd.

Valid from:
3/29/2010 9:00:00 PM

Valid to:
3/30/2011 8:59:59 PM

Subject:
CN=GlavSoft LLC., O=GlavSoft LLC., L=Tomsk, S=Tomsk, C=RU

Issuer:
CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:
0417672C50CCCEB12ACC38DA34266994

File PE Metadata
Compilation timestamp:
7/8/2010 10:22:46 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
768:neZqWeHKKFCdvT2aXstUF478LoTciwPPYd22f39fiBiY10sZU+owORpNFw/NfLs:e4EyChXXFO8LrCrNfyXZU+ARp3wp4

Entry address:
0x3A7D

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 0F, 2A, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, 55, 8B, EC, 57, 56, 8B, 75, 0C, 8B, 4D, 10, 8B, 7D, 08, 8B, C1, 8B, D1, 03, C6, 3B, FE, 76, 08, 3B, F8, 0F, 82, A4, 01, 00, 00, 81, F9, 00, 01, 00, 00, 72, 1F, 83, 3D, 78, F8, 00, 10, 00, 74, 16, 57, 56, 83, E7, 0F, 83, E6, 0F, 3B, FE, 5E, 5F, 75, 08, 5E, 5F, 5D, E9, D2, 2A, 00, 00, F7, C7, 03, 00, 00, 00, 75, 15, C1, E9, 02, 83, E2, 03, 83, F9, 08, 72, 2A, F3, A5, FF...
 
[+]

Code size:
40 KB (40,960 bytes)

The file screenhooks.dll has been discovered within the following programs.

LogMeIn Hamachi  by LogMeIn, Inc.
LogMeIn remote access products use a proprietary remote desktop protocol that is transmitted via SSL. An SSL certificate is created for each remote desktop and is used to cryptographically secure communications between the remote desktop and the accessing computer.
secure.logmein.com/products/hamachi/download.aspx
About 7% of users remove it
TightVNC 1.3.9  by TightVNC Group
www.tightvnc.com
About 1% of users remove it
 
Powered by Should I Remove It?

Scan screenhooks.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.