» spyalert.dll
Overview
Analysis
File Details

spyalert.dll

Long Mile Solutions, LLC

This is part of an adware program designed to inject advertising in the web browser (banners, text-links) as well as modify the normal behavior of the browser as well as modify the computer’s system settings that control applications to run on startup. Part of the Injekt brand of unwanted programs. The module spyalert.dll by Long Mile Solutions has been detected as adware by 7 anti-malware scanners.

File name:

spyalert.dll

Publisher:

Long Mile Solutions, LLC (signed and verified)

MD5:

bb58e4dbd5e65e459c5d726cc9ca0fe3

SHA-1:

3e6dae38e6f51c094b989b51498095f498f712a7

SHA-256:

fdf9284bad58db4e60d2ce2b560ff6109f798886a0a1f1e9a93827342824b6d4

Scanner detections:

7 / 68

Status:

Adware

Explanation:

Injects display ads (banner ads), in-text ads, interstitial ads, or other types of ads in the web browser as well as alters the browsers settings (home page, search, DNS, and security protocols).

Analysis date:

5/4/2024 4:04:02 AM UTC (today)

Scan engine

Detection

Engine version

Avira AntiVirus

ADWARE/Adware.Gen

7.11.212.140

ESET NOD32

MSIL/Adware.PullUpdate.C application

7.0.302.0

Kaspersky

not-a-virus:AdWare.MSIL.PullUpdate

15.0.0.543

Panda Antivirus

Trj/Genetic.gen

15.02.25.11

Reason Heuristics

PUP.Injekt

15.2.25.22

Sophos

PUA 'Pull Update'

5.10

Zillya! Antivirus

Adware.SaMon.Win32.91

2.0.0.2081

File size:

1.1 MB (1,186,112 bytes)

File type:

Dynamic link library (Win32 DLL)

Common path:

C:\ProgramData\application data\spyalert\spyalert.dll

Digital Signature

Signed by:

Long Mile Solutions, LLC

Authority:

VeriSign, Inc.

Valid from:

5/20/2014 2:00:00 AM

Valid to:

5/21/2015 1:59:59 AM

Subject:

CN="Long Mile Solutions, LLC", O="Long Mile Solutions, LLC", L=San Diego, S=California, C=US

Issuer:

CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

6015F7C4F3F065B548DA2303F218785D

File PE Metadata

Compilation timestamp:

8/29/2014 1:29:27 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

24576:7G1H5zeCK19L/uMaBhCXeHgelRFcB7/IMYthBbzM/on/x03Txm:a521xPaiXYCAMYth9z/CTE

Entry address:

0xB0C74

Entry point:

8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 42, C1, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, CC, CC, CC, CC, CC, CC, CC, CC, CC, 8B, 54, 24, 0C, 8B, 4C, 24, 04, 85, D2, 74, 69, 33, C0, 8A, 44, 24, 08, 84, C0, 75, 16, 81, FA, 80, 00, 00, 00, 72, 0E, 83, 3D, 34, 91, 11, 45, 00, 74, 05, E9, 95, C1, 00, 00, 57, 8B, F9, 83, FA, 04, 72, 31, F7, D9, 83, E1, 03, 74, 0C, 2B, D1, 88, 07, 83, C7, 01, 83, E9, 01, 75, F6, 8B, C8, C1, E0, 08, 03, C1, 8B, C8, C1, E0, 10, 03... 
[+]

Code size:

820.5 KB (840,192 bytes)

Remove spyalert.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.