home

startisback64.dll

StartIsBack

ikimi

It is registered as a context menu handler (displays a menu when right-clicked in Explorer) named “{a2a9545d-a0c2-42b4-9708-a0b2badd77c9}”.
Publisher:
www.startisback.com  (signed by ikimi)

Product:
StartIsBack

Description:
StartIsBack+ brains and soul

Version:
3.5.0

MD5:
ca8b3dfddd54f3fe25ab918c6d2fed08

SHA-1:
8d57a5f334a96720561c8ef565a31e2a18b7e944

SHA-256:
7fd9615adc9a442ee4b854c76310235391506b93ffaf111276b74a3e07028ae2

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/24/2024 2:45:14 AM UTC  (today)

File size:
501.1 KB (513,120 bytes)

Product version:
3.5.0

Copyright:
Copyright (C) 2013+, Tihiy

Original file name:
STARTISBACK.NEXT.dll

File type:
Dynamic link library (Win64 DLL)

Common path:
C:\Program Files\startisback\startisback64.dll

Digital Signature
Signed by:
ikimi

Authority:
Unizeto Technologies S.A.

Valid from:
8/11/2013 1:00:34 AM

Valid to:
8/11/2014 1:00:34 AM

Subject:
E=ikimi@live.shop.edu.cn, CN="Open Source Developer, ikimi", OU=ABC, O=ikimi, C=CN

Issuer:
CN=Certum Level III CA, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL

Serial number:
4813EE4F1B085EA1FE501D167C210705

Registration
CLSIDs:
{61625667-893E-4707-B925-A82B528C00B9}, {a2a9545d-a0c2-42b4-9708-a0b2badd77c9}, {AD1405D2-30CF-4877-8468-1EE1C52C759F}, {E5C31EC8-C5E6-4E07-957E-944DB4AAD85E}

COM registered:
Yes

File PE Metadata
Compilation timestamp:
12/25/2013 4:35:32 AM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
6144:VA0Bo5ZAYDlLqc3gwlO8hzZ+wLwthK06hd2/PxRCd:VA0SvACb3gwxzZbLwZ1Xa

Entry address:
0x240B0

Entry point:
40, 53, 48, 83, EC, 40, FF, CA, 48, 8B, D9, 0F, 85, 26, 01, 00, 00, FF, 15, A1, 70, 00, 00, B9, 43, 00, 00, 00, 48, 89, 1D, 8D, A2, 01, 00, FF, 15, F7, 78, 00, 00, 33, DB, 85, C0, 0F, 84, 96, 00, 00, 00, 48, 8D, 44, 24, 68, 44, 8D, 4B, 10, 4C, 8D, 05, CD, 21, 01, 00, 48, 89, 44, 24, 30, 48, 8D, 44, 24, 58, 48, 8D, 15, 04, 03, 01, 00, 48, 89, 44, 24, 28, 48, C7, C1, 01, 00, 00, 80, 89, 5C, 24, 58, 48, 89, 5C, 24, 20, C7, 44, 24, 68, 04, 00, 00, 00, FF, 15, 19, 74, 00, 00, 48, 8D, 44, 24, 68, 44, 8D, 4B, 10...
 
[+]

Entropy:
5.9040

Code size:
166.5 KB (170,496 bytes)

Context Menu Handler
Display name:
{a2a9545d-a0c2-42b4-9708-a0b2badd77c9}

CLSID:
{a2a9545d-a0c2-42b4-9708-a0b2badd77c9}


The file startisback64.dll has been discovered within the following program.

StartIsBack+  by startisback.com
About 7% of users remove it
 
Powered by Should I Remove It?

Scan startisback64.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.