DynLib.dll

Sendori, LLC

This is part of the Sendori web browser toolbar and extension that will modify the browser's default search provider, DNS, and home page functions. The module DynLib.dll, “DynDNS® Dynamic Link Library” by Sendori has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
PureLeads  (signed by Sendori, LLC)

Product:
PureLeads

Description:
DynDNS® Dynamic Link Library

Version:
2.0.17

MD5:
8a78c09db44ae1aeff3885fb804d76bb

SHA-1:
8b31922a3fe9e21202317b82078bf772c54d2563

SHA-256:
1739683b359417e505860256a5085a82943fe8c4837778dadc8f1aa8a7dfb137

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
12/24/2024 3:54:36 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Sendori (M)
17.1.12.15

File size:
270.3 KB (276,768 bytes)

Product version:
2.0.17

Copyright:
© Dynamic Network Services, Inc.

Trademarks:
DynDNS®

Original file name:
DynLib.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\pureleads\dynlib.dll

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
12/9/2013 4:00:00 PM

Valid to:
12/10/2014 3:59:59 PM

Subject:
CN="Sendori, LLC", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Sendori, LLC", L=Oakland, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
310642A25A6D9FB4A7E88E32D87A345F

File PE Metadata
Compilation timestamp:
1/23/2014 11:15:35 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

Entry address:
0x1BF45

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, F1, AB, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, 8B, FF, 55, 8B, EC, 8B, 45, 08, 33, C9, 3B, 04, CD, E8, E4, 03, 10, 74, 13, 41, 83, F9, 2D, 72, F1, 8D, 48, ED, 83, F9, 11, 77, 0E, 6A, 0D, 58, 5D, C3, 8B, 04, CD, EC, E4, 03, 10, 5D, C3, 05, 44, FF, FF, FF, 6A, 0E, 59, 3B, C8, 1B, C0, 23, C1, 83, C0, 08, 5D, C3, E8, B9, 88, 00, 00, 85, C0, 75, 06, B8, 50, E6, 03, 10, C3, 83, C0, 08, C3, E8, A6, 88, 00, 00, 85, C0, 75...
 
[+]

Entropy:
6.6124

Code size:
197 KB (201,728 bytes)

Remove DynLib.dll - Powered by Reason Core Security