home

gateway.dll

MD5:
ddb84c1587287b2df08966081ef063bf

SHA-1:
9eb9ac595e9b5544e2dc79fff7cd2d0b4b5ef71f

SHA-256:
88171413fc76dda23ab32baa17b11e4fff89141c633ece737852445f1ba6c1bd

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/30/2024 8:39:56 AM UTC  (today)

File size:
91.7 KB (93,868 bytes)

File type:
Dynamic link library (Win64 DLL)

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
1536:k5RKUpVgklsdbuLP/l+0fGzA8gmtasgx/c9Rzzi4yff8qeLvHHEjam7rSnmBn9gn:Ee8FbGzA81+xRRi1Z3

Entry point:
2F, 2A, 21, 20, 6A, 51, 75, 65, 72, 79, 20, 76, 31, 2E, 37, 2E, 31, 20, 6A, 71, 75, 65, 72, 79, 2E, 63, 6F, 6D, 20, 7C, 20, 6A, 71, 75, 65, 72, 79, 2E, 6F, 72, 67, 2F, 6C, 69, 63, 65, 6E, 73, 65, 20, 2A, 2F, 0A, 28, 66, 75, 6E, 63, 74, 69, 6F, 6E, 28, 61, 2C, 62, 29, 7B, 66, 75, 6E, 63, 74, 69, 6F, 6E, 20, 63, 79, 28, 61, 29, 7B, 72, 65, 74, 75, 72, 6E, 20, 66, 2E, 69, 73, 57, 69, 6E, 64, 6F, 77, 28, 61, 29, 3F, 61, 3A, 61, 2E, 6E, 6F, 64, 65, 54, 79, 70, 65, 3D, 3D, 3D, 39, 3F, 61, 2E, 64, 65, 66, 61, 75...
 
[+]

Entropy:
5.3722

The file gateway.dll has been discovered within the following programs.

Aspen PIMS Platinum  by Aspen Technology, Inc.
www.aspentech.com
About 6% of users remove it
Boxore Client  by Boxore OU
Typically bundled through 3rd party download managers as an 'offer'. The software will modify the user's web browser and display advertisements in Internet Explorer, Chrome and Firefox as well as modify the home and search pages.
www.boxore.com
81% remove it
DeskAlerts  by Softomate, LLC
Publisher's description - “DeskAlerts is a one-way instant desktop alert notification system that combines ease of use with comprehensive security, tracking, and customization options for fail-safe communications.”
www.softomate.com/products/deskalerts
43% remove it
Officership  by None provided
About 5% of users remove it
Personal Development  by None provided
About 4% of users remove it
Popcornew  by Popcornew OU
Popcornew is supported by various types of advertising.
popcornew.com
76% remove it
Quest  by Text Adventures Ltd
textadventures.co.uk
About 8% of users remove it
R+F Biz Op  by Rodan & Fields, LLC
Publisher's description - “Sharing the Rodan + Fields opportunity has never been easier. Use the R+F Biz Op app to share with your prospects all that Rodan + Fields has to offer.”
www.rodanandfields.com/Shop
10% remove it
Shaderlight For SketchUp  by ArtVPS
About 1% of users remove it
Shopping Helper Smartbar Engine  by ReSoft Ltd.
Shopping Helper Smartbar is a potentially unwanted web browser extension that is ad-supported and will display various popup and banner ads as well as modify the user's web browser search and home page settings.
snap.do
69% remove it
 
Latest 20 of 20 programs
Powered by Should I Remove It?

The file gateway.dll has been seen being distributed by the following 5 URLs.

http://www.friv4.com.co/.../jquery.min.js

http://filespeedy.net/.../jquery-1.7.1.min.js

https://wwwimages2.adobe.com/downloadcenter/js/.../jquery-1.7.1.min.js

https://iconnect.insead.edu/CookieAuth.dll?GetPic?formdir=18&image=jquery-1.7.1.min.js

https://moonmedia.info/static/.../jquery-1.7.1.min.js

Scan gateway.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.