» msnen.dll
Overview
Analysis
File Details

msnen.dll

MSN Security Guard Dynamic Link Library

上海美斯恩网络通讯技术有限公司

The library msnen.dll has been detected as malware by 25 anti-virus scanners.

File name:

msnen.dll

Publisher:

上海美斯恩网络通讯技术有限公司 (signed and verified)

Product:

MSN Security Guard Dynamic Link Library

Version:

2, 4, 1, 7050

MD5:

c5c7f240223f64753d0427af0676e781

SHA-1:

5b856615e3597738d665410046c9092c39a63b68

SHA-256:

da51cbaea03890fea88deb0cd9b2a302cdb931cab78a288cc9596b0f14b79ddf

Scanner detections:

25 / 68

Status:

Malware

Analysis date:

12/26/2024 2:57:22 PM UTC (today)

Scan engine

Detection

Engine version

Avira AntiVirus

BDS/ZZSlash.exw

7.11.39.248

avast!

Win32:Trojan-gen

2014.9-170108

AVG

BackDoor.Generic14

2018.0.2504

Bitdefender

Trojan.Generic.6111455

1.0.20.40

Comodo Security

Backdoor.Win32.Zzslash.ai001

13253

Dr.Web

Trojan.Siggen2.6727

9.0.1.08

Emsisoft Anti-Malware

Backdoor.Win32.ZZSlash!IK

8.17.01.08.05

ESET NOD32

Win32/Redosdru.AA

11.7389

Fortinet FortiGate

W32/ZZSlash.EXH!tr.bdr

1/8/2017

F-Secure

Trojan.Generic.6111455

11.2017-08-01_1

G Data

Trojan.Generic.6111455

17.1.22

IKARUS anti.virus

Backdoor.Win32.ZZSlash

t3scan.1.1.122.0

K7 AntiVirus

Riskware

13.146.7498

Kaspersky

Backdoor.Win32.ZZSlash

14.0.0.-984

McAfee

Artemis!C5C7F240223F

5600.6160

Microsoft Security Essentials

Trojan:Win32/Redosdru.E

1.163.1557.0

Norman

W32/Suspicious_Gen2.NDIJS

11.20170108

nProtect

Trojan/W32.Agent.641749

12.08.15.01

Panda Antivirus

Trj/Agent.DPE

17.01.08.05

Rising Antivirus

Trojan.Win32.Fednu.tkd

23.00.65.17106

Sophos

Mal/Agent-ZR

4.80

Trend Micro

BKDR_REFROSO.CNI

10.465.08

Vba32 AntiVirus

Backdoor.ZZSlash.exh

3.12.18.2

VIPRE Antivirus

Trojan.Win32.Generic

12652

ViRobot

Backdoor.Win32.A.ZZSlash.641753

2011.4.7.4223

File size:

626.7 KB (641,749 bytes)

Product version:

2, 4, 1, 7050

Original file name:

iphlpapi.dll

File type:

Dynamic link library (Win32 DLL)

Common path:

C:\windows\syswow64\msnen.dll

Digital Signature

Signed by:

上海美斯恩网络通讯技术有限公司

Authority:

Root Agency

Valid from:

11/10/2010 11:13:23 PM

Valid to:

1/1/2040 7:59:59 AM

Subject:

CN=crt.wosign.com/WoSignCodeSigning.crt, E=Babyt-163-com, O=上海美斯恩网络通讯技术有限公司

Issuer:

CN=Root Agency

Serial number:

0BC319A1805093AD42691EE6B99D3A24

File PE Metadata

Compilation timestamp:

1/18/2009 4:54:00 PM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Native (none required)

Linker version:

9.0

Entry address:

0xDAAC

Entry point:

6A, 00, 59, 83, EC, 0C, 83, C1, 0C, 83, 3C, 24, 00, 74, F4, 03, E1, E9, 3E, 85, 10, 00, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 90, 8B, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, 10, 54, 09, 10, 89, 0D, 0C, 54, 09, 10, 89, 15, 08, 54, 09, 10, 89, 1D, 04, 54, 09, 10, 89, 35, 00, 54, 09, 10, 89, 3D, FC, 53, 09, 10, 66, 8C, 15, 28, 54, 09, 10, 66, 8C, 0D, 1C, 54, 09, 10, 66, 8C, 1D, F8, 53, 09, 10, 66, 8C, 05, F4, 53, 09, 10, 66, 8C, 25, F0, 53, 09, 10, 66, 8C, 2D, EC, 53, 09, 10, 9C, 8F, 05, 20, 54... 
[+]

Entropy:

6.7282

Code size:

473.5 KB (484,864 bytes)

Remove msnen.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.