spursdownload.dll

Sunbelt AntiMalware Common SDK Merge Module

Sunbelt Software, Inc.

Publisher:
Sunbelt Software  (signed by Sunbelt Software, Inc.)

Product:
Sunbelt AntiMalware Common SDK Merge Module

Description:
Spurs Download Dynamic Link Library

Version:
4.0.4196

MD5:
dc646689267c3965f179d96145981623

SHA-1:
e09ec18eaa44e640e86c68f43eaa3ea9410d09cc

SHA-256:
384200bde82ad245803bcbc908bd3f7b8bbf81849a9a668a8ea8e6c7eb6db626

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/5/2024 11:46:51 AM UTC  (today)

File size:
405.3 KB (415,056 bytes)

Product version:
4.0.4196

Copyright:
Copyright (c) 2002-2011 Sunbelt Software. All rights reserved.

Original file name:
SpursDow.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\spursdownload.dll

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
10/21/2009 1:00:00 AM

Valid to:
10/28/2012 12:59:59 AM

Subject:
CN="Sunbelt Software, Inc.", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Sunbelt Software, Inc.", L=Clearwater, S=Florida, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
3E39AA5744B96351475CBA9CBC223E33

File PE Metadata
Compilation timestamp:
5/17/2011 11:13:39 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
6144:2MRji9CNWjZizKksee+oAZoSKQwcsJcmfJtBgZB8etn9:2MRji9cWj+Kksee+jUFcemB8i9

Entry address:
0x32592

Entry point:
83, 7C, 24, 08, 01, 75, 05, E8, 1F, C0, 00, 00, FF, 74, 24, 04, 8B, 4C, 24, 10, 8B, 54, 24, 0C, E8, ED, FE, FF, FF, 59, C2, 0C, 00, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 8B, 4C, 24, 04, F7, C1, 03, 00, 00, 00, 74, 24, 8A, 01, 83, C1, 01, 84, C0, 74, 4E, F7, C1, 03, 00, 00, 00, 75, EF, 05, 00, 00, 00, 00, 8D, A4, 24, 00, 00, 00, 00, 8D, A4, 24, 00, 00, 00, 00, 8B, 01, BA, FF, FE, FE, 7E, 03, D0, 83, F0, FF, 33, C2, 83, C1, 04, A9, 00, 01, 01, 81, 74, E8, 8B, 41, FC, 84, C0, 74, 32, 84, E4, 74...
 
[+]

Entropy:
6.4661

Code size:
304 KB (311,296 bytes)

The file spursdownload.dll has been discovered within the following programs.

Spyware Striker  by Ascentive
From the site: "The free download of Ascentive’s Registry Cleaner, Anti-Malware Software, and other trial products are intended to find issues, errors, threats, junk, and clutter that can be removed by single or multiple Ascentive products after paid activation.
www.ascentive.com
53% remove it
UnThreat AntiVirus  by AVSoftware Ltd.
Publisher's description - “UnThreat uses an award-winning virus detection and removal engine that protects your computer against the most recent viruses. UnThreat works in the background, keeping your computer safe with minimum hassle.”
www.unthreat.com
About 1% of users remove it
 
Powered by Should I Remove It?

The file spursdownload.dll has been seen being distributed by the following 3 URLs.

Scan spursdownload.dll - Powered by Reason Core Security