home

zplugins.dll

Browser Distribution Services, Inc.

The module zplugins.dll, “20140924174254/37a63e5” by Browser Distribution Services has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. It is also typically executed from the user's temporary directory.
Publisher:
Browser Distribution Services, Inc.  (signed and verified)

Description:
20140924174254/37a63e5

Version:
0.0.0.0

MD5:
c10a473de3589af505d292785380ac2e

SHA-1:
c1dd8600c1d43f56ca47c3bbc4af4367c1a42198

SHA-256:
7eabce8d70caca6cdbf03e2a82ae53ca2efef49fcc8c8ee72f39e9db9ee86e5c

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
11/23/2024 11:16:48 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Zugo (M)
16.12.17.15

File size:
963.2 KB (986,272 bytes)

Product version:
0.0.0.0

Original file name:
zplugins.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\zplugins.dll

Digital Signature
Signed by:
Browser Distribution Services, Inc.

Authority:
COMODO CA Limited

Valid from:
2/1/2013 12:00:00 AM

Valid to:
2/1/2015 11:59:59 PM

Subject:
CN="Browser Distribution Services, Inc.", O="Browser Distribution Services, Inc.", STREET="2711 Centerville Road, Suite 400", L=Wilmington, S=DE, PostalCode=19808, C=US

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
3B259692789E76789FF829879954D882

File PE Metadata
Compilation timestamp:
9/24/2014 5:42:56 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
12.0

Entry address:
0x9A42D

Entry point:
00, 00, 00, 18, C8, 96, 89, 00, 00, 00, 00, 00, 00, 77, 22, 0C, 37, D6, B4, 58, 00, 12, C0, 00, 00, 00, 00, C4, 17, 00, 00, 04, 00, 00, 00, 71, 14, CD, D4, 44, 00, 00, 00, 3A, 3B, 1C, 33, 05, 20, C2, 44, AC, 5E, 77, 22, 0C, 37, D6, B4, 15, 00, 00, 10, 04, 02, 28, 00, 08, 00, 00, 00, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, E0, 9D, 0A, 86, F0, 17, D9, 86, 72, 00, 12, C0, 00, 00, 00, 00, C4, 17, 00, 00, 04, 00, 00, 00, 77, 14, CD, D4, 44...
 
[+]

Code size:
762 KB (780,288 bytes)

Remove zplugins.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.