home

14RegFFT.dll

TotalRecipeSearch for Internet Explorer and Firefox

Mindspark Interactive Network

This library is part of the Mindspark toolbar which uses the Ask.com search property to install a web browser extension and modify the browser's search, home and new tab features in order to redirect web searches to the IAC property. The module 14RegFFT.dll, “TotalRecipeSearch” by Mindspark Interactive Network has been detected as a potentially unwanted program by 17 anti-malware scanners.
Publisher:
TotalRecipeSearch  (signed by Mindspark Interactive Network)

Product:
TotalRecipeSearch for Internet Explorer and Firefox

Description:
TotalRecipeSearch

Version:
1, 0, 0, 1

MD5:
6453e216fb0ba36c87b823f064f35986

SHA-1:
800cc86906e5e667c18fcd2577c9f38f787fda5b

Scanner detections:
17 / 68

Status:
Potentially unwanted

Explanation:
Part of the MyWebSearch/Mindspark/Ask web browser extension and toolbar.

Analysis date:
4/25/2024 3:27:25 AM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:FunWeb-F [PUP]
2014.9-140723

AVG
AdInstaller.FunWeb
2015.0.3404

Bitdefender
Adware.MyWebSearch.ED
1.0.20.1045

Clam AntiVirus
Win.Trojan.5770437
0.98/18155

Comodo Security
UnclassifiedMalware
16925

Dr.Web
Tool.InstallToolbar.5
9.0.1.0204

Emsisoft Anti-Malware
Adware.MyWebSearch.ED
8.14.07.28.12

ESET NOD32
Win32/Toolbar.MyWebSearch
8.8944

F-Secure
Adware.MyWebSearch.ED
11.2014-28-07_2

G Data
Adware.MyWebSearch.ED
14.7.22

IKARUS anti.virus
Trojan-Spy.Win32.Agent
t3scan.2.0.127

MicroWorld eScan
Adware.MyWebSearch.ED
15.0.0.627

Reason Heuristics
PUP.MindsparkInteractiveNetwork.I
14.8.8.2

Trend Micro House Call
TROJ_GEN.R47H1JN
7.2.204

Vba32 AntiVirus
TrojanSpy.Agent
3.12.24.0

VIPRE Antivirus
MyWebSearch.J
21402

ViRobot
Trojan.Win32.A.Agent.45056.AU
2011.4.7.4223

File size:
44 KB (45,056 bytes)

Product version:
2, 3, 0, 0

Copyright:
Copyright © 2010

Original file name:
14RegFFT.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\totalrecipesearch_14\bar\1.bin\14regfft.dll

Digital Signature
Signed by:
Mindspark Interactive Network

Authority:
VeriSign, Inc.

Valid from:
5/30/2010 8:00:00 PM

Valid to:
5/6/2012 7:59:59 PM

Subject:
CN=Mindspark Interactive Network, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Mindspark Interactive Network, L=White Plains, S=NewYork, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
41730EB0E6D92A476E16628A0DBEFB36

File PE Metadata
Compilation timestamp:
2/10/2011 8:18:54 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
384:S+7JkDzwQwSSio8ku9Aw1NQWv7Zm7Opj8yoZi6WVdCnrsx0bCf1qMYJLB:Rp8v9AOv7Zm7Y5R6yOr9bC90LB

Entry address:
0x10B9

Entry point:
55, 8B, EC, 83, 7D, 0C, 01, 56, 8B, 75, 08, 75, 0B, 89, 35, A4, 63, 00, 10, E8, 20, 00, 00, 00, FF, 75, 10, FF, 75, 0C, 56, E8, 3A, 11, 00, 00, 83, 7D, 0C, 00, 8B, F0, 75, 05, E8, 3E, 00, 00, 00, 8B, C6, 5E, 5D, C2, 0C, 00, 68, 80, 63, 00, 10, FF, 15, C8, 50, 00, 10, 68, 10, 60, 00, 10, 68, 00, 60, 00, 10, E8, 03, 00, 00, 00, 59, 59, C3, 56, 8B, 74, 24, 08, 3B, 74, 24, 0C, 73, 0D, 8B, 06, 85, C0, 74, 02, FF, D0, 83, C6, 04, EB, ED, 5E, C3, A1, A0, 63, 00, 10, 85, C0, 74, 2F, 8B, 0D, 9C, 63, 00, 10, 56, 8D...
 
[+]

Entropy:
4.7225

Developed / compiled with:
Microsoft Visual C++

Code size:
16 KB (16,384 bytes)

Remove 14RegFFT.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.