» 178.dll
Overview
Analysis
File Details
Behaviors (1)
Programs (1)

178.dll

The module 178.dll has been detected as adware by 22 anti-malware scanners. It is installed within the context of Internet Explore as a BHO (Browser Helper Object) under the name ‘SpeeditUp’. This file is typically installed with the program SpeeditUp by Revizer Technologies which is a potentially unwanted software program.

File name:

178.dll

MD5:

9f8bc165bb07f287feb4d84f9a145e50

SHA-1:

37f65528d404779951afc461f8011ffb929eb459

SHA-256:

577c10af398b3dd916a38d0dcfe47dcbfc399258d361e496a94ad33b9018953f

Scanner detections:

22 / 68

Status:

Adware

Analysis date:

4/26/2024 12:38:11 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Zusy.103904

868

Avira AntiVirus

TR/Zusy.xynynabr

7.11.171.148

avast!

Win32:Adware-gen [Adw]

2014.9-140919

AVG

Adware Generic_r.SI

2014.0.4015

Baidu Antivirus

Adware.Win32.AddLyrics

4.0.3.14919

Bitdefender

Gen:Variant.Zusy.103904

1.0.20.1310

Dr.Web

Trojan.Lyrics.167

9.0.1.05190

Emsisoft Anti-Malware

Gen:Variant.Zusy.103904

14.09.19

ESET NOD32

Win32/AdWare.AddLyrics.BM application

7.0.302.0

Fortinet FortiGate

Riskware/AddLyrics

9/19/2014

F-Secure

Gen:Variant.Zusy.103904

11.2014-19-09_6

G Data

Gen:Variant.Zusy.103904

14.9.24

IKARUS anti.virus

PUA.AdLyrics

t3scan.1.7.8.0

McAfee

RDN/Generic PUP.x!cmn

5600.7002

MicroWorld eScan

Gen:Variant.Zusy.103904

15.0.0.786

NANO AntiVirus

Trojan.Win32.Lyrics.deqnif

0.28.2.61942

Panda Antivirus

Trj/Genetic.gen

14.09.19.09

Qihoo 360 Security

Win32/Trojan.f36

1.0.0.1015

Reason Heuristics

Threat.Win.Reputation.IMP

14.9.19.21

Sophos

Generic PUA FK

4.98

Trend Micro House Call

TROJ_GEN.R00JB01IA14

7.2.262

VIPRE Antivirus

Revizer.b

32990

File size:

216.5 KB (221,696 bytes)

File type:

Dynamic link library (Win32 DLL)

Language:

English (United States)

Common path:

C:\Program Files\ver4speeditup\178.dll

File PE Metadata

Compilation timestamp:

9/9/2014 2:16:21 AM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

CTPH (ssdeep):

3072:BDWW0WgoZSoO/4/OKZXrDONhmTKVQqaoC+M2d0l2wMthTt5vsOQfkn:BDWW0WgIS3mOg/ShbjSJmtxkOQfkn

Entry address:

0xF1A5

Entry point:

55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 9B, 64, 00, 00, FF, 75, 10, FF, 75, 0C, FF, 75, 08, E8, 07, 00, 00, 00, 83, C4, 0C, 5D, C2, 0C, 00, 6A, 0C, 68, 70, 96, 02, 10, E8, DC, 45, 00, 00, 33, C0, 40, 8B, 75, 0C, 85, F6, 75, 0C, 39, 35, F0, DD, 02, 10, 0F, 84, E4, 00, 00, 00, 83, 65, FC, 00, 83, FE, 01, 74, 05, 83, FE, 02, 75, 35, 8B, 0D, 08, 31, 02, 10, 85, C9, 74, 0C, FF, 75, 10, 56, FF, 75, 08, FF, D1, 89, 45, E4, 85, C0, 0F, 84, B1, 00, 00, 00, FF, 75, 10, 56, FF, 75, 08, E8, 11, FE, FF, FF, 89, 45, E4... 
[+]

Entropy:

6.2579

Developed / compiled with:

Microsoft Visual C++

Code size:

132 KB (135,168 bytes)

Internet Explorer BHO

Display name:

SpeeditUp

CLSID:

{B7AB83FA-8C19-79B3-6E8B-B08E1AF3C534}

The file 178.dll has been discovered within the following program.

SpeeditUp by Revizer Technologies

SpeeditUp is a potentially unwanted adware program that injects ads into the user's browser. This includes inserting into web pages or displaying ads over parts of existing web page advertisements, banners, coupons or text links that would not otherwise appear.

83% remove it

Remove 178.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.