» 64EzSetp.DLL
Overview
Analysis
File Details

64EzSetp.DLL

TelevisionFanatic Easy Installer

Mindspark Interactive Network

This library is part of the Mindspark toolbar which uses the Ask.com search property to install a web browser extension and modify the browser's search, home and new tab features in order to redirect web searches to the IAC property. The module 64EzSetp.DLL by Mindspark Interactive Network has been detected as a potentially unwanted program by 24 anti-malware scanners.

File name:

64EzSetp.DLL

Publisher:

TelevisionFanatic (signed by Mindspark Interactive Network)

Product:

TelevisionFanatic Easy Installer

Version:

1, 2, 3, 0

MD5:

f7f0d9af3a311961aae9913526fa77c7

SHA-1:

3e5ea629c7a497da6981fd9e8a22503d2ec17790

SHA-256:

310ef1363b2f0d51f542162cf20dfd74ea041d08e34e97b8cbb5847facf15e12

Scanner detections:

24 / 68

Status:

Potentially unwanted

Explanation:

Part of the MyWebSearch/Mindspark/Ask web browser extension and toolbar.

Analysis date:

4/19/2024 7:43:23 AM UTC (today)

Scan engine

Detection

Engine version

Agnitum Outpost

Adware.FunWeb

7.1.1

avast!

Win32:PUP-gen [PUP]

2014.9-140730

AVG

Skodna.Generic

2015.0.3398

Bkav FE

W32.Clod5fd.Trojan

1.3.0.4959

Clam AntiVirus

Win.Adware.Funweb-15

0.98/21411

Comodo Security

UnclassifiedMalware

18598

Dr.Web

Tool.InstallToolbar.5

9.0.1.0211

ESET NOD32

Win32/Toolbar.MyWebSearch (variant)

8.9968

Fortinet FortiGate

Adware/FunWeb

7/30/2014

Kaspersky

not-a-virus:WebToolbar.Win32.MyWebSearch

14.0.0.3485

McAfee

Artemis!F7F0D9AF3A31

5600.7054

NANO AntiVirus

Riskware.Win32.FunWeb.cmoyg

0.28.0.60253

Norman

Funweb.A!genr

11.20140730

Panda Antivirus

Adware/WebSearch

14.07.30.12

Qihoo 360 Security

Win32/Trojan.68c

1.0.0.1015

Quick Heal

WebToolbar.MyWebSearch.r5 (Not a Virus)

7.14.14.00

Reason Heuristics

PUP.Installer.MindsparkInteractiveNetwork.I

14.8.8.2

Rising Antivirus

PE:Trojan.Win32.Generic.1258F574!307819892

23.00.65.14728

Total Defense

Win32/SillyBHO.GNX

37.0.11008

Trend Micro House Call

TROJ_SPNR.0EIB13

7.2.211

Trend Micro

TROJ_SPNR.0EIB13

10.465.30

VIPRE Antivirus

MyWebSearch.J

30452

ViRobot

Adware.ArchSMS.219208

2011.4.7.4223

Zillya! Antivirus

Adware.FunWeb.Win32.99

2.0.0.1831

File size:

214.1 KB (219,208 bytes)

Product version:

1, 2, 3, 0

Original file name:

64EzSetp.DLL

File type:

Dynamic link library (Win32 DLL)

Language:

English (United States)

Common path:

C:\Program Files\televisionfanaticei\installr\1.bin\64ezsetp.dll

Digital Signature

Signed by:

Mindspark Interactive Network

Authority:

VeriSign, Inc.

Valid from:

5/30/2010 5:00:00 PM

Valid to:

5/6/2012 4:59:59 PM

Subject:

CN=Mindspark Interactive Network, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Mindspark Interactive Network, L=White Plains, S=NewYork, C=US

Issuer:

CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

41730EB0E6D92A476E16628A0DBEFB36

File PE Metadata

Compilation timestamp:

9/28/2010 3:37:39 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

6.0

CTPH (ssdeep):

3072:3HoA8JbSQQ7cXmNrfK7kPFbu6KbJDEAcif2+YI8CPEl:3HqbWvU7kPFy6qh2+YI8CPs

Entry address:

0xBBCA

Entry point:

FF, 74, 24, 0C, FF, 74, 24, 0C, FF, 74, 24, 0C, E8, 35, 55, FF, FF, C2, 0C, 00, FF, 15, 5C, 41, 01, 10, 33, C0, C3, A1, 60, 8A, 01, 10, 56, 85, C0, 75, 13, FF, 74, 24, 08, 50, FF, 35, 00, 8A, 01, 10, FF, 15, F4, 40, 01, 10, 5E, C3, 8B, 0D, 64, 8A, 01, 10, 8B, 15, 5C, 8A, 01, 10, FF, 05, 64, 8A, 01, 10, 23, D1, 8B, 34, 90, 8B, 44, 24, 08, 83, C0, 08, 50, 6A, 00, 56, FF, 15, F4, 40, 01, 10, 85, C0, 74, 07, 89, 30, 83, C0, 08, 5E, C3, 33, C0, 5E, C3, 8B, 44, 24, 04, 0F, AF, 44, 24, 08, 50, E8, 9D, FF, FF, FF... 
[+]

Entropy:

6.4775

Code size:

76 KB (77,824 bytes)

Remove 64EzSetp.DLL - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.