home

Color My Facebook.dll

Color My Facebook

Safari Developer: (ZMLURJCR77) duvalaugustin@gmail.com

This web browser extension uses the Crossrider toolbar creation and distribution platform. The module Color My Facebook.dll, “Color My Facebook BHO” by Safari Developer: (ZMLURJCR77) duvalaugustin@gmail.com has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. It is installed within the context of Internet Explore as a BHO (Browser Helper Object) under the name ‘CrossriderApp0003847’. This file is typically installed with the program Color My Facebook by Duval which is a potentially unwanted software program. The library is built using the Crossrider cross-browser extension platform. While the file utilizes the Crossrider framework and delivery services, it is not owned by Crossrider.
Publisher:
Duval  (signed by Safari Developer: (ZMLURJCR77) duvalaugustin@gmail.com)

Product:
Color My Facebook

Description:
Color My Facebook BHO

Version:
1.1.153.200

MD5:
69bcc1f90a97aa5dee63ec26b94a7511

SHA-1:
7916267d9278009e4706da383bb8dad8b0d9e329

SHA-256:
a9253effe99f44e42942f86b2dee88683924f08c9282beeadf79e96ac32e69b5

Scanner detections:
1 / 68

Status:
Potentially unwanted

Explanation:
The software may change the browser's home page and search provider settings as well as display advertisements.

Analysis date:
4/18/2024 8:09:48 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Crossrider.Browser (M)
16.5.30.21

File size:
686.1 KB (702,552 bytes)

Product version:
1.1.153.200

Copyright:
Copyright 2011

Original file name:
Color My Facebook.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\color my facebook\color my facebook.dll

Digital Signature
Signed by:
Safari Developer: (ZMLURJCR77) duvalaugustin@gmail.com

Authority:
Apple Inc.

Valid from:
7/15/2012 4:25:00 PM

Valid to:
7/15/2013 4:25:00 PM

Subject:
C=FR, CN=Safari Developer: (ZMLURJCR77) duvalaugustin@gmail.com, OID.0.9.2342.19200300.100.1.1=3MV9W8EA58

Issuer:
CN=Apple Worldwide Developer Relations Certification Authority, OU=Apple Worldwide Developer Relations, O=Apple Inc., C=US

Serial number:
24A43EE61F285A43

File PE Metadata
Compilation timestamp:
2/11/2013 9:07:38 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
12288:uuU1oTd6pitTRSR50tPCD/Hac1Azj/Eqg6Tob17SHM06Yh+Ch:VUSd6pitTRSD0tPCDC1zjMcTobdSlD+w

Entry address:
0x4538D

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, BF, B1, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, 8B, FF, 55, 8B, EC, 8B, 45, 08, 85, C0, 74, 12, 83, E8, 08, 81, 38, DD, DD, 00, 00, 75, 07, 50, E8, A2, B7, FF, FF, 59, 5D, C3, 8B, FF, 55, 8B, EC, 83, EC, 10, A1, 90, BF, 09, 10, 33, C5, 89, 45, FC, 8B, 55, 18, 53, 33, DB, 56, 57, 3B, D3, 7E, 1F, 8B, 45, 14, 8B, CA, 49, 38, 18, 74, 08, 40, 3B, CB, 75, F6, 83, C9, FF, 8B, C2, 2B, C1, 48, 3B, C2, 7D, 01, 40, 89, 45, 18...
 
[+]

Code size:
488 KB (499,712 bytes)

Internet Explorer BHO
Display name:
CrossriderApp0003847

CLSID:
{11111111-1111-1111-1111-110011381147}

CLSID name:
Color My Facebook


The file Color My Facebook.dll has been discovered within the following program.

Color My Facebook  by Duval
Publisher's description - “No more blue on Facebook! Choose your favorite color and see result instantly on your Facebook pages. Over 2,500,000 people downloaded Color My Facebook, the most popular and beautiful Facebook color changer! Are you?”
colormyfacebook.com
64% remove it
 
Powered by Should I Remove It?

Remove Color My Facebook.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.