home

ezprint.exe

LG Fast Pics Application

Lexmark International, Inc.

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘EzPrint’.
Publisher:
LG International Inc.  (signed by Lexmark International, Inc.)

Product:
LG Fast Pics Application

Version:
1.4.0.0

MD5:
736d7b42a4e991b6c11f962f912ffbbe

SHA-1:
a57f82c0ece64ee012fba81f1b5c3c9b5acd797f

SHA-256:
f2ce414e39161b9ccd6d3aac7828e94812dd89821a8266928416139248146159

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/24/2024 9:32:05 PM UTC  (today)

File size:
104.7 KB (107,176 bytes)

Product version:
1.4.0.0

Copyright:
Copyright (c) 2008

Original file name:
ezprint.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\lg lip2610\ezprint.exe

Digital Signature
Signed by:
Lexmark International, Inc.

Authority:
Thawte Consulting (Pty) Ltd.

Valid from:
6/23/2009 9:00:00 AM

Valid to:
8/4/2011 8:59:59 AM

Subject:
CN="Lexmark International, Inc.", OU=PS&SD BUSINESS SOFTWARE & SOLUTIONS, O="Lexmark International, Inc.", L=Lexington, S=Kentucky, C=US

Issuer:
CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:
379E69DA6C2693E3297B6FE45D78EBE1

File PE Metadata
Compilation timestamp:
9/16/2009 9:42:42 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
768:2dLKx5WQQ35d7NfYVUONVxpUcfXdZ6VDD4C+Y6FYFBvpQpCdrAv07GfcieJMN2ZU:OQK1YYcCdo0Gc6gZnFx3VvL3jy

Entry address:
0xF36F

Entry point:
55, 8B, EC, 6A, FF, 68, 88, 1A, 41, 00, 68, F6, F4, 40, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 68, 53, 56, 57, 89, 65, E8, 33, DB, 89, 5D, FC, 6A, 02, FF, 15, A4, 14, 41, 00, 59, 83, 0D, C0, 7F, 41, 00, FF, 83, 0D, C4, 7F, 41, 00, FF, FF, 15, A8, 14, 41, 00, 8B, 0D, B4, 7F, 41, 00, 89, 08, FF, 15, AC, 14, 41, 00, 8B, 0D, B0, 7F, 41, 00, 89, 08, A1, B0, 14, 41, 00, 8B, 00, A3, BC, 7F, 41, 00, E8, 17, 01, 00, 00, 39, 1D, 70, 7B, 41, 00, 75, 0C, 68, F2, F4, 40, 00, FF, 15, B4, 14...
 
[+]

Entropy:
5.8475

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
64 KB (65,536 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
EzPrint

Command:
"C:\Program Files\lg lip2610\ezprint.exe"


herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.