» torntv v9.0-nova.dll
Overview
Analysis
File Details
Programs (1)

torntv v9.0-nova.dll

CoolMirage Ltd.

This is part of a CoolMirage installatation, a potentially unwanted program (PUP) that display ads on the computer. The module torntv v9.0-nova.dll by CoolMirage has been detected as adware by 21 anti-malware scanners. This file is typically installed with the program Torntv V9.0 by InstallDaddy Services Ltd. which is a potentially unwanted software program.

File name:

Publisher:

CoolMirage Ltd. (signed and verified)

MD5:

4c8c954f0b2394791122ea45eb47f527

SHA-1:

137aa8e8840c77bd351789bddd8c5d62e85f477d

SHA-256:

e59da0dd44944d9457afb7dc42014dce695a68bce3977132f93223b7bac2cb7f

Scanner detections:

21 / 68

Status:

Adware

Explanation:

Bundles a number of adware programs in the installer.

Analysis date:

4/19/2024 1:10:05 AM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Adware.Generic.989720

896

Agnitum Outpost

PUA.AdLoad

7.1.1

Avira AntiVirus

Adware/Agent.130432

7.11.164.128

Baidu Antivirus

Adware.Win32.AdLoad

4.0.3.1475

Bitdefender

Adware.Generic.989720

1.0.20.1170

Emsisoft Anti-Malware

Adware.Generic.989720

8.14.08.22.06

ESET NOD32

Win32/Toolbar.CrossRider.AI potentially unwanted application

7.0.302.0

Fortinet FortiGate

Adware/Adload

8/22/2014

F-Secure

Adware.Generic.989720

11.2014-22-08_6

G Data

Adware.Generic.989720

14.8.24

K7 AntiVirus

Trojan

13.181.12872

Kaspersky

not-a-virus:AdWare.Win32.AdLoad

15.0.0.463

McAfee

Artemis!BD23E550DA58

5600.7030

MicroWorld eScan

Adware.Generic.989720

15.0.0.702

Panda Antivirus

Trj/Genetic.gen

14.08.22.06

Reason Heuristics

PUP.CoolMirage.P

14.8.7.17

Rising Antivirus

PE:Malware.Bundlore!6.180F

23.00.65.14820

Sophos

Generic PUA DG

4.98

Trend Micro House Call

TROJ_GEN.R0C1H07GC14

7.2.234

Vba32 AntiVirus

AdWare.AdLoad

3.12.26.3

VIPRE Antivirus

Threat.4783938

29708

File size:

128.9 KB (131,968 bytes)

File type:

Dynamic link library (Win32 DLL)

Common path:

C:\Program Files\torntv v9.0\torntv v9.0-nova.dll

Digital Signature

Signed by:

CoolMirage Ltd.

Authority:

Thawte, Inc.

Valid from:

6/6/2013 5:30:00 AM

Valid to:

6/7/2014 5:29:59 AM

Subject:

CN=CoolMirage Ltd., O=CoolMirage Ltd., L=Tel Aviv, S=Israel, C=IL

Issuer:

CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:

110F603E63C86349A5F243EA06966F33

File PE Metadata

Compilation timestamp:

7/5/2014 3:33:30 AM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

CTPH (ssdeep):

1536:5F/cRqtYOZkdPH3wNZsVtBFE83JSkXEsMzx++scgV8J4nsWjcdmc9RDfg/M2N:5mR+nCP3w6tE8EsM0+GFImc9RD4E2N

Entry address:

0x6418

Entry point:

55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, FF, 38, 00, 00, FF, 75, 10, FF, 75, 0C, FF, 75, 08, E8, 07, 00, 00, 00, 83, C4, 0C, 5D, C2, 0C, 00, 6A, 0C, 68, 58, 9B, 01, 10, E8, D9, 14, 00, 00, 33, C0, 40, 8B, 75, 0C, 85, F6, 75, 0C, 39, 35, 4C, C2, 01, 10, 0F, 84, E4, 00, 00, 00, 83, 65, FC, 00, 83, FE, 01, 74, 05, 83, FE, 02, 75, 35, 8B, 0D, E0, 50, 01, 10, 85, C9, 74, 0C, FF, 75, 10, 56, FF, 75, 08, FF, D1, 89, 45, E4, 85, C0, 0F, 84, B1, 00, 00, 00, FF, 75, 10, 56, FF, 75, 08, E8, 11, FE, FF, FF, 89, 45, E4... 
[+]

Entropy:

6.1153

Developed / compiled with:

Microsoft Visual C++

Code size:

74.5 KB (76,288 bytes)

The file torntv v9.0-nova.dll has been discovered within the following program.

Torntv V9.0 by InstallDaddy Services Ltd.

This is a potentially unwanted program (PUP) that bundles various additional offers during setup, typically ad-supported (adware) in functionality.

88% remove it

Remove torntv v9.0-nova.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.