home

flvplayer-setup.exe

Turn Key Media

The application flvplayer-setup.exe by Turn Key Media has been detected as a potentially unwanted program by 6 anti-malware scanners. This is a self-extracting archive and installer and has been known to bundle potentially unwanted software.
Publisher:
Turn Key Media  (signed and verified)

Product:
Turn Key Media

Version:
71.8.8.9338

MD5:
bfb41da641c7beed0f33008a493b9f4b

SHA-1:
4b655a89b1780daabb58f4c3b4d1f399469486df

SHA-256:
352ca7228e1c85458087e8af097c3eb77c9ebd6b8613e7c2bad1918a70478049

Scanner detections:
6 / 68

Status:
Potentially unwanted

Explanation:
Bundles additional software, mostly toolbars and other potentially unwanted applications using the Vittalia monitization installer.

Analysis date:
11/15/2024 6:36:16 AM UTC  (today)

Scan engine
Detection
Engine version

Dr.Web
Trojan.Vittalia.8903
9.0.1.05190

Emsisoft Anti-Malware
Gen:Trojan.Heur.JP.3q3@aqmWWEji
11.5.0.6191

ESET NOD32
Win32/DownloadAdmin.Q potentially unwanted application
8.0.319.0

F-Secure
Variant.Adware.Graftor
5.15.21

Norman
Gen:Variant.Adware.Graftor.277162
02.04.2016 17:35:19

VIPRE Antivirus
Threat.4150696
48132

File size:
890.5 KB (911,904 bytes)

Product version:
71.8.8.9338

Copyright:
Copyright (C) 2015

Original file name:
setup.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\flvplayer-setup.exe

Digital Signature
Signed by:
Turn Key Media

Authority:
GoDaddy.com, Inc.

Valid from:
12/9/2015 12:56:38 AM

Valid to:
12/9/2016 12:56:38 AM

Subject:
CN=Turn Key Media, O=Turn Key Media, L="Oakland ", S=California, C=US

Issuer:
CN=Go Daddy Secure Certificate Authority - G2, OU=http://certs.godaddy.com/repository/, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:
298FC8619C109945

File PE Metadata
Compilation timestamp:
1/23/2015 3:09:55 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
24576:jis/KOFyNjSajGzyJEwzKX8lgtq/KfPoB98:LtFyNjSKGaKX8+tYU

Entry address:
0x4656

Entry point:
E8, 35, 9E, 00, 00, E9, 5F, 96, 00, 00, A1, 24, D4, 4B, 00, 23, 44, 24, 10, 89, 44, 24, 10, 8B, 4C, 24, 10, 85, C9, 74, 08, A1, 44, 01, 41, 00, C2, 10, 00, 8B, 54, 24, 10, 85, D2, 74, 08, A1, 48, 00, 41, 00, C2, 10, 00, 8B, 44, 24, 10, 85, C0, 74, 08, A1, 4C, 00, 41, 00, C2, 10, 00, 8B, 4C, 24, 10, 85, C9, 74, 08, A1, 58, 01, 41, 00, C2, 10, 00, 8B, 54, 24, 10, 85, D2, 74, 08, A1, 38, 01, 41, 00, C2, 10, 00, 8B, 44, 24, 10, 85, C0, 74, 08, A1, 34, 01, 41, 00, C2, 10, 00, 8B, 4C, 24, 10, 85, C9, 74, 08, A1...
 
[+]

Code size:
57 KB (58,368 bytes)

Remove flvplayer-setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.