IEToolbar.dll

Findwide Toolbar

Findwide

This is a component of the Tightrope WebInstall, a setup program that bundles applications with offers for additional 3rd party software, mostly unwanted adware, and may be installed with minimal consent. The module IEToolbar.dll by Findwide has been detected as adware by 3 anti-malware scanners.
Publisher:
Findwide  (signed and verified)

Product:
Findwide Toolbar

Version:
2.0.0.1489

MD5:
8b07960d86224805a54c7a63adc465cb

SHA-1:
c5b4e25ac01d2064f0247efe6d6ca7ef973c667a

SHA-256:
745a670a8c336d628fbbc14161f36ed3c0aa9822b07f967bcfe7e21f5ee73528

Scanner detections:
3 / 68

Status:
Adware

Analysis date:
12/27/2024 11:58:16 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

ESET NOD32
Win32/Toolbar.TNT2.B potentially unwanted application
7.0.302.0

IKARUS anti.virus
PUA.TNT2
t3scan.1.8.5.0

Reason Heuristics
Threat.Tightrope.Toolbar
15.4.2.1

File size:
115.3 KB (118,048 bytes)

Product version:
2.0.0.1489

Copyright:
© Findwide All Rights Reserved

Original file name:
IEToolbar.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Documents and Settings\{user}\Application data\tnt2\2.0.0.1489\ietoolbar.dll

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
4/1/2012 8:00:00 PM

Valid to:
4/3/2013 7:59:59 PM

Subject:
CN=Findwide, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Findwide, L=San Francisco, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
4DA4730894ED337B96666A0979D619C2

File PE Metadata
Compilation timestamp:
2/25/2013 6:10:06 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
1536:SXw58TFXKPRVz/l1yLxMPuayiYsqGNlxFKa0KSk0gVIl3uQ90SJ51eGSmKfXRads:GTcPvf/JdNlJ0KLVI4Q9VJHe+KfXRl

Entry address:
0x9A1E

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 84, 57, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 55, 8B, EC, 57, 56, 8B, 75, 0C, 8B, 4D, 10, 8B, 7D, 08, 8B, C1, 8B, D1, 03, C6, 3B, FE, 76, 08, 3B, F8, 0F, 82, A0, 01, 00, 00, 81, F9, 80, 00, 00, 00, 72, 1C, 83, 3D, 18, C5, 01, 10, 00, 74, 13, 57, 56, 83, E7, 0F, 83, E6, 0F, 3B, FE, 5E, 5F, 75, 05, E9, B9, 57, 00, 00, F7, C7, 03, 00, 00, 00, 75, 14, C1, E9...
 
[+]

Entropy:
6.4313

Code size:
70.5 KB (72,192 bytes)

Remove IEToolbar.dll - Powered by Reason Core Security