home

tidynetwork.exe

Tidy Network

This is part of the InfoAtoms browser extension which will display variopus forms of advertising in the web browser by injecting new ads such as banner, text-links and search results. The application tidynetwork.exe by Tidy Network has been detected as adware by 6 anti-malware scanners. This file is typically installed with the program TidyNetwork.com which is a potentially unwanted software program. It is also typically executed from the user's temporary directory.
Publisher:
Tidy Network  (signed and verified)

Version:
5.1634

MD5:
228230c4ff887586286d1175ea73de18

SHA-1:
babe10664314f16bbc71052dce4f170fdcd91d48

SHA-256:
89d90c3f188a98a9cc87880c91acb0d69247ed30d213c14074df5929039bff1e

Scanner detections:
6 / 68

Status:
Adware

Analysis date:
1/11/2025 11:42:53 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

Bkav FE
W32.Cloda34.Trojan
1.3.0.4562

Comodo Security
Heur.Suspicious
17365

Reason Heuristics
PUP.TidyNetwork.L
14.8.8.2

Sophos
Tidy Network
4.95

Trend Micro House Call
TROJ_GEN.F47V0913
7.2.36

VIPRE Antivirus
Tidy2Network
23906

File size:
1.1 MB (1,103,656 bytes)

Product version:
5.1634

Copyright:
Copyright (C) 2012 Tidy Network

Original file name:
tidynetw.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\5\tidynetwork.exe

Digital Signature
Signed by:
Tidy Network

Authority:
VeriSign, Inc.

Valid from:
3/19/2013 8:00:00 PM

Valid to:
3/19/2016 7:59:59 PM

Subject:
CN=Tidy Network, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Tidy Network, L=SAN FRANCISCO, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
5B80FB156CAB4137B00AFF13BA26609D

File PE Metadata
Compilation timestamp:
8/20/2013 1:01:20 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
24576:8QVh3ucWMraMoq87Ez1ZYTiV1LK0y+3M2RAGGp0dN7:RPaMuMr87EzPwiVRKd0RAGGp8F

Entry address:
0x80F9D

Entry point:
E8, E2, 9E, 00, 00, E9, 89, FE, FF, FF, 6A, 0C, 68, 00, 2A, 4A, 00, E8, 1D, 08, 00, 00, 6A, 0E, E8, DF, A0, 00, 00, 59, 83, 65, FC, 00, 8B, 75, 08, 8B, 4E, 04, 85, C9, 74, 2F, A1, 9C, 7C, 4A, 00, BA, 98, 7C, 4A, 00, 89, 45, E4, 85, C0, 74, 11, 39, 08, 75, 2C, 8B, 48, 04, 89, 4A, 04, 50, E8, 15, E4, FF, FF, 59, FF, 76, 04, E8, 0C, E4, FF, FF, 59, 83, 66, 04, 00, C7, 45, FC, FE, FF, FF, FF, E8, 0A, 00, 00, 00, E8, 0C, 08, 00, 00, C3, 8B, D0, EB, C5, 6A, 0E, E8, AB, 9F, 00, 00, 59, C3, CC, CC, CC, CC, CC, CC...
 
[+]

Entropy:
7.3876

Code size:
581.5 KB (595,456 bytes)

The file tidynetwork.exe has been discovered within the following program.

TidyNetwork.com  by TidyNetwork.com
From the Terms of Service - "By accessing the Sites and downloading the Software, you hereby grant the Company permission to display promotional information, advertisements, and offers for third-party products, offers or services (collectively “Advertisements”) from Company’s advertising partners (collectively “Partners”).
www.tidynetwork.com
83% remove it
 
Powered by Should I Remove It?

Remove tidynetwork.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.