re-markableo.exe

The application re-markableo.exe has been detected as adware by 16 anti-malware scanners. It runs as a scheduled task under the Windows Task Scheduler triggered daily at a specified time. This file is typically installed with the program Re-Markable by Revizer Technologies which is a potentially unwanted software program. This is part of the Revizer line of web browser extensions that inject 3rd-party advertisements in the user's web browser as well as setup a proxy server for the browser in order to track behaviors and display context based-ads from various partners (mostly adware).
Remove re-markableo.exe - Powered by Reason Core Security
MD5:
5546c30009cb18a30494d70916caabb8

SHA-1:
3857a9471802ac7bdf19faad588891f61c9953c3

SHA-256:
d580e84b701d68348f4f4bba2cdbf757e7d827ea812165b1158a71a5818552ef

Scanner detections:
16 / 68

Status:
Adware

Analysis date:
12/4/2016 11:26:16 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Gen:Variant.Adware.Graftor.147412
873

avast!
Win32:Malware-gen
2014.9-140915

AVG
Adware Generic5
2015.0.3351

Baidu Antivirus
Trojan.Win32.AddLyrics
4.0.3.14915

Bitdefender
Gen:Variant.Adware.Graftor.147412
1.0.20.1290

Comodo Security
Application.Win32.Adware.WDUnlocker.A
18501

Emsisoft Anti-Malware
Gen:Variant.Adware.Graftor.147412
8.14.09.15.01

ESET NOD32
Win32/AdWare.AddLyrics.AT application
8.7.0.302.0

F-Secure
Gen:Variant.Adware.Graftor.147412
11.2014-15-09_2

G Data
Gen:Variant.Adware.Graftor.147412
14.9.24

IKARUS anti.virus
PUA.AddLyrics
t3scan.1.7.8.0

Kaspersky
not-a-virus:AdWare.Win32.AddLyrics
14.0.0.3250

MicroWorld eScan
Gen:Variant.Adware.Graftor.147412
15.0.0.774

Panda Antivirus
Trj/Genetic.gen
14.09.15.01

Reason Heuristics
Adware.Revizer.M
14.6.10.12

VIPRE Antivirus
Threat.4150696
32938

Remove re-markableo.exe - Powered by Reason Core Security
File size:
98.5 KB (100,864 bytes)

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\re-markable-soft\re-markableo.exe

File PE Metadata
Compilation timestamp:
6/8/2014 11:08:22 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

CTPH (ssdeep):
1536:bjOpIXG6IOeiiXTXE+c9mrqsWjcd3+aK1nTh2:/OOE+iXTUpmx3+x1nTh2

Entry address:
0x4BDA

Entry point:
E8, 8E, 3F, 00, 00, E9, 7F, FE, FF, FF, 55, 8B, EC, 83, 25, FC, 62, 41, 00, 00, 83, EC, 10, 53, 33, DB, 43, 09, 1D, 48, 50, 41, 00, 6A, 0A, E8, E8, 70, 00, 00, 85, C0, 0F, 84, 0E, 01, 00, 00, 33, C9, 8B, C3, 89, 1D, FC, 62, 41, 00, 0F, A2, 56, 8B, 35, 48, 50, 41, 00, 57, 8D, 7D, F0, 83, CE, 02, 89, 07, 89, 5F, 04, 89, 4F, 08, 89, 57, 0C, F7, 45, F8, 00, 00, 10, 00, 89, 35, 48, 50, 41, 00, 74, 13, 83, CE, 04, C7, 05, FC, 62, 41, 00, 02, 00, 00, 00, 89, 35, 48, 50, 41, 00, F7, 45, F8, 00, 00, 00, 10, 74, 13...
 
[+]

Entropy:
5.6548

Code size:
48.5 KB (49,664 bytes)

Scheduled Task
Task name:
Re-Markable_wd

Trigger:
Daily (Runs daily at 8:15 AM)


The file re-markableo.exe has been discovered within the following program.

Re-Markable  by Revizer Technologies
Re-Markable is an advertising injecting web browser addon that displays ads on web pages not associated with the program. It does this by using a local proxy server to route all web traffic through and display ads in the forms of banner ads, video ads and text-links.
re-markable.net
80% remove it
 
Powered by Should I Remove It?

Remove re-markableo.exe - Powered by Reason Core Security