home

{70166A21-2F6A-4CC0-822C-607696D8F4B7}

Publisher Information

Authority:
{70166A21-2F6A-4CC0-822C-607696D8F4B7}

Valid from:
4/19/2014 5:47:18 AM

Valid to:
4/19/2015 11:47:18 AM

Subject:
CN={70166A21-2F6A-4CC0-822C-607696D8F4B7}

Issuer:
CN={70166A21-2F6A-4CC0-822C-607696D8F4B7}

Serial number:
3f0df1ebd88fb1b94d119cffac6b01c9

Scanner detections:
Malware distribution  (77% detected)

Scan engine
Details
Detections

McAfee
Artemis!FB36918ED5C8, Artemis!592AA8952062, PWSZbot-FXD!AB8CE5F97EAC, PWSZbot-FXD!38DAA4936221, PWSZbot-FXD!19D75872F0AD, Artemis!503CEB28706A, Artemis!FA23DD3AC082
81.82%

Sophos
Troj/MSIL-RD, Mal/Generic-S
72.73%

ESET NOD32
MSIL/Injector.DNK (variant), MSIL/Injector.DMR (variant), MSIL/Injector.DMT (variant), MSIL/Injector.DUB (variant), MSIL/Kryptik.UU (variant)
72.73%

Malwarebytes
Trojan.Inject, Spyware.Password, Backdoor.Bot
68.18%

Kaspersky
Backdoor.Win32.Androm, HEUR:Trojan.Win32.Generic, Trojan.Win32.Inject, Trojan.Win32.Badur, Trojan-Ransom.Win32.Blocker, Trojan.Win32.Fsysna
68.18%

IKARUS anti.virus
Trojan-Signed:Agent, Trojan.MSIL3
68.18%

Avira AntiVirus
TR/Dropper.MSIL.42369, TR/Dropper.MSIL.41437, TR/Injector.dmr.5, TR/Rogue.182336.1, TR/Injector.dmr.6, TR/Dropper.MSIL.40444
63.64%

Emsisoft Anti-Malware
Trojan.GenericKD.1668729, Trojan.GenericKD.1666016, Trojan.GenericKD.1660125, Trojan.GenericKD.1660358, Trojan.GenericKD.1660134
63.64%

AhnLab V3 Security
Backdoor/Win32.Necurs, Trojan/Win32.MDA, Spyware/Win32.Zbot
63.64%

Trend Micro House Call
TROJ_GEN.R047H08E614, TROJ_GEN.F47V0504, TROJ_SPNV.03E214, TROJ_GEN.R0CBC0UE314, TROJ_GEN.R0CBC0RE714, TROJ_GEN.R0CBH07E314
59.09%

0 / 68
deib.exe  (0ae615ea97da45acd1e8e916768f2a9a)

24 / 68    (Malware)
wcrash.exe  (064f4236a729b99b67b92985d311ebc2)

2 / 68      (inconclusive)
00007129.exe  (44e557d8dbe42d8410323952bfd1ade0)

2 / 68      (inconclusive)
0000561a.exe  (3954d426ee9deb66497332280cd00d09)

16 / 68    (Malware)
000037f0.exe  (f4b830f2ef53161f519081706189c40f)

4 / 68      (Malware)
bests.exe  (affd1f935de71338138341131e0d8c02)

1 / 68      (Malware)
server.exe  (6dc208126a3973ccaca4b173e51d1357)

32 / 68    (Malware)
iexplorer.exe  (4337f9a6f51c14d86aee5f7f1c017412)

22 / 68    (Malware)
~+jf6460298486553501376.tmp  (69d56d487d6805c91eee1dd168f7b0d2)

8 / 68      (Malware)
oxav.exe  (7569aa1e33b087a5de472dd719b92d9e)

0 / 68
a3pxs.exe (Kreator wykonywania i przywracania kopii zapasowych by Microsoft)  (0458aac0ca465e4871d44fb8397b5ac3)

4 / 68      (Malware)
0k8z0.exe (Google Chrome by Google)  (5a324eb960da4e3d0a52a9c11b1e7200)

0 / 68
cmd32.exe (by Microsoft)  (9a9c7f0dcf28607df99c377954bdec12)

0 / 68
microsoft.com.vir (Sterowniki Hosta Logowania by Microsoft)  (5035fe2e0747955d607e1c89aee6cff2)

15 / 68    (Malware)
lkjlcln.exe  (fa23dd3ac082ccea56ffac289c33e3f2)

33 / 68    (PUP)
winrar.exe (WinRAR by Alexander Roshal)  (97ecfee870724618da799ec6588cd55f)

10 / 68    (Malware)
0252b6ad.exe  (503ceb28706a8d0078dedaf1262629f6)

17 / 68    (Malware)
0252613e.exe  (cc376867c62d89f915957b516270f739)

31 / 68    (Malware)
02229009.exe  (28f04ff83a96480fbef54d7afa6f3dcd)

22 / 68    (Malware)
02224c85.exe  (258dd96a1712386dd17fd0318d4de4fc)

30 / 68    (Malware)
00139185.exe  (41daf6025aa3d292bfa4bd7f8219c4e5)

31 / 68    (Malware)
00136bfb.exe  (19d75872f0ad5445609c03f4adb89ec5)

34 / 68    (Malware)
msqqyai.com  (38daa4936221ae9d4bdcd23018d684f9)

9 / 68      (Malware)
new order.exe  (ab8ce5f97eac051cfbe690bdbbf1d78b)

22 / 68    (Malware)
nvls.exe  (592aa8952062cdff67d9a216b81d9164)

22 / 68    (Malware)
msrvcsuv.com  (fb36918ed5c85a0dba4c5cbe974cee1d)

* Note, the details and description above are based on the code signing digital signature issued to {70166A21-2F6A-4CC0-822C-607696D8F4B7} by {70166A21-2F6A-4CC0-822C-607696D8F4B7} on April 19, 2014 with the serial number '3f0df1ebd88fb1b94d119cffac6b01c9'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.