home

{9C1F8E52-00A6-4A3A-90CA-F8EC53FAC0E8}

Publisher Information

Authority:
{9C1F8E52-00A6-4A3A-90CA-F8EC53FAC0E8}

Valid from:
2/19/2014 4:00:11 AM

Valid to:
2/19/2015 10:00:11 AM

Subject:
CN={9C1F8E52-00A6-4A3A-90CA-F8EC53FAC0E8}

Issuer:
CN={9C1F8E52-00A6-4A3A-90CA-F8EC53FAC0E8}

Serial number:
274683bf421f748e4c53a26f410e5243

Status:
Inconclusive detections from multiple engines

Scan engine
Details
Detections

Dr.Web
Tool.MailPassView.225, Trojan.PWS.Stealer.1176, Trojan.DownLoader9.28365, Trojan.DownLoader9.29275, Trojan.PWS.Multi.911
100.00%

Sophos
Mal/MSILFD-A, Mal/Cleaman-B, Mal/Generic-S, Virus 'Mal/MSILFD-A'
90.91%

McAfee
PWS-FBQI!3293D66524AF, RDN/Generic.dx!czf, Artemis!0A68E272D121, RDN/Generic.dx!czh, RDN/Generic.dx!cz3, RDN/Generic.dx!czc
81.82%

Kaspersky
Trojan.Win32.Agent, Trojan.Win32.Inject
81.82%

ESET NOD32
MSIL/Injector.CVJ (variant), MSIL/Injector.CWS (variant), MSIL/Injector.CUR (variant)
81.82%

Qihoo 360 Security
HEUR/Malware.QVM03.Gen, Win32/Trojan.99e
81.82%

Trend Micro House Call
TROJ_GEN.R0CBC0DBP14, TROJ_GEN.R08NH07C114, TROJ_GEN.R08NH07BM14, TROJ_SPNR.03DP14, TROJ_GEN.R08NH05C114, TROJ_GEN.F47V0227
72.73%

VIPRE Antivirus
Trojan.Win32.Generic, Trojan.MSIL.Injector.cvj
72.73%

Avira AntiVirus
TR/Injector.crr.2, TR/Injector.CWS.7, TR/Spy.325152, TR/Injector.cvj.31, TR/Injector.cvj.26, TR/Injector.cvj.4, TR/Crypt.cfi.7440
72.73%

IKARUS anti.virus
Trojan.Win32.Agent, Trojan-Dropper.Win32.Dapato, Backdoor.Win32.DarkKomet
63.64%

0 / 68
windows update.exe  (7d2157776a9b526663e0e5c9e61343ba)

0 / 68
po_0324.exe (GIF image by 572.5 KB)  (406eafb94975c174f5ef4bb6fd077492)

0 / 68
telex copy.scr  (42f68907bea1bde939e3f2565f0decc3)

0 / 68
start.exe (Shockwave Flash by Adobe Systems)  (9408b5f4cc62ba692dee4f067db14033)

3 / 68      (Malware)
audiodgi.exe (KgnuZmlCF by PDF)  (7592ffd19d7a2ba1c0596b2f15a3a330)

0 / 68
ze3vp.exe (System operacyjny Microsoft Windows by Microsoft)  (a230f4c5bb8f84c3f794df8dd610b638)

19 / 68    (Malware)
np6ja.exe (Gadu-Gadu by sms-express.com)  (b94be8553b59ee249b6bcf0c8774c2b5)

0 / 68
ni6od.exe (Java Platform SE 7 U45 by Oracle)  (09cec1070e900cb80b079303e853de69)

8 / 68      (Malware)
cxxs.exe  (3ffb9bc31463a65d7b105145d7722e56)

13 / 68    (Malware)
zxyzp.exe  (2fba9da3195c97c5d0734cb1e335f935)

0 / 68
ypo6e.exe (Internet Explorer by Microsoft)  (d4c08bb2da820ac737804752e2e7851e)

9 / 68      (Malware)
mg3kz.exe (Gadu-Gadu by sms-express.com)  (2618d129afc2dddd1be0eaec66058559)

11 / 68    (Malware)
brhnx.exe (Gadu-Gadu by sms-express.com)  (519439d37aeae82692123e5dbf4606d7)

0 / 68
bemf4.exe (Internet Explorer by Microsoft)  (111b2abb3a90c63579969822d2081b3f)

0 / 68
ba403.exe (Internet Explorer by Microsoft)  (0db445683bbdffa258e30b26b0c76f1e)

0 / 68
9a5is.exe (Internet Explorer by Microsoft)  (5c82d9cd9db613977a32e7ac963cd87b)

0 / 68
49ylp.exe (Shockwave Flash by Adobe Systems)  (5b54a9673b1dabaae4bed65ca9955ca0)

30 / 68    (Malware)
3zsv8.exe (Gadu-Gadu by sms-express.com)  (1ceff890195e4bc2d318509353ec5cf0)

16 / 68    (Malware)
329ga.exe (Gadu-Gadu by sms-express.com)  (c9f25625b5af4ef6ac069a34012885ac)

0 / 68
w6gth.exe (System operacyjny Microsoft Windows by Microsoft)  (481da4dfb2d1b46a8729e7ea566bd287)

8 / 68      (Malware)
w3k4l.exe (Gadu-Gadu by sms-express.com)  (0a68e272d121264e5ff581d77d2973bd)

0 / 68
7m11g.exe (System operacyjny Microsoft Windows by Microsoft)  (3e15e3ebf49e897fda7d6bb544eee809)

23 / 68    (Malware)
009ut.exe (Gadu-Gadu by sms-express.com)  (7af02d0f7cae189c8df5f1bfa273f4ee)

0 / 68
start.exe (Shockwave Flash by Adobe Systems)  (40b5ccd96cc8cae54e2e4cdc7ca1b725)

33 / 68    (Malware)
test.exe  (3293d66524af8502e79c72237fc141fb)

0 / 68
46802.exe  (2a0717d01b0f26f199f9645151a6be9f)

* Note, the details and description above are based on the code signing digital signature issued to {9C1F8E52-00A6-4A3A-90CA-F8EC53FAC0E8} by {9C1F8E52-00A6-4A3A-90CA-F8EC53FAC0E8} on February 19, 2014 with the serial number '274683bf421f748e4c53a26f410e5243'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.