ABDULKADIR SAHIN

Publisher Information

ABDULKADIR SAHIN is a software publisher located in ANKARA, Kecioren in Turkey*. The company is a primary distributor of unwanted software. Thre are 2 additional code signing certificates issued to this publisher.
Remove ABDULKADIR SAHIN Malware - Powered by Reason Core Security
Authority:
VeriSign, Inc.

Valid from:
1/18/2013 2:00:00 AM

Valid to:
3/20/2014 1:59:59 AM

Subject:
CN=ABDULKADIR SAHIN, OU=Individual Developer, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=No Organization Affiliation, L=ANKARA, S=KECIOREN, C=TR

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
516cae126302d8b129c8550a077cdf6f

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Service.ABDULKADIRSAHIN.H, PUP.Startup.ABDULKADIRSAHIN.F, PUP.ABDULKADIRSAHIN.G, PUP.ABDULKADIRSAHIN.D, PUP.ABDULKADIRSAHIN.E, PUP.ABDULKADIRSAHIN.I, PUP.ABDULKADIRSAHIN (M)
100.00%

AVG
Luhe.MSIL.D, Downloader.MSIL, MSIL2, MSIL5, Generic35
61.90%

McAfee Web Gateway
Artemis!7AEB1CA702DA, Artemis!30ED00662FED, Artemis!222556D50C3E, Artemis!648C9ABAFBC1, Artemis!6799A1A9DCE4, Artemis!790C7D13231E
61.90%

G Data
Trojan.GenericKD.1487407, Win32.Trojan.Agent.7T12L8, Win32.Trojan.Agent.VWITGV, Trojan.GenericKD.1482659, Trojan.GenericKD.1465486
61.90%

McAfee
Artemis!7AEB1CA702DA, Artemis!30ED00662FED, Artemis!222556D50C3E, Artemis!648C9ABAFBC1, Artemis!6799A1A9DCE4, Artemis!790C7D13231E, RDN/Generic.dx!dgn
57.14%

ESET NOD32
MSIL/TrojanDownloader.Agent.JC (variant), Win32/OrganikHit (variant), MSIL/TrojanDownloader.Agent.OE (variant), MSIL/TrojanDownloader.Agent.OD (variant)
57.14%

Emsisoft Anti-Malware
Trojan.GenericKD.1487407, Trojan.GenericKD.1482659, Trojan.GenericKD.1465486, Trojan.GenericKD.1586261, Trojan.GenericKD.1579287
52.38%

IKARUS anti.virus
Trojan.Msil, Trojan.Win32.Badur, Trojan.MSIL.Agent
52.38%

Malwarebytes
Trojan.MSIL.FakeMS, Trojan.FakeMS, Trojan.MSIL.HDP, Trojan.FakeMS.ED, Malware.Tool, Trojan.Agent.FMP
47.62%

Trend Micro House Call
TROJ_GEN.F47V1219, TROJ_GEN.F47V1207, TROJ_SPNV.01BO14, TROJ_GEN.R0CBOH0CB14, TROJ_SPNV.01BG14, TROJ_SPNR.07AR14, TROJ_GEN.R047C0EKJ14
47.62%

1 / 68      (Adware)
izle.exe (HD PLAYER by HD)  (255aa65938cc759327a3f4c05d249d45)

1 / 68      (Adware)
taskman.exe (DeleteCache by ABDULKADIR SAHIN)  (5e5367a7d06c7279eb16c299923b19b4)

1 / 68      (Adware)
task64.exe (DeleteCache by ABDULKADIR SAHIN)  (cb646a7a85a9055dfd54f6ebe5a55d99)

1 / 68      (Adware)

28 / 68    (Adware)
izle.exe (HD PLAYER by HD)  (5dc11095c6ca990915471e363d3d8e58)

29 / 68    (Adware)
task64.exe (DeleteCache by ABDULKADIR SAHIN)  (4957b5d1363cc8f422e4611a3f21a0ad)

21 / 68    (Adware)
task64.exe (DeleteCache by ABDULKADIR SAHIN)  (1176fe49ddddfd44fce6736e30eecedf)

7 / 68      (Adware)
UPDATE.exe (UPDATE)  (87484a4a6fb3772d1cdf2485d57d0b2b)

3 / 68      (Adware)
HDPLAYER.exe (HD PLAYER)  (d0675f04c392bcba088136516ed26429)

13 / 68    (Adware)
task64.exe (DeleteCache by ABDULKADIR SAHIN)  (17979dd6cf8635781498092885acbeae)

32 / 68    (Adware)
csrss.exe (Client Server Runtime Process by Microsoft)  (214a53f22bfc920c794ad75b04588d53)

25 / 68    (Adware)

49 / 68    (Adware)
hdplayer.exe (HD PLAYER by HD)  (790c7d13231e47a012d4a2bdb2662f2c)

30 / 68    (Adware)
izle.exe (HD PLAYER by HD)  (6799a1a9dce4d033cb2362fe3c0fc396)

28 / 68    (Adware)
izle.exe (HD PLAYER by HD)  (648c9abafbc190d4e710f1f858f159fd)

9 / 68      (Adware)
lsm.exe (HD PLAYER)  (8bff678389063edf7b608c1837ae72f0)

2 / 68      (Adware)
Update.exe (Update by ABDULKADIR SAHIN)  (732bca89249c1237ddd90a9e9b266877)

8 / 68      (Adware)
csrss.exe (Client Server Runtime Process by Microsoft)  (222556d50c3ed293efbbeee94ac1276d)

12 / 68    (Adware)

16 / 68    (Adware)
csrss.exe (Client Server Runtime Process by Microsoft)  (7aeb1ca702da0300ef7754527295903a)

6 / 68      (Adware)

The certificates below are also signed by ABDULKADIR SAHIN.

5AE999975267E190A4FA46CE2AFF3E15  (May 20, 2014 to Jun 20, 2015)

38C2247ABDE83C461C3158BC831B1656  (Mar 19, 2014 to Apr 29, 2014)

Remove ABDULKADIR SAHIN Malware - Powered by Reason Core Security
* Note, the details and description above are based on the code signing digital signature issued to ABDULKADIR SAHIN by VeriSign, Inc. on January 18, 2013 with the serial number '516cae126302d8b129c8550a077cdf6f'.