home

ABDULKADIR SAHIN

Publisher Information

ABDULKADIR SAHIN is a software publisher located in ANKARA, Kecioren in Turkey*. The company is a primary distributor of unwanted software. Thre are 4 additional code signing certificates issued to this publisher.
Authority:
VeriSign, Inc.

Valid from:
1/18/2013 2:00:00 AM

Valid to:
3/20/2014 1:59:59 AM

Subject:
CN=ABDULKADIR SAHIN, OU=Individual Developer, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=No Organization Affiliation, L=ANKARA, S=KECIOREN, C=TR

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
516cae126302d8b129c8550a077cdf6f

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.ABDULKADIRSAHIN.D, PUP.ABDULKADIRSAHIN.E, PUP.ABDULKADIRSAHIN.I, PUP.Service.ABDULKADIRSAHIN.H, PUP.ABDULKADIRSAHIN.F, PUP.ABDULKADIRSAHIN (M), PUP.ABDULKAD (M), PUP (M)
100.00%

AVG
Downloader.MSIL, Luhe.MSIL.D, MSIL2, MSIL5, Generic35
22.00%

Emsisoft Anti-Malware
Trojan.GenericKD.1482659, Trojan.GenericKD.1465486, Trojan.GenericKD.1586261, Trojan.GenericKD.1579287, Trojan.GenericKD.1506163
20.00%

G Data
Trojan.GenericKD.1482659, Trojan.GenericKD.1465486, Trojan.GenericKD.1586261, Trojan.GenericKD.1579287, Trojan.GenericKD.1506163
20.00%

ESET NOD32
MSIL/TrojanDownloader.Agent.OE (variant), MSIL/TrojanDownloader.Agent.OD (variant), MSIL/TrojanDownloader.Agent.OB (variant)
20.00%

IKARUS anti.virus
Trojan.Win32.Badur, Trojan.Msil, Trojan.MSIL.Agent
20.00%

Qihoo 360 Security
Win32/Trojan.Multi.daf, Win32/Trojan.Downloader.5e3, Win32/Trojan.ece, Win32/Trojan.ccf, Win32/Trojan.c77, Win32/Trojan.fdc
20.00%

MicroWorld eScan
Trojan.GenericKD.1482659, Trojan.GenericKD.1465486, Trojan.GenericKD.1586261, Trojan.GenericKD.1579287, Trojan.GenericKD.1506163, Trojan.GenericKD.1470896, Trojan.GenericKD.2035025, Trojan.GenericKD.1482876, Gen:Variant.Zusy.83788
18.00%

Bitdefender
Trojan.GenericKD.1482659, Trojan.GenericKD.1465486, Trojan.GenericKD.1586261, Trojan.GenericKD.1579287, Trojan.GenericKD.1506163
18.00%

F-Secure
Trojan.GenericKD.1482659, Trojan.GenericKD.1465486, Trojan.GenericKD.1586261, Trojan.GenericKD.1579287, Trojan.GenericKD.1506163
18.00%

1 / 68      (Adware)
UPDATE.exe (UPDATE)  (8042551540e752cd280e8bb08cbaf971)

1 / 68      (Adware)
lsm.exe (Local Session Manager Service by Microsoft)  (e1cc37b02edb5174ad128c1c4ffe7468)

1 / 68      (Adware)
svchost.exe (Host Process for Windows Services by Microsoft)  (82c212a7c569281ddd68bd5037b67448)

1 / 68      (Adware)
OrganikHit.exe (OrganikHit by ABDULKADIR SAHIN)  (d28fca6fe4344684f43ed99bd7441db5)

1 / 68      (Adware)
lsmnew.exe (Local Session Manager Service by Microsoft)  (a956157f69b5e2312ef68da58b0eabdb)

1 / 68      (Adware)
task.exe (DeleteCache by ABDULKADIR SAHIN)  (a2f1574d19671c191c871ae6f2b0b5e2)

1 / 68      (Adware)
lsm.exe (Local Session Manager Service by Microsoft)  (bb37e7c3545aae948a73e81a01e7aed8)

1 / 68      (Adware)
svchost.exe (Host Process for Windows Services by Microsoft)  (71cd5d3b45789efe154145ca0370570e)

1 / 68      (Adware)
lsm.exe (Local Session Manager Service by Microsoft)  (2426b39998c3bb803a9e704b1697d747)

1 / 68      (Adware)
lsm.exe (Local Session Manager Service by Microsoft)  (346c2b3253fb115a44940209aad7633a)

1 / 68      (Adware)
csrss.exe (Client Server Runtime Process by Microsoft)  (4707e41b1a2c228311547bc10c2c37d1)

1 / 68      (Adware)
lsm.exe (Local Session Manager Service by Microsoft)  (18709b775b9b1f969db26bd0fc560eb4)

1 / 68      (Adware)
csrss.exe (Client Server Runtime Process by Microsoft)  (65423493b2b3e1a2a9b46acd8fa94b85)

1 / 68      (Adware)
task.exe (DeleteCache by ABDULKADIR SAHIN)  (e02b7fc754908a2658be18aeb4133eb7)

1 / 68      (Adware)
hdplayer.exe (HD PLAYER by HD)  (ea3d0b569096781f5c1202079ac588f0)

1 / 68      (Adware)
lsm.exe (HD PLAYER)  (b492a290b3cb64f5148f5e4775f27841)

1 / 68      (Adware)
csrss.exe (Client Server Runtime Process by Microsoft)  (57b99700b62a2a6db041ec18d755013a)

1 / 68      (Adware)
gb+5vpud.exe (HD PLAYER by HD)  (b50b90ed471e6f0a93a0d0d945fdf7a1)

1 / 68      (Adware)
izle.exe (HD PLAYER by HD)  (ac01dbe317241c7b6e0acd32d02b9d10)

1 / 68      (Adware)
svchost.exe (Host Process for Windows Services by Microsoft)  (769cb7100d72b65b829eb2e9f3e1e700)

4 / 68      (Adware)
onaylanmamış 872355.~ (HD PLAYER by HD)  (1f9442a405d8f582f9b996a375bd4bba)

1 / 68      (Adware)
lsm.exe (Local Session Manager Service by Microsoft)  (f26d46ca50edc5e544e6181d957e09e5)

1 / 68      (Adware)
csrss.exe (Client Server Runtime Process by Microsoft)  (b3f281cf3912fa308c9c34841171b5a9)

1 / 68      (Adware)
lsm.exe (Local Session Manager Service by Microsoft)  (1abab3e2a33e96cdefbfdc1a16928453)

1 / 68      (Adware)
lsm.exe (Local Session Manager Service by Microsoft)  (1a6b3e7dee8209a797e76e53757d87cd)

1 / 68      (Adware)
izle.exe (HD PLAYER by HD)  (7d4f5d0da22431c7c87fb0adb8e8cad1)

1 / 68      (Adware)
csrss.exe (Client Server Runtime Process by Microsoft)  (69defb3500feb890ba62f7046932978c)

1 / 68      (Adware)
task.exe (DeleteCache by ABDULKADIR SAHIN)  (beca947e1d95f4e14b21cb32c76e1268)

1 / 68      (Adware)
izle.exe (HD PLAYER by HD)  (ec77a691107accc43bd5380812a59999)

1 / 68      (Adware)
hdplayer.exe (HD PLAYER by HD)  (57689ffc260d55b4a425fbd6595b6218)

 
Latest 30 of 55 files

Downloads URLs for files signed by ABDULKADIR SAHIN.

26 / 68    (Adware)
http://goo.gl/kMvQyY  (izle.exe)

1 / 68      (Adware)
http://goo.gl/kMvQyY  (izle.exe)

26 / 68    (Adware)
http://goo.gl/2tX8Gc  (izle.exe)

The following websites host and distribute files published by ABDULKADIR SAHIN.

goo.gl

The certificates below are also signed by ABDULKADIR SAHIN.

5AE999975267E190A4FA46CE2AFF3E15  (May 20, 2014 to Jun 20, 2015)

38C2247ABDE83C461C3158BC831B1656  (Mar 19, 2014 to Apr 29, 2014)

3EE50BB98FADCA2D662A0920E76685A2  (Feb 24, 2012 to Feb 12, 2013)

0664CDEABB74EB409B516BA637E9F2E3  (Feb 03, 2012 to Feb 03, 2013)

The following publishers (by Authenticode signature organization name) are related.

Banner LLC

LLC

Apps Installer SL

Somoto Israel

Apps Installer S.L.

Somoto Ltd.

SecureInstall, LLC

Amonetize ltd.

Gamehitzone Inc.

Simple Leads LLC

Kreapixel

OutBrowse

InstallX, LLC

Beijing AmazGame Age Internet Technology Co., Ltd.

Salyutem Plyus LLC

FIRSERIA, S.L.

AMGRUP LLC

Ammyy

Babylon Ltd.

Appwork GmbH

OOO

Babylon Software

Shetef Solutions & Consulting (1998) Ltd.

Record Ltd

Install Solution LTDA

KOMPANIYA КRЕАТА LLC

Quant LLC

Wilmaonline LTD.

EVROPLAST LLC

SVAN TRANS LLC

30 of 44 publishers

* Note, the details and description above are based on the code signing digital signature issued to ABDULKADIR SAHIN by VeriSign, Inc. on January 18, 2013 with the serial number '516cae126302d8b129c8550a077cdf6f'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.