cipherlogis

Publisher Information

cipherlogis is a software developer located in Yeongdeungpo-gu, Seoul in Korea*. The publisher primarily developes software that can be classified as adware. Thre are 2 additional code signing certificates issued to this publisher.
Remove cipherlogis Malware - Powered by Reason Core Security
Authority:
VeriSign, Inc.

Valid from:
12/2/2011 9:00:00 AM

Valid to:
12/2/2013 8:59:59 AM

Subject:
CN=cipherlogis, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=cipherlogis, L=Yeongdeungpo-gu, S=Seoul, C=KR

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
46c84f14bbaaf8e1be7528c70a2bccf7

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Startup.cipherlogis.H, PUP.cipherlogis.H, PUP.Startup.cipherlogis.L, PUP.Startup.cipherlogis.J, PUP.BHO.cipherlogis.H, PUP.cipherlogis.P, PUP.cipherlogis (M), PUP.cipherlogis.Installer (M)
100.00%

Trend Micro House Call
ADW_OPENTAB, TROJ_GEN.F47V0813, ADW_KRADARRE, ADW_KRADDARE, TROJ_GEN.F47V1008, TROJ_GEN.RCBH1B7, ADW_ROGUE, TROJ_GEN.F47V0920
48.84%

Trend Micro
ADW_OPENTAB, ADW_KRADARRE, ADW_KRADDARE, ADW_ROGUE
41.86%

Malwarebytes
Adware.K.OpenTab, PUP.K.OpenTab, PUP.Optional.OpenTab.A, Adware.Agent, Adware.K.GreenOpen, PUP.Adware.Opentab
30.23%

avast!
Win32:Adware-gen [Adw], Win32:PUP-gen [PUP], Win32:Adware-AVC [Adw]
27.91%

IKARUS anti.virus
Win32.AdWare, Win32.SuspectCrc, AdWare.Agent, AdWare.Popuppers, Win32.AdWare.AZF
27.91%

Comodo Security
Heur.Suspicious, UnclassifiedMalware, ApplicUnwnt
25.58%

VIPRE Antivirus
Trojan.Win32.Generic
25.58%

Avira AntiVirus
SPR/Tool.239680, Adware/Kraddare.GH.21, SPR/Tool.4180232, Adware/Agent.200768, Adware/Rogue.305760, Adware/Popuppers.A.23
23.26%

AhnLab V3 Security
PUP/Win32.OpenTab, Win-PUP/Helper.KeywordTab.861176, Trojan/Win32.Spreader, PUP/Win32.GreenOpen, Win-PUP/Helper.GreenOpen.244320
20.93%

1 / 68      (PUP)
FileDownupHp.exe  (225c19c2397ab2426321b2aba54b6781)

1 / 68      (PUP)
FileDownUpgrade.exe  (1a8efabc8676f8ff9e110e245ba09a55)

1 / 68      (PUP)
filedown2install.exe (FileDown v1.0 by CIPHER LOGIS)  (41c61ff3d079db91b66be7a14a69af0e)

1 / 68      (PUP)

1 / 68      (PUP)
FileDown.exe  (d27b620b605aac2b2acc1799b1c9fbe9)

1 / 68      (PUP)
fdupsvc.exe.fileget  (a3ae313a4f3c499e2c37dc48597f4525)

1 / 68      (PUP)
greenopenhper.exe  (d25c76b28d0d432d7379cf632928ccd8)

1 / 68      (PUP)
greenopen.exe  (7732dee668f2ca2cd06e9f977a8f774f)

1 / 68      (PUP)
greenopen_goodfilecokr4_setup.exe (by cipherlogis)  (577442cc382e24fbda75919f1361b843)

5 / 68      (PUP)
opentab.dll (opentab.dll by Cipherlogis)  (a72184ce5fefb8268cda717c8e913b69)

2 / 68      (PUP)
greenopenwb.dll  (e34e2b8a06de0d3f859f97ec48207406)

1 / 68      (PUP)
OhToolkit.DLL (OhToolkit by cipherlogis)  (ef8565423c1f734bb114947ea701d7a5)

1 / 68      (PUP)
OhSidebar.DLL (OhSidebar by cipherlogis)  (11b19c08ff755b900a12c6e94adaba4c)

2 / 68      (PUP)
greenopench.exe  (5f5815d5232cea91a7351add145b79ee)

5 / 68      (PUP)
greenopenuper.exe (by greenopen 2.0)  (18c03ee18855b8eec99c94bf79f6608c)

4 / 68      (PUP)
timeAdd.dll (by CIPHER COGIS)  (12f995ef94561f45b700677fa87db697)

16 / 68    (PUP)
KeywordTabup.exe  (74e5c99ead626b64dc322d67d187f441)

7 / 68      (PUP)
keywordtabopen.exe (by CIPHER COGIS)  (140b10a6b77c0c467fb29ab86286369d)

4 / 68      (PUP)
opentab.dll (opentab.dll by Cipherlogis)  (ba360b3ad9abde3b22d3f86dcd29b4de)

1 / 68      (PUP)

19 / 68    (PUP)

11 / 68    (PUP)
opentabuninstall.exe  (b0cae58c3b892603f2a988f0a166b7f1)

8 / 68      (PUP)
opentabch.exe  (41080d706e41e5eb0c17439592c6832b)

1 / 68      (PUP)
keywordtab.dll  (ea0c8fbf74463fb408d7dc798d79d394)

13 / 68    (PUP)
opentabup.exe (by CIPHERLOGIS)  (5c51868488ce47ca6f8342396c96a33f)

5 / 68      (PUP)
opentabuninstall.exe (by CIPHERLOGIS)  (8e1639d4f84523d6be5be956791c5aba)

12 / 68    (PUP)
opentabhper.exe (by CIPHERLOGIS)  (e0377f7e3c9eb4f128c9a817f1d9dc1e)

4 / 68      (PUP)
opentabch.exe (by CIPHERLOGIS)  (a7a7b1e649d6d28f8d02dee87787006a)

6 / 68      (PUP)
opentab.exe  (53a70deb74284c56a7b0cdceb0e21ddf)

 
Latest 30 of 43 files

The certificates below are also signed by cipherlogis.

477C6DA9901DF9605362369AB3965383  (Sep 17, 2009 to Oct 18, 2011)

1FC38144AAE178EF67EBEDDB60051825  (Sep 12, 2007 to Sep 28, 2009)

Remove cipherlogis Malware - Powered by Reason Core Security
* Note, the details and description above are based on the code signing digital signature issued to cipherlogis by VeriSign, Inc. on December 02, 2011 with the serial number '46c84f14bbaaf8e1be7528c70a2bccf7'.