CJSC InvestService

Publisher Information

CJSC InvestService is a software publisher located in Moscow, Russian Federation in Russia*. The company is a primary distributor of unwanted software.
Remove CJSC InvestService Malware - Powered by Reason Core Security
Authority:
Thawte, Inc.

Valid from:
8/8/2013 2:00:00 AM

Valid to:
8/9/2014 1:59:59 AM

Subject:
CN=CJSC InvestService, OU=IT, O=CJSC InvestService, L=Moscow, S=Russian Federation, C=RU

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
53deed3d6c58e48ae7cc06211d791405

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.CJSCInvestService.O, PUP.CJSCInvestService.a, PUP.Installer.CJSCInvestService.S, PUP.CJSCInvestService.j, PUP.CJSCInvestService.T, PUP.CJSCInvestService.q, Threat.Installer.CJSCInvestService, PUP.CJSCInvestService.Installer (M)
97.87%

ESET NOD32
Win32/GeneralDownloader.A potentially unwanted application, Win32/Adware.MediaFinder.H application, Win32/AdWare.MediaFinder.J application
25.53%

VIPRE Antivirus
Threat.4150696, Trojan.Win32.Generic
23.40%

McAfee
Trojan-FDSS!87D2BD196741, Trojan-FDSS!E09D699FCD28, Trojan-FDSS!4D6529D8403A, Trojan-FDSS!DC4543D7847F, Trojan.Trojan-FDSS!80397201FFA4, Trojan.Trojan-FDSS!A32927D69277
21.28%

avast!
Win32:Downloader-VPA [Trj], Adware-CAM [PUP], Win32:Adware-CAM [PUP]
21.28%

AVG
Win.Threat.High, Win32/DH, Found Win32/DH{gROBD1gSICQiJVdOZA}, Generic5, Adware Skodna.Bundle.BM
19.15%

Panda Antivirus
Adware/MultiToolbar, PUP/MultiToolbar.A
17.02%

Kaspersky
not-a-virus:Downloader.NSIS.Agent
17.02%

Malwarebytes
Trojan.Downloader.ns, PUP.Optional.MediaFinder
14.89%

McAfee Web Gateway
Trojan-FDSS!87D2BD196741, Trojan-FDSS!E09D699FCD28, BehavesLike.Win32.Trojan.lh, Trojan-FDSS!2C29937E9B03, Trojan-FDSS!21CE023E7DC2
12.77%

1 / 68      (Adware)
d0bdfea.tmp (M-Downloader)  (5e6a4c13b56108438c39b75f36f22f19)

5 / 68      (Adware)
transistor.handbook.nuova.elettronica.pdf.exe  (a32927d69277513067a190c6cfed2e9d)

4 / 68      (Adware)

5 / 68      (Adware)
unic.sahabat.sejati.wma.exe  (85d9ebc4635f2a64f35f200db86d99cf)

1 / 68      (Adware)
man_handled_alexsander_freitas.exe (setup)  (e8e09ec1da8648690fd0f65a8ee4aea5)

1 / 68      (Adware)
gujarati_ganpati_aarti_pdf.exe (setup)  (6585d3e5d3909c68e19bc748b836c070)

1 / 68      (Adware)
gujarati_ganpati_aarti_pdf.exe (setup)  (540203845ea01ce32d8f7e0e8f6150c4)

1 / 68      (Adware)
gujarati_ganpati_aarti_pdf.exe (setup)  (ad79c0596fd7d73e0c14b4f7844e2951)

1 / 68      (Adware)
noor.i9082xxamc7.i9082ojvamc1.jed.zip.exe  (4cea79f41ae8cb502e3ea7621a8aa995)

1 / 68      (Adware)
solo.vine.hablar.por.telefono.mp3.exe  (f9be8ac498011679bd3d243c521d7e73)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)
upde3fd.tmp (Easy Downloader)  (76a7c0438535b57dc16b48fc0f140d96)

1 / 68      (Adware)
updba7.tmp (Easy Downloader)  (4e73172cff909af300c7a3e2272a39d6)

1 / 68      (Adware)
updb992.tmp (Easy Downloader)  (0b3a98429058d061361374c2622ad97b)

1 / 68      (Adware)
upd9d4c.tmp (Easy Downloader)  (da084034a60b9ff5b50ad6a0b74eb522)

1 / 68      (Adware)
upd95db.tmp (Easy Downloader)  (a4ac5724eb8fd01b5f99c7709a684115)

1 / 68      (Adware)
upd8958.tmp (Easy Downloader)  (a4d0e05e6ac3dd2c7d1d0a72752d56e6)

1 / 68      (Adware)
upd86e2.tmp (Easy Downloader)  (bb3046237bbce942c45ce32f68ca0a79)

1 / 68      (Adware)
upd1fab.tmp (Easy Downloader)  (4ae80a422c2e3fd32e53745e23974e9d)

3 / 68      (Adware)
mallory.anne.three.nights.of.sin.pdf.exe  (014df0d14422997edc3f39fa4dc4e11c)

6 / 68      (Adware)
femjoy.2013.11.14.kamilla.j.hellip.rar.exe  (80397201ffa47423036a147c65689dbf)

1 / 68      (Adware)
updater.exeyour_file_download.exe (M-Downloader)  (c55e80d5b1ec30488a039d0a0968a366)

6 / 68      (Adware)
jerry_garcia_band_garcia_live_vol_2.exe (setup)  (174762028210c8703a600302da26d603)

6 / 68      (Adware)
nnf_guidelines_2011.exe (setup)  (efd8f336c3f8ac3e6dd7c4e53ca10450)

1 / 68      (Adware)
csc_struds_v11_latest_november_release_crack.exe (setup)  (1bb0a8efbcf3c50455f5375e455650ae)

1 / 68      (Adware)
{blocked}.exe (M-Downloader)  (a5929cd5636ba88d3856cb7544c488dc)

1 / 68      (Adware)
your_file_download.exe (Easy Downloader)  (999e395afb7f48a33be40e38e0ab3543)

1 / 68      (Adware)
download+aspekte+b2.exe (M-Reader)  (dd333f5bcf6c032838225464dc7a8245)

1 / 68      (Adware)
aspekte+b2+free+download.exe (M-Reader)  (a727ea8f5be3ba062fb918cb07204e23)

 
Latest 30 of 47 files

Downloads URLs for files signed by CJSC InvestService.

5 / 68      (Adware)
http://www.generalfiles.biz/.../gsa4dc2eah17i0  (transistor.handbook.nuova.elettronica.pdf.exe)

1 / 68      (Adware)
http://m-reader.net/.../[e] operaciones de transferencia de masa - treybal.pdf.html  ([e]+operaciones+de+transferencia+de+masa+-+treybal.exe)

1 / 68      (Adware)
http://m-reader.net/.../e operaciones de transferencia de masa - treybal.pdf.html  (e+operaciones+de+transferencia+de+masa+-+treybal.exe)

24 / 68    (Adware)
http://www.generalfiles.net/.../gs1b87c3bh5bi0  (we.re.the.millers.2013.720p.webrip.xvid.ac3.rarbg.part1.rar.exe)

1 / 68      (Adware)
http://www.general-files.pw/.../gs9d3087h2i0  (avs.video.editor.pro.v4.2.1.167.final.rar.exe)

The following websites host and distribute files published by CJSC InvestService.

Remove CJSC InvestService Malware - Powered by Reason Core Security
* Note, the details and description above are based on the code signing digital signature issued to CJSC InvestService by Thawte, Inc. on August 08, 2013 with the serial number '53deed3d6c58e48ae7cc06211d791405'.