CrossReader

Publisher Information

CrossReader is a brand of the Sambreel/Yontoo group, a web advertising company located in Carlsbad, CA. It is part of the Yontoo/Sambreel group and distributes web browser add-ons, typically potentially unwanted and adware in nature, that are designed to modify a user's typical search beahvior as well as display context and popup advertising.
Remove CrossReader Malware - Powered by Reason Core Security
Authority:
VeriSign, Inc.

Valid from:
5/12/2013 5:00:00 PM

Valid to:
4/3/2014 4:59:59 PM

Subject:
CN=CrossReader, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=CrossReader, L=Jerusalem, S=Israel, C=IL

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
44b7fce292b0132cdbb928bbece361d7

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.CrossReader.M, PUP.CrossReader.z, PUP.CrossReader.G, PUP.CrossReader.Z, PUP.Yontoo.CrossReader.Installer (M)
100.00%

Malwarebytes
PUP.Optional.CrossRider
60.00%

Dr.Web
infected with Trojan.Crossrider.10, infected with Trojan.Crossrider.2
50.00%

Bkav FE
HW32.CDB, HW32.Packed
40.00%

Agnitum Outpost
Riskware.ScrambleWrapper
40.00%

ESET NOD32
Win32/Packed.ScrambleWrapper, Win32/Packed.ScrambleWrapper (variant)
40.00%

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud)
30.00%

Trend Micro House Call
TROJ_GEN.F47V1031, TROJ_GEN.F47V1110, Suspici.D1F5E19F
30.00%

NANO AntiVirus
Trojan.Win32.Crossrider.dbxnmn, Trojan.Win32.Crossrider.dgyitw, Trojan.Nsis.Downloader.dgzezj
30.00%

ESET NOD32
Win32/Packed.ScrambleWrapper.D potentially unwanted application
20.00%

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)
crossreaderchromeaddon.msi  (e9b07f659aef593dd50854a2dab7533e)

10 / 68    (Adware)

10 / 68    (Adware)
crossreader3.exe (Vdagweqduppmza by Mhjajci)  (790e72e52175f4dff102bdf819774fea)

1 / 68      (Adware)

4 / 68      (Adware)
crossreader4.exe (Xevtl by Eolehajx)  (ffedca0646d9300a5d338387cc22de6a)

9 / 68      (Adware)

5 / 68      (Adware)
crossreader2.exe (Hwudrii by Qjhftq)  (4de620ee28d7700e670bef09b19e6f0f)

7 / 68      (Adware)
crossreader1.exe (Popcimsliremy by Bdmrmwgqvi)  (07da648ce967dcbdd962fcc72a4467f1)

Remove CrossReader Malware - Powered by Reason Core Security
* Note, the details and description above are based on the code signing digital signature issued to CrossReader by VeriSign, Inc. on May 12, 2013 with the serial number '44b7fce292b0132cdbb928bbece361d7'.