Deals Interactive Media, LLC

Publisher Information

Deals Interactive Media, LLC is a software publisher located in Houston, Texas in the United States*. The company is a primary distributor of unwanted software. Deals Interactive Media is an adware distributor of ad-supported bundled software including Radsteroids run by Injekt LLC (and others) located at 640 Grand Ave Carlsbad, CA 92008. The company is/patners with various other adware publishers under the same team including Parallel Lines Development, Western Web Applications, Big Water, Mesa Roha Solutions, and Creative Island Media. The primary application that publisher distributes is web browser extesnsions that are bundled by 3rd-part download managers. There is one additional code signing certificate issued to this publisher.
Remove Deals Interactive Media, LLC Malware - Powered by Reason Core Security
Authority:
VeriSign, Inc.

Valid from:
4/1/2014 8:00:00 PM

Valid to:
7/2/2015 7:59:59 PM

Subject:
CN="Deals Interactive Media, LLC", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Deals Interactive Media, LLC", L=Houston, S=Texas, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
293c89819f1335c143553d8c2a0ef766

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Service.DealsInteractiveMedia.K, PUP.DealsInteractiveMedia.J, PUP.DealsInteractiveMedia.G, PUP.DealsInteractiveMedia.L, PUP.DealsInteractiveMedia.I, PUP.DealsInteractiveMedia.K, PUP.DealsInteractiveMedia.H, PUP.DealsInteractiveMedia.U, PUP.Service.DealsInteractiveMedia.L, PUP.Injekt.DealsInteractiveMedia, PUP.Injekt.DealsInteractiveMedia (M)
100.00%

AVG
Deals, Downloader, Potentially harmful program Downloader.BSH
82.00%

Malwarebytes
PUP.Optional.Radsteroids.A, PUP.Optional.MovieMode.A
54.00%

ESET NOD32
MSIL/Adware.PullUpdate (variant)
42.00%

Baidu Antivirus
Adware.Win32.RadSteroids, Adware.Win32.Deals, Adware.Win32.PullUpdate, Adware.MSIL.PullUpdate, Trojan.MSIL.PullUpdate
36.00%

VIPRE Antivirus
Threat.4784449, MSIL.Adware.PullUpdate, Threat.4872425
34.00%

McAfee
Artemis!C62190497016, Artemis!EED9269C9641, Artemis!24B4AAB9732C, Artemis!74BDC98F24E4, Artemis!F701F8F6A946, Artemis!4BB6FF846231, Artemis!5DCC5B71A179, Artemis!48AF91527CEC, Artemis!6C32AF95D8FF, Artemis!07A0B4ACDBB9, Artemis!BF6D6AC56DB6, Artemis!BCF925EAD846, Artemis!D88EC28DB710
28.00%

Antiy Labs AVL
RiskWare[RiskTool:not-a-virus]/Win32.Agent, Trojan/Win32.TSGeneric, Trojan/Win32.SGeneric
26.00%

Trend Micro House Call
Suspicious_GEN.F47V0625, Suspicious_GEN.F47V0708, Suspicious_GEN.F47V0703, Suspicious_GEN.F47V0723, Suspicious_GEN.F47V0811
24.00%

McAfee Web Gateway
Artemis!C62190497016, Artemis!PUP , Artemis!24B4AAB9732C, Artemis!74BDC98F24E4, Artemis!BCF925EAD846, Artemis!D88EC28DB710
24.00%

1 / 68      (Adware)
radsteroids.33aabcf1ad13.dll  (82e849f3039e679f3948a8ee72512857)

1 / 68      (Adware)
mzgabn.exe (Radsteroids by Deals Interactive Media)  (bccd5dd23f6f00936cae81e486fe970c)

1 / 68      (Adware)
ycvyacilnf.dll  (d1a56662e5d6ec4b46c586c191280c40)

1 / 68      (Adware)
xxlyrqeuc.dll  (d7f77699dbfa92ac30bf6181b333e523)

3 / 68      (Adware)
uninstall.exe  (8e7b39ca34e8b08f29f7eca7b2f012d4)

13 / 68    (Adware)
helper.dll  (d88ec28db710564e4417fe3794ca5d34)

3 / 68      (Adware)
radsteroids.33aabcf1ad13.dll  (820514bc58622cb3985f6fc40632a043)

7 / 68      (Adware)
helper.dll  (75c846206e6e35659f2068a5b9be8240)

9 / 68      (Adware)

3 / 68      (Adware)
radsteroids.33aabcf1ad13.dll  (2295e6f3cd015c82cab20518dc597dec)

4 / 68      (Adware)
uninstall.exe  (9360343dd0575f361b965aa636812c65)

4 / 68      (Adware)
uninstall.exe  (fe6548484967d6a8c755bc828d14958a)

8 / 68      (Adware)

5 / 68      (Adware)
radsteroids.33aabcf1ad13.dll  (c84b3a670bfd0fdd7a27c615e8540932)

15 / 68    (Adware)
radsteroids_ca_4222014.exe  (7ad12f93800414a8f5addfea7899c6d6)

11 / 68    (Adware)
qhenpqfob.exe (Radsteroids by Deals Interactive Media)  (07a0b4acdbb901edc66450ed62443f64)

4 / 68      (Adware)
qgdqnasiaw.dll  (c217da65e48ca53d59fe2ed8c502a470)

15 / 68    (Adware)
igiscnxg.dll  (6c32af95d8ff7584e7a7663b68a0255a)

6 / 68      (Adware)
dmonhfs.exe (Radsteroids by Deals Interactive Media)  (faba9432b5b150c958e5000e253145af)

9 / 68      (Adware)
update.exe (Radsteroids by Deals Interactive Media)  (48af91527cec1c64ae6736cb2a7ff437)

12 / 68    (Adware)
cvbdhpt.exe (Radsteroids by Deals Interactive Media)  (5dcc5b71a17909cf227f911eb90755d1)

8 / 68      (Adware)
qlvqfyp.exe (Radsteroids by Deals Interactive Media)  (4bb6ff84623139dfc87b01d9ca0f3dfb)

3 / 68      (Adware)
mgyziahok.dll  (1147b012b0de3bf48858639c885965f3)

5 / 68      (Adware)
nwoufpqvuh.exe (Radsteroids by Deals Interactive Media)  (c4884c06b060800c914dd462f310df29)

10 / 68    (Adware)
hlyqbj.exe (Radsteroids by Deals Interactive Media)  (f701f8f6a9465160de1a540727acc1bd)

8 / 68      (Adware)
gbiyjfj.dll  (22dd89e60add446d6fbd3ded2a38d770)

4 / 68      (Adware)
mtljylwejpf.exe (Radsteroids by Deals Interactive Media)  (a1d21db38b74772f0b4452ebec5bcac2)

9 / 68      (Adware)

9 / 68      (Adware)
radsteroids.exe  (abe2dc9a0dcc3df0a7d6421d21aa4e24)

4 / 68      (Adware)

 
Latest 30 of 115 files

The following certificate is also signed by Deals Interactive Media, LLC.

1D6A627084CA20F5363E39971F838AF2  (May 30, 2013 to May 31, 2014)

The following publishers (by Authenticode signature organization name) are related.

Remove Deals Interactive Media, LLC Malware - Powered by Reason Core Security
* Note, the details and description above are based on the code signing digital signature issued to Deals Interactive Media, LLC by VeriSign, Inc. on April 01, 2014 with the serial number '293c89819f1335c143553d8c2a0ef766'.