home

GetDeal GmbH

Publisher Information

GetDeal GmbH is a software publisher located in Berlin, Germany*. The company is a primary distributor of unwanted software.
Authority:
GlobalSign nv-sa

Valid from:
9/27/2013 3:18:50 PM

Valid to:
9/28/2014 3:18:50 PM

Subject:
E=support@getdeal.com, CN=GetDeal GmbH, O=GetDeal GmbH, L=Berlin, S=Berlin, C=DE

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
112133adaf505a304fb2dce57fd333f47b58

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.GetDealGmbH.I, PUP.Crossrider.BHO.BB, PUP.Crossrider.BHO.DD, PUP.GetDealGmbH.Y, PUP.Crossrider.GetDealGmbH.AA, PUP.Crossrider.GetDealGmbH.h, PUP.Crossrider.GetDealGmbH.g, PUP.Crossrider.GetDealGmbH.FF, PUP.GetDealGmbH.J, PUP.Crossrider.GetDeal.Installer (M), PUP.Crossrider.GetDeal (M), PUP.Crossrider (M), Adware.Crossrider (M)
100.00%

ESET NOD32
Win32/Packed.ScrambleWrapper, Win32/Toolbar.CrossRider, Win64/Toolbar.Crossrider (variant), Win32/Toolbar.CrossRider (variant)
62.96%

Malwarebytes
PUP.Optional.CouponScout.A, PUP.Optional.CrossRider
55.56%

VIPRE Antivirus
Crossrider, Threat.4789396
51.85%

Trend Micro House Call
TROJ_GEN.F47V1202, TROJ_GEN.F47V1028, TROJ_GEN.F47V0317, TROJ_GEN.F47V1023, TROJ_GEN.F47V1103, TROJ_GEN.F47V1101, TROJ_GEN.F47V0509
40.74%

AVG
Generic5, MalSign.Skodna, Win32/Sality
25.93%

Baidu Antivirus
Adware.Win32.Lyckriks, Adware.Win64.Crossrider, Virus.Win32.Sality.$Emu, PUA.Win64.Crossrider
22.22%

Dr.Web
Adware.Plugin.152, Trojan.Crossrider.10, Win32.Sector.22, Adware.Siggen.31030, Trojan.Crossrider.27207
22.22%

Kaspersky
not-a-virus:AdWare.Win32.Lyckriks, Virus.Win32.Sality, not-a-virus:WebToolbar.Win32.CroRi
18.52%

McAfee
Artemis!C09259B0686E, W32/Sality.gen.z, Trojan.Artemis!49C652B3C7EB, Artemis!32A51AEC1F64
18.52%

1 / 68      (Adware)
coupon_1710-4ff1c4f7.tmp  (c20711f7b8a91b4e75e9780d7635690a)

1 / 68      (Adware)
cs browser assistant 2.0-chromeinstaller.exe (CS Browser Assistant 2.0 by GetDeal GmbH)  (32a51aec1f647dcad1c93d1df1632d07)

1 / 68      (Adware)
coupon_scout_102.tmp  (91f702dceda7821f400556113a1f25a2)

1 / 68      (Adware)
coupon_scout_203-14c5b85f.exe (CS Browser Assistant by GetDeal GmbH)  (bd3f33f00c06b436a450725c14d7bbe9)

1 / 68      (Adware)
wwyqza.exe  (d3ec92085b65c31f02026b0ae72edb63)

1 / 68      (Adware)
tmp000000064f1e0fecf00f873e  (da05d14ce90334ce6d9749dee67aa693)

1 / 68      (Adware)
coupon_scout_102.tmp  (3635d4037bc445bae6e23534d658d8eb)

1 / 68      (Adware)
awha3b6.tmp (CS Browser Assistant by GetDeal GmbH)  (eab86c0a63bb928a2117c51484204255)

2 / 68      (Adware)
awh4d4d.tmp (CS Browser Assistant by GetDeal GmbH)  (65efabae10a0e52c0271697505f45472)

3 / 68      (Adware)
coupon_scout_101.exe (CS Browser Assistant by GetDeal GmbH)  (aa5862076cfabdd37af6f3eb1f440917)

7 / 68      (Adware)
cs browser assistant 2.0-buttonutil64.dll  (32646ef856dfc1daaf629d92cabe4d0e)

3 / 68      (Adware)
coupon_1710-4ff1c4f7.exe (CS Browser Assistant by GetDeal GmbH)  (d4352be47a6de0fecac2d11fc7c99940)

6 / 68      (Adware)
cs browser assistant 2.0-buttonutil.dll  (f73479d2f0ff05e84aeb96c9c829f33a)

8 / 68      (Adware)
uninstall.exe  (639d5e4e046cefa7b08c61ad46a88728)

5 / 68      (Adware)
cs browser assistant 2.0-updater.exe (CS Browser Assistant 2.0 by GetDeal GmbH)  (3a1edd7aae6f99af5517a9f1fa37df0f)

3 / 68      (Adware)
cs browser assistant 2.0-helper.exe  (b902dfa609628a9b2b38cdc958f64679)

4 / 68      (Adware)
cs browser assistant 2.0-firefoxinstaller.exe (CS Browser Assistant 2.0 by GetDeal GmbH)  (0c981ac6c4c15518aaed2715f2962a0a)

6 / 68      (Adware)
cs browser assistant 2.0-enabler.exe (CS Browser Assistant 2.0 by GetDeal GmbH)  (399b82872235fac19b0127af37c97b02)

5 / 68      (Adware)
cs browser assistant 2.0-codedownloader.exe (CS Browser Assistant 2.0 by GetDeal GmbH)  (50ae42bef41635919878520a9c0a7e9e)

9 / 68      (Adware)
cs browser assistant 2.0-chromeinstaller.exe (CS Browser Assistant 2.0 by GetDeal GmbH)  (32a51aec1f647dcad1c93d1df1632d07)

17 / 68    (Adware)
cs browser assistant 2.0-buttonutil64.exe (CS Browser Assistant 2.0 by GetDeal GmbH)  (2944bde4880c94d8fbe400cbcf59b8a3)

38 / 68    (Adware)
cs browser assistant 2.0-buttonutil.exe (CS Browser Assistant 2.0 by GetDeal GmbH)  (7ea5f14cd4d345a7fd5951f9ab2ecc11)

35 / 68    (Adware)
cs browser assistant 2.0-bg.exe (CS Browser Assistant 2.0 by GetDeal GmbH)  (520c312b3b8ca27ca2331f653b2729ce)

5 / 68      (Adware)
cs-browser-assistant-2-0.exe (Acosnabizk by Ydguhtiw)  (be933b3c096463fc083943dd494604ce)

15 / 68    (Adware)
cs browser assistant 2.0-bho64.dll (CS Browser Assistant 2.0 by GetDeal GmbH)  (9ae39a8a81914a451734c3853823dc5a)

13 / 68    (Adware)
cs browser assistant 2.0-bho.dll (CS Browser Assistant 2.0 by GetDeal GmbH)  (68129620285fa42307989e18341268f2)

4 / 68      (Adware)
bch_plus.exe (CS Browser Assistant by GetDeal GmbH)  (cf8e0c8c3e3f51031281adaeda42a781)

* Note, the details and description above are based on the code signing digital signature issued to GetDeal GmbH by GlobalSign nv-sa on September 27, 2013 with the serial number '112133adaf505a304fb2dce57fd333f47b58'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.