GreyGray

Publisher Information

GreyGray is a brand of the Sambreel/Yontoo group, a web advertising company located in Carlsbad, CA. The company is a primary distributor of unwanted software. It is part of the Yontoo/Sambreel group and distributes web browser add-ons, typically potentially unwanted and adware in nature, that are designed to modify a user's typical search beahvior as well as display context and popup advertising.
Remove GreyGray Malware - Powered by Reason Core Security
Authority:
VeriSign, Inc.

Valid from:
9/19/2013 3:00:00 AM

Valid to:
9/20/2015 2:59:59 AM

Subject:
CN=GreyGray, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=GreyGray, L=San Diego, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
23ff62a16c638b371a4ab98a8f876e8b

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Yontoo.GreyGray (M), Adware.Yontoo.GreyGray (M)
100.00%

Zillya! Antivirus
Adware.Yotoon.Win64.14, Backdoor.CPEX.Win32.29350, Adware.SwiftBrowse.Win32.9333, Adware.Agent.Win32.9009
16.00%

Agnitum Outpost
Riskware.Agent, PUA.BrowseFox, PUA.SwiftBrowse, Trojan.BPlug
16.00%

VIPRE Antivirus
Trojan.Win32.Generic, Threat.4150696, Yontoo
16.00%

G Data
Adware.SwiftBrowse.CH, Adware.BrowseFox, Adware.BrowseFox.BO, Win32.Application.BrowseFox
16.00%

AVG
GreyGray, AdPlugin, BrowseFox.F
16.00%

K7 Gateway Antivirus
Adware , Unwanted-Program , Trojan
16.00%

K7 AntiVirus
Adware , Unwanted-Program
16.00%

Antiy Labs AVL
GrayWare[NetTool:not-a-virus]/Win64.NetFilter.a, GrayWare[AdWare:not-a-virus]/Win32.Yotoon.kam, GrayWare[AdWare]/Win32.SwiftBrowse.cf
16.00%

Jiangmin
AdWare/Yotoon.aq, AdWare/Yotoon.nb, AdWare/SwiftBrowse.dxt, Adware/Agent.izz
16.00%

1 / 68      (Adware)
greygray.expextdll.dll  (64b29f9b2c0a1c17a79ef5277a4451dd)

1 / 68      (Adware)
b97ce8fa0be14b738ac664.dll  (16265e456935d901bf4a2fcdb2fb53d7)

1 / 68      (Adware)
GreyGray2015070314.exe  (e4e6efa28dcedeaa54820c43a7df370c)

1 / 68      (Adware)
greygrayun.exe  (00d380405c0eacd7361e96cd80f78583)

29 / 68    (Adware)
{b97ce8fa-0be1-4b73-8ac6-5353529f8179}w64.sys (StdLib)  (d550833964dc475ae13b3bd79a32bab5)

1 / 68      (Adware)
{b97ce8fa-0be1-4b73-8ac6-5353529f8179}t.sys (StdLib)  (790009b1f3addbde06db76e04aa8d422)

29 / 68    (Adware)
{b97ce8fa-0be1-4b73-8ac6-5353529f8179}w64.sys (StdLib)  (36d29d4a10214ac7c91138dfff329bc8)

1 / 68      (Adware)
greygray.browseradapters.dll.mal  (5f54de0b1d741cc9741e36d7742db76f)

1 / 68      (Adware)
updategreygray.exe  (e12dbe3030e8a8b57d754fa5b4f264cd)

1 / 68      (Adware)
greygray.expextdll.dll  (b1981026c50338517d7c43f1e4c50d2f)

1 / 68      (Adware)
b97ce8fa0be14b738ac664.dll  (7418a2002499aa0a3762942f0c022a86)

29 / 68    (Adware)
greygraybho.dll (GreyGray)  (73320b99da03ea9ad73522f02a37281b)

29 / 68    (Adware)
{b97ce8fa-0be1-4b73-8ac6-5353529f8179}w64.sys (StdLib)  (c76bb026ed2c42a53e89c9a0e7d9f976)

1 / 68      (Adware)
GreyGray.GCUpdate.dll  (de2a86c63906571c76a9043946944556)

1 / 68      (Adware)
greygray.purbrowse.dll  (c59890a7951c42662eba6428354bfb3e)

1 / 68      (Adware)
greygray.ofsvc.dll  (9bf4e640cbd756ad2d59b667632f4ba4)

1 / 68      (Adware)
greygray.gcupdate.dll  (a230dab06ac689827b97fab451caef37)

1 / 68      (Adware)
greygray.ffupdate.dll  (5d1b70f950474cb7c09d043abe954477)

1 / 68      (Adware)
greygray.expext.dll  (e8a5410f8ce499ec45e75fbb532982a0)

1 / 68      (Adware)
greygray.compatibilitychecker.dll  (d5f9c024229425d1932280fd02b76229)

1 / 68      (Adware)
greygray.boas.dll  (9bfdc1db5f7d6ee027393e0c4cec602f)

1 / 68      (Adware)
GreyGray2014113014.exe  (e6a2cdd1710c9e87c3ef4bae2433bc87)

1 / 68      (Adware)
GreyGray2014112716.exe  (e78be8f5cd47801a3bedc19a2163f90c)

1 / 68      (Adware)
GreyGray2014112923.exe  (a05a03c1ec9a97d8b90b1ee71e4f3340)

1 / 68      (Adware)
GreyGray2015032804.exe  (1a13edf0858e51c5b1f9cd0f92f90107)

1 / 68      (Adware)
GreyGray2015032809.exe  (9799f835a1bface02fa033c7f975fe38)

1 / 68      (Adware)
GreyGray2014113019.exe  (06f4470551e383c83078cafdaffeaf1e)

1 / 68      (Adware)
GreyGray2014112817.exe  (6c18d406b8aba64d81126da36528c58a)

1 / 68      (Adware)
GreyGray2014112812.exe  (ba563f636bf87fbcc4b3d6a9108aa1a8)

1 / 68      (Adware)
GreyGray2014113004.exe  (45a8d12fe926b5631ff8ca2ffc816acf)

 
Latest 30 of 1,070 files

The following publishers (by Authenticode signature organization name) are related.

30 of 145 publishers

Remove GreyGray Malware - Powered by Reason Core Security
* Note, the details and description above are based on the code signing digital signature issued to GreyGray by VeriSign, Inc. on September 19, 2013 with the serial number '23ff62a16c638b371a4ab98a8f876e8b'.