JDK

Publisher Information

JDK is a software developer located in Gangnam-gu, Seoul in Korea*. The company is a primary distributor of unwanted software.
Remove JDK Malware - Powered by Reason Core Security
Authority:
Thawte, Inc.

Valid from:
10/17/2012 9:00:00 AM

Valid to:
10/18/2013 8:59:59 AM

Subject:
CN=JDK, OU=IT Team, O=JDK, L=Gangnam-gu, S=SEOUL, C=KR

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
0a7ec8624babf6a21fab15d00aac02f5

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.JDK.F, PUP.JDK.M, PUP.JDK.L, PUP.JDK (M), PUP.JDK.Toolbar (M)
100.00%

avast!
Win32:Adware-AZP [Adw], Win32:Adware-BRI [Adw]
36.11%

IKARUS anti.virus
Win32.AdWare.AZP, Trojan-Downloader, Win32.SuspectCrc
33.33%

Comodo Security
ApplicUnwnt, Application.Win32.AdWare.Kraddare.IL
33.33%

G Data
Win32.Trojan.Agent.ZG4TFL, Application.Generic.574771, Trojan.GenericKD.1693429, Application.Generic.577182, Gen:Variant.Adware.Symmi.41736
30.56%

ESET NOD32
Win32/Adware.Kraddare.HW (variant), Win32/AdWare.Kraddare.IL (variant), Win32/Adware.Winggo.AD (variant)
30.56%

Baidu Antivirus
Adware.Win32.Kraddare, HackTool.Win32.Downloader, Trojan.Adware.Kraddare, Adware.Win32.AdWare.Kraddare, Adware.Win32.Winggo
30.56%

AhnLab V3 Security
PUP/Win32.IntClient, Trojan/Win32.Downloader, PUP/Win32.MWManager
27.78%

MicroWorld eScan
Application.Generic.574771, Trojan.GenericKD.1693429, Application.Generic.577182, Gen:Variant.Adware.Symmi.41736, Gen:Variant.Adware.Symmi.41857, Gen:Variant.Graftor.126165
27.78%

Bitdefender
Application.Generic.574771, Trojan.GenericKD.1693429, Application.Generic.577182, Gen:Variant.Adware.Symmi.41736, Gen:Variant.Adware.Symmi.41857
27.78%

1 / 68      (Adware)
nrrssics_uninstall.exe  (3e76ca749b5c51656532f582aaf2af4d)

1 / 68      (Adware)
nrrssics.exe (ReportSP)  (2b59475b9fe75fa5af9ff13d49beebfc)

1 / 68      (Adware)
mcmrvvwwmc.exe  (a4d6f27ee30f9677927ea67d09cea1ed)

1 / 68      (Adware)
tooltip_unins.exe  (784be6823f880246ceaa31766515e203)

1 / 68      (Adware)
tooltip_uc.exe  (46d1315ff13091555343809a77cf869d)

1 / 68      (Adware)
tooltip.exe  (e1465703a67e6f8334fcba1c149b3dbc)

1 / 68      (Adware)
tooltip_sch.exe  (66bf15daf0f18958e66c0b6e686241df)

1 / 68      (Adware)
tooltip_dd.sys  (2502425d68f9b964f673b5be8ec669e2)

1 / 68      (Adware)
nospell_dd.sys  (ef06393cdabba69014172f266e83c7c9)

1 / 68      (Adware)
tooltip_mon.exe  (ebabf03b8d0d3bc4b579a31643561f2a)

1 / 68      (Adware)
mrmontyzrtsp.exe  (91c9041607df341ef88690db3c114482)

1 / 68      (Adware)
netipviewer_mon.exe  (2a7920ba1747dfff68af6e14441a9865)

1 / 68      (Adware)
netipviewer_uninst.exe  (2d25da1b01e7944b2372d8bae6c9ad02)

1 / 68      (Adware)
netipviewer_uc.exe (NetIPViewer)  (17a4a8856121418945065ea200353a8f)

1 / 68      (Adware)
netipviewer.exe (netipviewer)  (5602b9477dbcbf22f086e3a49d1b77e7)

1 / 68      (Adware)
mcmtyzrtmc.exe  (ca71aaf1968440a4878c269a296b180b)

1 / 68      (Adware)
hotclipreader_uc.exe  (f9fe7251fec7dea9d3ebc42def521156)

1 / 68      (Adware)
nospell_unins.exe  (83f5f68e589b22b92ca2f6775f458691)

1 / 68      (Adware)
nospell_sch2.exe  (136ca9422113524146a9dcf6ccffe41f)

1 / 68      (Adware)
nospell.exe  (9102c9f1ec8c1634a962dbd9c60f4bf9)

1 / 68      (Adware)
internetservicemgru.exe  (dbbefbf14032f1fca559bb9cf0f9df14)

1 / 68      (Adware)
smumnics.exe (INISafe)  (ccf8ee92e419ac7bed2e95ad435e7c85)

29 / 68    (Adware)
1391ed.tmp.exe  (a41ca8088b4eafec1695b0acad282341)

11 / 68    (Adware)
138bb.tmp.exe (Internet Service Manager by IServiceMgr)  (2a22b26c48cab7da151c6af56451b694)

27 / 68    (Adware)
mtquqrmcx.exe  (bcc56106f3151ffa7acdf9368a2f6923)

1 / 68      (Adware)
smumnics_uninstall.exe  (3f3541c9046b780bc4a3a9cd36ee5fc4)

24 / 68    (Adware)
5481.malware  (d7291195b163f3e3928e7343fa1cf469)

8 / 68      (Adware)
5480.malware  (d0fb8094fc0f410e04eddfca93f2b34f)

26 / 68    (Adware)
5479.malware  (6d05df3d61d029d1e7c75b6f53a55fbf)

10 / 68    (Adware)
5478.malware  (aa17ef4f92f131dddef283c1b73ea127)

 
Latest 30 of 36 files

Remove JDK Malware - Powered by Reason Core Security
* Note, the details and description above are based on the code signing digital signature issued to JDK by Thawte, Inc. on October 17, 2012 with the serial number '0a7ec8624babf6a21fab15d00aac02f5'.