LEEYEON Communication Co.,Ltd

Publisher Information

LEEYEON Communication Co.,Ltd is a software developer located in Jung-gu, Seoul in Korea*. The company is a primary distributor of unwanted software. Thre are 2 additional code signing certificates issued to this publisher.
Remove LEEYEON Communication Co.,Ltd Malware - Powered by Reason Core Security
Authority:
GlobalSign nv-sa

Valid from:
1/7/2013 4:28:00 PM

Valid to:
1/8/2014 4:28:00 PM

Subject:
CN="LEEYEON Communication Co.,Ltd", O="LEEYEON Communication Co.,Ltd", L=Jung-gu, S=Seoul, C=KR

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
11212715411be78bf1c5048e7be6b7276a43

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
Unnamed.Threat.18, PUP.LEEYEONCommunicationCoLtd.K, PUP.LEEYEONCommunicationCoLtd.M, PUP.LEEYEONCommunicationCoLtd.E, PUP.LEEYEONCommunication (M)
89.29%

Avira AntiVirus
TR/Graftor.123194.3, TR/Spy.242688.23, TR/Symmi.24822, TR/Graftor.114255.1, Adware/Keyword.J, TR/Kazy.253218.10, Adware/Kraddare.HH.17
82.14%

McAfee
Artemis!D6C57DE39147, Artemis!E79D45EF9D30, Artemis!E1492C1AF70A, Artemis!76F81B94AAF4, Artemis!F2F77EC84AB7, Artemis!9142A7F02F9A, Artemis!CF4D468882DD
78.57%

McAfee Web Gateway
Artemis!D6C57DE39147, Heuristic.BehavesLike.Win32.Suspicious-PKR.G, Artemis!E1492C1AF70A, Artemis!76F81B94AAF4, Artemis!F2F77EC84AB7
78.57%

IKARUS anti.virus
Win32.SuspectCrc, Trojan-Banker.Win32.Banker, Trojan-Downloader.Win32.Kraddare, Trojan-Downloader.Win32.Agent, Trojan.SuspectCRC
78.57%

Comodo Security
UnclassifiedMalware, ApplicUnwnt, ApplicUnwnt.Win32.AdWare.Agent.~AQ
75.00%

VIPRE Antivirus
Trojan.Win32.Generic
75.00%

ESET NOD32
Win32/TrojanClicker.BHO.NCQ (variant), Win32/Adware.Kraddare.HH (variant), Win32/Adware.Kraddare.GJ (variant), Win32/AdWare.Kraddare.IH (variant)
75.00%

Trend Micro House Call
TROJ_GEN.F47V1214, ADW_KRADDARE, TROJ_GEN.F47V0913, TROJ_GEN.F47V0810, TROJ_GEN.F47V0110, TROJ_GEN.F47V1104, ADW_KRADARRE
71.43%

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud), Win32.TrojDownloader.Agent.hd.(kcloud), Win32.Troj.AdClicer.ay.(kcloud), Win32.Troj.ADClicker.(kcloud)
71.43%

1 / 68      (Adware)
r.exe  (59a2dba43298d5db1ec5304bdeda318d)

1 / 68      (Adware)
baconex.exe  (612bed1d4e913f65c290587f0c92132e)

1 / 68      (Adware)
bacon.exe  (18516f3560db538c38bf103c8b6b6ca9)

1 / 68      (Adware)
windisplay.exe  (d889fe4df163d648156560834d1df657)

39 / 68    (Adware)
SLEsperant.exe  (3d229bdb7505c0faf7a0d50c8927ad47)

1 / 68      (Adware)
clickup.exe  (d75625d66ae4444566a60739e94815ee)

39 / 68    (Adware)
SLEsperant.exe  (e6fba2ce2483818a0c110615b8bfc2d7)

39 / 68    (Adware)
SLEsperant.exe  (d60b83685d3112959a7c4f578164cc9f)

39 / 68    (Adware)
SLEsperant.exe  (503f45508a877477c7ecee34d65fce35)

39 / 68    (Adware)
SLEsperant.exe  (c9d29328922aa5d8fa234951b60c8dca)

39 / 68    (Adware)
SLEsperant.exe  (d040f2af4ddf6336475ec5af587eabb2)

27 / 68    (Adware)
baconex.exe  (92054709dd9f936ba4656121b046a070)

36 / 68    (Adware)
SLEsperant.exe  (a117fedd2d28e8936a0a5ea9f83b23d1)

33 / 68    (Adware)
windisplay.exe  (caf34966a1fdcd9cacdcba553e6f8930)

26 / 68    (Adware)
SLEsperant.exe  (b63be81ff1c3d8a32c48f68f68059e41)

18 / 68    (Adware)
gbun.exe  (cf4d468882dd357f9b9be8fd6817c17f)

24 / 68    (Adware)
gbalinkex.exe  (e08dd097ae70fa777aa245c3b804873d)

37 / 68    (Adware)
gbalink.exe  (046b43c82742650020fc580cc25982a1)

25 / 68    (Adware)
SLEsperant.exe  (946f4cc561aee0f85206709079b4902f)

29 / 68    (Adware)
SLEsperant.exe  (eba668835ba1347fc841c297786e49f9)

28 / 68    (Adware)
scun.exe  (e42300e5ecd7a15f5df90fa0f25a5dd3)

17 / 68    (Adware)
windisplayex.exe  (9142a7f02f9a733b8682b8c9be239ace)

38 / 68    (Adware)
windisplay.exe  (f2f77ec84ab7823c7d3a6b7258a65a25)

32 / 68    (Adware)
searchlike.exe  (76f81b94aaf4a1a521a3cc1d5bffb0b8)

28 / 68    (Adware)
fnlag.exe  (e1492c1af70afd02dbdbcbda22779aee)

16 / 68    (Adware)
fnlink.exe  (e79d45ef9d30c42ba44427dbedc32e66)

19 / 68    (Adware)
SLEsperant.exe  (d6c57de3914771584f541a6ead2c3682)

Downloads URLs for files signed by LEEYEON Communication Co.,Ltd.

28 / 68    (Adware)
http://down.searchlike.co.kr/.../scun.exe  (e42300e5ecd7a15f5df90fa0f25a5dd3)

The certificates below are also signed by LEEYEON Communication Co.,Ltd.

1121E23360559DFDFFFFE8EFBF0ED6170161  (Dec 05, 2014 to Jan 27, 2016)

11212A9589A89436E49BF68B34D235C237DA  (Dec 26, 2013 to Dec 27, 2014)

The following publishers (by Authenticode signature organization name) are related.

Remove LEEYEON Communication Co.,Ltd Malware - Powered by Reason Core Security
* Note, the details and description above are based on the code signing digital signature issued to LEEYEON Communication Co.,Ltd by GlobalSign nv-sa on January 07, 2013 with the serial number '11212715411be78bf1c5048e7be6b7276a43'.