home

OOO Lega Media

Publisher Information

OOO Lega Media is a software publisher located in Saint-Petersburg, Russia*. The company is a primary distributor of unwanted software. There is one additional code signing certificate issued to this publisher.
Authority:
VeriSign, Inc.

Valid from:
5/1/2013 3:00:00 AM

Valid to:
5/2/2014 2:59:59 AM

Subject:
CN=OOO Lega Media, OU=IT, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=OOO Lega Media, L=Saint-Petersburg, S=Saint-Petersburg, C=RU

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
207a06bd655445095b358b2c5124046e

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP (M)
100.00%

1 / 68      (Adware)
gugl_planeta_zemlya_google_earth_6.1.0.4738_2011_rus_s.exe  (2e2a73f4f4189b1ebef55cd28172b286)

1 / 68      (Adware)
bitmaster_s.exe  (bd48ef07ff3ea970d4190fb5990a5674)

1 / 68      (Adware)
downloadsetup_s.exe  (8cbb347cad898666f7296401446d89cf)

1 / 68      (Adware)
downloadsetup_s.exe  (903c4fe179521ec15d624bf6195ba241)

1 / 68      (Adware)
downloadsetup_s.exe  (0a3c3b21d1e87e55119aef9b34307293)

1 / 68      (Adware)
varkraft_3___warcraft_iii__reign_of_chaos___warcraft_iii__the_frozen_throne__2002-2003__rus__crack__  (6a32e5bcf307609288ee1cb710611a15)

1 / 68      (Adware)
downloadsetup_s.exe  (6e8a9569c125fd14dcb25f0814cd832c)

1 / 68      (Adware)
muzyikalnyiy_format_hitov_2013_sbornik_mp3_s.exe  (cda4d9630520928512641646cd0919ad)

1 / 68      (Adware)
downloadsetup_s.exe  (834cd8bc761e26945ed62fbb658c4b51)

1 / 68      (Adware)
downloadsetup_s.exe  (b31732e47c18b965891c7983e3e9fbe4)

1 / 68      (Adware)
exclusive education 6_s.exe  (04e56aad2e1d62db0c4b9ae226eed0fb)

1 / 68      (Adware)
moya_lyubimaya_muzyika._osennyaya_diskoteka__2013__s.exe  (d4edc5844b35cac1f1109d7862bb0e4c)

1 / 68      (Adware)
downloadsetup_s.exe  (e56ab645f504a3ee968fe635052ed929)

1 / 68      (Adware)
bitmaster_s.exe  (ed7e920a762b28314392ae1f9658b0e1)

1 / 68      (Adware)
downloadsetup_s.exe  (f925f84830fe9f38278dd0acbaf7f23d)

1 / 68      (Adware)
daniel_boaventura_new_york_new_york_s.exe  (870d70a5eb0bec5b623ffb4400450250)

1 / 68      (Adware)
downloadsetup_s.exe  (74f396f1478f3cf83114bd9f83a6b90a)

1 / 68      (Adware)
diskoteka_hh_veka_zarubejnyie_hityi_80h_2012__s.exe  (735356d76aa94f1a092b6c2391fccb66)

1 / 68      (Adware)
1bj2dwjg.exe  (46bfaf9f6c134e56c0bf419b3275057c)

1 / 68      (Adware)
downloadsetup_s.exe  (051773c2aaa939e6ccbb3e0b3b59a148)

1 / 68      (Adware)
downloadsetup_s.exe  (4f431105201fbc90e740e5f5044d8304)

1 / 68      (Adware)
bitmaster_s.exe  (a96ce40e5391e2fc5bbf121f3f308965)

1 / 68      (Adware)
downloadsetup_s.exe  (7078e9b38dc5e0e81429a1cb8f868814)

1 / 68      (Adware)
bmasetup.exe  (4d5821f5007ccd50e79e2a2caafd4427)

1 / 68      (Adware)
downloadsetup_s.exe  (508c83b12f5528ec4ee339d7357de8f3)

1 / 68      (Adware)
bmasetup.exe  (c8353d5a2223db14d021dd86ff09e222)

1 / 68      (Adware)
bitmaster_s.exe  (32b548cd5f8cc09fcb25875372fec87b)

1 / 68      (Adware)
neuronsetup.exe (Neuron Browser by OOO Lega Media)  (e01d16f1473d648709608ebc1e53fa47)

1 / 68      (Adware)
bitmaster.bin  (5d41fe549173b51ec96b542f6a082ec0)

1 / 68      (Adware)
vknote_s.exe  (12a3416ed913950f1e7a6c834254da9c)

 
Latest 30 of 734 files

Downloads URLs for files signed by OOO Lega Media.

1 / 68      (Adware)
http://go.winneradsmedia.com/www/delivery/ck.php?oaparams=2__bannerid=27__zoneid=0__cb=dc07eb0984__oadest=http://get.bmmedia.net/.../?id=t9ef&sub=notif&nor=1  (downloadsetup_s.exe)

1 / 68      (Adware)
http://get.bmmedia.net/.../?id=t00d&sub=boxmp3&name=Ludovico Einaudi - In A Time Lapse (Special Edition) (2013)&url=&lang=ru&nor=1  (ludovico_einaudi_in_a_time_lapse_special_edition_2013__s.exe)

The following certificate is also signed by OOO Lega Media.

50BBBBFD1DC0231CA78AE1E5F30E0E41  (Apr 17, 2014 to Jun 16, 2017)

The following publishers (by Authenticode signature organization name) are related.

Skymonk Solutions Limited

* Note, the details and description above are based on the code signing digital signature issued to OOO Lega Media by VeriSign, Inc. on May 01, 2013 with the serial number '207a06bd655445095b358b2c5124046e'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.