Peter Sulik

Publisher Information

Peter Sulik is a brand of publishers/developers run by WebPick Internet Holdings Ltd. located in Ramat Ha'Chayal Tel Aviv, Israel. The company is a primary distributor of unwanted software. Peter Sulik is a developer of WebPick Internet Holdings and publishes a number of adware web browser plugins designed to monitor web browser behavior and inject advertisements (banner, popups, text-links, etc.) in the browser by using the WebPick InstalleRex monetization delivery platform. These programs from Peter Sulik are typiclaly installed on a variety of names and misspellings and are very difficult to remove. According to WebPick, they use developers to sign their adware in order to "throw off competitors".
Authority:
COMODO CA Limited

Valid from:
11/27/2013 2:00:00 AM

Valid to:
11/28/2014 1:59:59 AM

Subject:
CN=Peter Sulik, O=Peter Sulik, STREET=Izyumskaya 11, L=Kiev, S=Kiev, PostalCode=03039, C=UA

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
51664a6cb00be789cb474e7f25a72c4d

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.PeterSulik.J, PUP.Installer.PeterSulik.K, PUP.Installer.PeterSulik.L, PUP.PeterSulik.H, PUP.PeterSulik.I, PUP.PeterSulik.G, PUP.PeterSulik.F, PUP.PeterSulik.J, PUP.PeterSulik.K, PUP.PeterSulik.E, PUP.PeterSulik.Q, PUP.Installer.PeterSulik.M, PUP.WebPick.PeterSulik.Bundler (M), PUP.WebPick.PeterSulik (M)
100.00%

avast!
Win32:InstallMonstr-DD [PUP]
18.00%

VIPRE Antivirus
Threat.4150696, Trojan.Win32.Generic
18.00%

Dr.Web
Trojan.Crossrider.21
18.00%

MicroWorld eScan
Gen:Variant.Adware.Dropper.101
18.00%

McAfee
PUP-FEI
18.00%

K7 Gateway Antivirus
Trojan
18.00%

NANO AntiVirus
Trojan.Win32.Generic.cqkjro
18.00%

F-Prot
W32/Preloader.B3.gen, W32/A-02a66f1f
18.00%

Bitdefender
Gen:Variant.Adware.Dropper.101
18.00%

1 / 68      (Adware)
newtab_setup.exe  (b614ace67f29cbc0a3a92619dfedfe99)

1 / 68      (Adware)
newtab_setup.exe  (c702e99335914947920691f1c6e55383)

1 / 68      (Adware)
extie_setup.exe  (1559979ede42b66a9ab1b379a1b2685f)

1 / 68      (Adware)
ytab_setup.exe  (8673ca5c3972e7d105c960962cf532bd)

1 / 68      (Adware)
ext_setup.exe  (7725b394d8895791cfc523effacf08d9)

1 / 68      (Adware)
ytab_setup.exe  (bb509dd1500167c3a3986a2e137be2e5)

1 / 68      (Adware)
ext_setup.exe  (2a8a19feb741442e459718590d216a45)

1 / 68      (Adware)
v.exe  (1b63e3c964d57a25c48e7e558bc6ba90)

1 / 68      (Adware)
ytab_setup.exe  (745148c4faca71e762ee5bd64c1743c6)

1 / 68      (Adware)
ext_setup.exe  (d68887e37d4b1bb8552945cedac3e2e3)

1 / 68      (Adware)
extie_setup.exe  (762dbbc82d52d1044b6425786b0bbc48)

34 / 68    (Adware)
newtab_setup.exe  (9bea39a9bef3d26de742dba1916aae09)

31 / 68    (Adware)
vaudix_extension.exe  (91945133777a204c9c1e6a2a61f1cde9)

34 / 68    (Adware)
k.exe  (78ec9f5558094f33cf6b3ba49740a189)

34 / 68    (Adware)
9sy27q.exe  (266072be691fc451d1531b3d8bce8f75)

32 / 68    (Adware)
0tdvxrhtz.exe  (ff39a96074319d39caccd3a44c84090e)

31 / 68    (Adware)
otgcgYxxPC.exe  (10b987819e68189796890526a514ae70)

31 / 68    (Adware)
ytab_setup.exe  (a77d4f0c4c6f944f43fc2589ac8f514e)

31 / 68    (Adware)
ext_setup.exe  (4ffa0be9d8047f4415453692d3fa8895)

31 / 68    (Adware)
extIE_setup.exe  (8da07e0706740744b66a28dd5614a285)

1 / 68      (Adware)
ext_setup.exe  (4c8d25c674573e21e69eb16fb745bc09)

1 / 68      (Adware)
4edk.exe  (c6d9832c7f1258abfe8de0729774e021)

1 / 68      (Adware)
ncujbq.exe  (0415b197cbddd0ce6110031861e0a027)

1 / 68      (Adware)
l4my39sbla.exe  (86ed5671547434fcb1c4e80413396374)

1 / 68      (Adware)
ext_setup.exe  (425b1b6b40ed64e8452e6bc576d5dd6a)

1 / 68      (Adware)
ytab_setup.exe  (f053b0ffb3ec4640a8a10636a768ad42)

1 / 68      (Adware)
ext_setup.exe  (20d0b6449b5c86785bcdb3a160fd96f8)

1 / 68      (Adware)
ytab_setup.exe  (606b7d8a1549f95776098bea3ebc8263)

1 / 68      (Adware)
ext_setup.exe  (1a779ad40e41657008adf480ded424e5)

1 / 68      (Adware)
5is_q5w.exe  (8cf0a458b8dd16343b98fedb886c45ef)

 
Latest 30 of 54 files

* Note, the details and description above are based on the code signing digital signature issued to Peter Sulik by COMODO CA Limited on November 27, 2013 with the serial number '51664a6cb00be789cb474e7f25a72c4d'.