PINWID LTD

Publisher Information

PINWID LTD is a software publisher located in HERZLIYA, Israel*. The company is a primary distributor of adware type software. There is one additional code signing certificate issued to this publisher.
Authority:
COMODO CA Limited

Valid from:
2/4/2014 4:00:00 PM

Valid to:
2/5/2015 3:59:59 PM

Subject:
CN=PINWID LTD, O=PINWID LTD, STREET=14 Shenkar Arie, L=HERZLIYA, S=NA, PostalCode=46733, C=IL

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00d9ac9fc9a1b1e8fd63013e3cce7b0578

Scanner detections:
Detections  (98% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.PINWID.G, PUP.PINWID.p, PUP.PINWID.y, PUP.ResignedInterop.PINWID.O, PUP.PINWID.E, PUP.PINWID.b, PUP.PINWID.O, PUP.ResignedInterop.PINWID.N, PUP.PINWID.BB, PUP.PINWID.P, PUP.PINWID.K, PUP.PINWID.T, PUP.PINWID.F, PUP.PINWID.DD, PUP.PINWID.H, PUP.PINWID.V, PUP.PINWID.EE, PUP.PINWID.L, PUP.Installer.PINWID.C
100.00%

AVG
MalSign.Pindi
94.00%

VIPRE Antivirus
Threat.4783962, Adware.Linkury
58.00%

G Data
Win32.Application.Linkury, Adware.Linkury
30.00%

IKARUS anti.virus
AdWare.Linkury, PUA.Toolbar.Linkury
28.00%

Trend Micro House Call
Suspicious_GEN.F47V0703, Suspicious_GEN.F47V0704, Suspicious_GEN.F47V0912
18.00%

ESET NOD32
MSIL/Toolbar.Linkury (variant), Win32/Toolbar.Linkury (variant)
14.00%

K7 Gateway Antivirus
Unwanted-Program , Adware
12.00%

K7 AntiVirus
Unwanted-Program , Adware
12.00%

Antiy Labs AVL
Trojan/Win32.TSGeneric
10.00%

2 / 68      (Adware)
chrome.exe (Protectium by PinWid)  (660e8b0a3ccd86995352410d6095f2f0)

2 / 68      (Adware)
protectium.exe  (af60d9099288b19cd1f668eac484eab0)

9 / 68      (Adware)
smartbarfirefoxremoteplugin_27.dll  (fb3e38ddde90d5023689c5d3751a198a)

10 / 68    (Adware)
smartbarfirefoxremoteplugin_26.dll  (82ac8119edf05ff7627a57afba7aed7f)

9 / 68      (Adware)
smartbarfirefoxremoteplugin_25.dll  (7c844913c53f0ee4a168db1e90e412e1)

10 / 68    (Adware)
smartbarfirefoxremoteplugin_24.dll  (ba484b939d8c207e7b91c371d3fa566a)

8 / 68      (Adware)
smartbarfirefoxremoteplugin_23.dll  (eecbc640235ddeb808930974639ba5be)

8 / 68      (Adware)
smartbarfirefoxremoteplugin_22.dll  (9954ff1c5f6df61e1be7a65c991406e1)

1 / 68      (Adware)
pm.exe (Linkury.Installer.MsiWrapper)  (ae34547ae7b37209f40d4522ef83dd45)

16 / 68    (Adware)
msia7f5.tmp (.Installer.CustomActions)  (37b3f29343c1b840c4ec0df1ff8e4768)

2 / 68      (Adware)
FiddlerCore.dll (FiddlerCore by Telerik)  (94f4a9bceba83a5f8463f6a6b40bbcf5)

2 / 68      (Adware)

2 / 68      (Adware)

3 / 68      (Adware)
Smartbar.Common.dll (Smartbar.Common)  (32ff3d77ac28921b48b6e46cae1ce675)

5 / 68      (Adware)
srus.dll (srus)  (aec090fbe54c151117773b291386b2ce)

4 / 68      (Adware)
sruhs.dll (sruhs)  (d887604bfbc235e806189b258035ec92)

2 / 68      (Adware)
srsl.dll (srsl)  (914f21641640d18afa9e8411ed821a5b)

4 / 68      (Adware)
srsbsau.dll (srsbsau by Smartbar)  (e2330db754f2517a9309257f6e31861f)

3 / 68      (Adware)
srpu.dll (srpu)  (0887d943cecafd8b22b2d87fbee49f71)

4 / 68      (Adware)
srgu.dll (srgu)  (4ddd600145ad027dfb1d58c9a055ffd3)

3 / 68      (Adware)
srbhu.dll (srbhu)  (0c6f8eb725f1472bbf120fa743e50e02)

2 / 68      (Adware)
spsm.dll (spsm by Microsoft)  (1b076fe4e128e5019a3fd35e959df95d)

4 / 68      (Adware)

4 / 68      (Adware)
Smartbar.Resources.SocialNetsSharer.XmlSerializers.dll  (1b6ca865f93f69a0620a97bfdcb4746e)

4 / 68      (Adware)
NDde.dll (NDde by Brian Gideon)  (e870d65ee9cc9871c47fe33faa66a3e6)

5 / 68      (Adware)
lrcnt.dll (lrcnt)  (ae9c8ee27ed791e629fd73c60aaa0b2d)

10 / 68    (Adware)
SmartbarVersionsHelper.exe (SmartbarVersionsHelper)  (1f60364f7ab8b28e04227925427ddbe1)

4 / 68      (Adware)

5 / 68      (Adware)
Lrcnta.exe (Lrcnta)  (16fae7be8ebb3d065ba97d75f53e9761)

4 / 68      (Adware)
chromehost.exe (ChromeHost)  (9c9de62fbe89fb94dece949c209ee55e)

 
Latest 30 of 548 files

The following certificate is also signed by PINWID LTD.

009956EF23AED48987569DC3E7434BBB19  (Aug 13, 2014 to Aug 13, 2015)

The following publishers (by Authenticode signature organization name) are related.

Detection Incidence by Country
* Note, the details and description above are based on the code signing digital signature issued to PINWID LTD by COMODO CA Limited on February 04, 2014 with the serial number '00d9ac9fc9a1b1e8fd63013e3cce7b0578'.