POSTMEDIA Co.,Ltd

Publisher Information

POSTMEDIA Co.,Ltd is a software developer located in Nam-gu, Busan in Korea*. The company is a primary distributor of unwanted software. Thre are 2 additional code signing certificates issued to this publisher.
Remove POSTMEDIA Co.,Ltd Malware - Powered by Reason Core Security
Authority:
Thawte, Inc.

Valid from:
10/16/2012 9:00:00 AM

Valid to:
1/16/2015 8:59:59 AM

Subject:
CN="POSTMEDIA Co.,Ltd", OU=Dev Team, O="POSTMEDIA Co.,Ltd", L=Nam-gu, S=Busan, C=KR

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
1a0f99ee00fe980dd6e95535bdc8bb31

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.POSTMEDIACoLtd.L, PUP.POSTMEDIACoLtd.T, PUP.Installer.POSTMEDIACoLtd.W, PUP.POSTMEDIACoLtd.U, PUP.Installer.POSTMEDIACoLtd.N, PUP.POSTMEDIA.Installer (M), PUP.POSTMEDIA (M)
100.00%

Malwarebytes
Adware.KorAd
51.35%

Dr.Web
Trojan.Adkor.45, Adware.Downware.1922
45.95%

AhnLab V3 Security
PUP/Win32.UtilTop, Win-PUP/Downloader.UtilTop.1895824
45.95%

nProtect
Adware/W32.Agent1.1124560, Adware/W32.KrAdword.1895824
40.54%

Trend Micro House Call
TROJ_GE.B688692C, TROJ_GEN.F47V0122, TROJ_GEN.F47V0402, Suspicious_GEN.F47V0412, TROJ_GEN.F47V0915, TROJ_GEN.F47V0831
40.54%

NANO AntiVirus
Trojan.Win32.Downware.cudbhg, Trojan.Win32.Generic.csnygm
40.54%

SUPERAntiSpyware
PUP.UtilTop/Variant
37.84%

VIPRE Antivirus
Trojan.Win32.Generic, Threat.4150696
37.84%

McAfee
Artemis!886D8F56BC18, Artemis!1310EAD5DC02, Artemis!6A34DA28B0CF, Artemis!FA496F3493F6, Artemis!09425C938407, Artemis!59B86BE25B89
35.14%

1 / 68      (Adware)
sajik_form.exe  (33513524dab358201d4c6e693dad2f46)

1 / 68      (Adware)
bizform.exe  (9425d7de2de24324173fa11534ca4007)

1 / 68      (Adware)
report_form.exe  (b73df4ebd6c5f0d4b4a49e2320ff0bd3)

1 / 68      (Adware)
windowsxp-kb936929-sp3-x86-kor.exe  (4dfcc497fa6fda38e2b5435f2b282399)

1 / 68      (Adware)
hoffice2010trial_setup.exe  (d8233bbb6918f2ac7a370cbd853f6016)

1 / 68      (Adware)
스피드핑.exe  (5d092a488b96ac848cc2636c9a1c9d45)

1 / 68      (Adware)
daumpotencoder_setup_.exe  (071979bc79832c2f991f76c9c703b115)

1 / 68      (Adware)
minecraft_pocket ed_ demo_setup.exe  (8092855f36278eacd7bbed36f108b410)

1 / 68      (Adware)
chromesetup_setup.exe  (e538f68a39e5913eec9d9462ebc31aee)

1 / 68      (Adware)
unlocker1.9.1_setup.exe  (eaae4d81968018ce3948011df9dadb65)

1 / 68      (Adware)
qtranslate_v3_1_1_setup.exe  (7dba44c6cb5c2791683609ab5434c9e0)

1 / 68      (Adware)
dopdf_v7.2.379_setup.exe  (8faa463d012bd5e9bff3ed309d9a38b5)

1 / 68      (Adware)
wuu.exe  (699eeeeb9ae1c751651c6e9863a73b43)

1 / 68      (Adware)
stduviewer1.6.186_setup.exe  (f5f7d53b9caf441a98725b023f35edc9)

1 / 68      (Adware)
adberdr810_ko_kr_n81.exe  (d8e10dde6213809bb9ca6c6fe7b04bcb)

1 / 68      (Adware)
이지클린.exe  (c40583f48427069288702cfa99564a32)

5 / 68      (Adware)
rcsetup1.42.544_slim_setup.exe  (1f1d937017da1a8a274b57c3e1905926)

9 / 68      (Adware)
imagerescue3_setup.exe  (59b86be25b89b3156e7379d97655c786)

5 / 68      (Adware)
_setup.exe  (81939734dc8ef5f36a7e35132b54e643)

1 / 68      (Adware)
ie10_setup.exe  (09d45e885abf619accebdde992a3350c)

6 / 68      (Adware)
wuu_utiltop.exe  (9b8be59d235fdade7c6ec0abdf443900)

14 / 68    (Adware)
install_reader10_kr_gtbd_aih.exe  (fa496f3493f651e6f58ae8b532892721)

13 / 68    (Adware)
cpu-z_1.59-setup-en_setup.exe  (fc75c70d14b133cedadb7ca56af6d70c)

14 / 68    (Adware)
cpu-z_1.59-64bits-en_setup.exe  (f604b5121f9c27fac5fcab1589c69ce8)

18 / 68    (Adware)
everestultimate_build_2253.exe  (6a34da28b0cffa578d516c65a3262e13)

16 / 68    (Adware)
safefence_setup_3_5_setup.exe  (712fd4735c72f86cc9573dc5ba396f1e)

13 / 68    (Adware)
auslogics_disk_defrag_v3_4_2_10_setup.exe  (471eb49436aeeab9beedf34b0420d191)

15 / 68    (Adware)
auslogics_disk_defrag_v3_4_2_10_setup.exe  (ed8af120e24150de8ccf71d94c1be674)

4 / 68      (Adware)
setup_oc4520e_setup.exe  (7f1872ba3a90baf3670720882cf12b66)

13 / 68    (Adware)
time card_setup.exe  (cda50e4639a3a1a568f9e88309651594)

 
Latest 30 of 37 files

Downloads URLs for files signed by POSTMEDIA Co.,Ltd.

1 / 68      (Adware)

14 / 68    (Adware)

The following websites host and distribute files published by POSTMEDIA Co.,Ltd.

The certificates below are also signed by POSTMEDIA Co.,Ltd.

25B4B23045FA1BA44AD535B1522163CE  (Jul 27, 2015 to Sep 25, 2016)

22B7589F7A16EDF439A478D0F3292E53  (Aug 22, 2014 to Aug 23, 2015)

The following publishers (by Authenticode signature organization name) are related.

Remove POSTMEDIA Co.,Ltd Malware - Powered by Reason Core Security
* Note, the details and description above are based on the code signing digital signature issued to POSTMEDIA Co.,Ltd by Thawte, Inc. on October 16, 2012 with the serial number '1a0f99ee00fe980dd6e95535bdc8bb31'.