home

POSTMEDIA Co.,Ltd

Publisher Information

POSTMEDIA Co.,Ltd is a software developer located in Nam-gu, Busan in Korea*. The company is a primary distributor of unwanted software. Thre are 4 additional code signing certificates issued to this publisher.
Authority:
Thawte, Inc.

Valid from:
10/16/2012 9:00:00 AM

Valid to:
1/16/2015 8:59:59 AM

Subject:
CN="POSTMEDIA Co.,Ltd", OU=Dev Team, O="POSTMEDIA Co.,Ltd", L=Nam-gu, S=Busan, C=KR

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
1a0f99ee00fe980dd6e95535bdc8bb31

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP (M), PUP.POSTMEDI
100.00%

1 / 68      (Adware)
powerpointviewer_setup.exe  (246e19a0376d260cf3233cf8a2afe2e2)

1 / 68      (Adware)
recuva_setup_setup.exe  (6e79233eb19d40ccdf0ab7eef58604f3)

1 / 68      (Adware)
starcodec_20120403_setup.exe  (8a8242e1e4f8cce0d73489baa5e89c5d)

1 / 68      (Adware)
total_directx_setup.exe  (c36257c7d101dbb59cb14ed8efd0f80a)

1 / 68      (Adware)
각서.exe  (84bacc00c730c314acd3499e161f13df)

1 / 68      (Adware)
cpu_z_v1_60_setup.exe  (030f93eb7af96d88f1af3b473b5adcd1)

1 / 68      (Adware)
wlsetup-web_xp.exe  (0c1719991351be62809917f607ddfffe)

1 / 68      (Adware)
7z922.exe  (fd6875f7c6df982c6e88ae42b40849fb)

1 / 68      (Adware)
smemosetup251_setup.exe  (112b196bfac9aa2006cdf95a5a4e308e)

1 / 68      (Adware)
v3lite_setup_setup.exe  (9659415bfd84d90b18476739e1322a9f)

1 / 68      (Adware)
snagit.exe  (bb7456cd14d67ef5e5c9d16990af8aec)

1 / 68      (Adware)
rodreamradio_v1.33_setup.exe  (8c2101c828d02968c2d469439ab47c48)

1 / 68      (Adware)
transaction_setup.exe  (0f42e0cea7d54f5dda8ca3e646677be0)

1 / 68      (Adware)
firefox_setup_12.0b1_k_setup.exe  (61157c6482d5a9c6dac7b2604e739336)

1 / 68      (Adware)
nero-11.0.10700_trial.exe  (85366f91602a1500936329cfa14ad0d5)

1 / 68      (Adware)
funny+photo+maker.exe  (989707a47809611372f5d6467c9a8a11)

1 / 68      (Adware)
realtek_high_definition_v2_68.exe  (08f4ef9face557dbcabc5954e12db268)

1 / 68      (Adware)
utorrent_v3.4.exe  (c32ca94520f5d39587fdf2043d0af01e)

1 / 68      (Adware)
teamviewer_7.0.12979.exe  (c9e287a1fec505bd829b836c41c50ce1)

1 / 68      (Adware)
audacity.exe  (507a3b09820b366641cbcec7c542a504)

1 / 68      (Adware)
funny voice.exe  (b0bdfca43bf10a539a8adfe6ee472a09)

1 / 68      (Adware)
미확인 880694.crdownload  (04c8270ead1942cf7248f6e2cc566c38)

1 / 68      (Adware)
미확인 141719.crdownload  (b9a8e235200cffad56a32e341a125b5b)

1 / 68      (Adware)
pci_install_5671_200706_setup.exe  (12d008d0b0d0c69509425cf0c24a6042)

1 / 68      (Adware)
flash_player_v11.2.202.233 final.exe.exe  (24dd25b955928609c75d579ce040ff2f)

1 / 68      (Adware)
unitchanger_v120c.exe  (d4c3378740777b43f9009e7656621918)

1 / 68      (Adware)
talkonbeta10_setup.exe  (8d0d55ca1bb8b1e58be305e7becd10d8)

1 / 68      (Adware)
job_setup.exe  (5928e8541924972a3003221a48d33f87)

1 / 68      (Adware)
hoffice2010trial.exe  (24bbc109eea10b4aa27564227d6441b7)

1 / 68      (Adware)
zillersong3.exe  (0e0e1f5fb656e08fd8817fe0a340ad4f)

 
Latest 30 of 272 files

Downloads URLs for files signed by POSTMEDIA Co.,Ltd.

1 / 68      (Adware)
http://utiljjang.com/.../activeDown.php?seq=29790  (utorrent_v3.4.exe)

1 / 68      (Adware)
http://www.winutil.co.kr/dn.asp?pcode=1006&seq=29765  (sandboxieinstall.exe)

The certificates below are also signed by POSTMEDIA Co.,Ltd.

50E030B821D2DAC20888E27A5A1DBE51  (Jul 28, 2016 to Oct 28, 2017)

25B4B23045FA1BA44AD535B1522163CE  (Jul 27, 2015 to Sep 25, 2016)

22B7589F7A16EDF439A478D0F3292E53  (Aug 22, 2014 to Aug 23, 2015)

33ECF497326D13379460AA0A8B831B35  (Dec 21, 2011 to Dec 21, 2012)

The following publishers (by Authenticode signature organization name) are related.

Postmedia Co.,Ltd

* Note, the details and description above are based on the code signing digital signature issued to POSTMEDIA Co.,Ltd by Thawte, Inc. on October 16, 2012 with the serial number '1a0f99ee00fe980dd6e95535bdc8bb31'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.