Reddoor media group co.,Ltd

Publisher Information

Reddoor media group co.,Ltd is a software developer located in Taipei, Taiwan*. The company is a primary distributor of unwanted software.
Remove Reddoor media group co.,Ltd Malware - Powered by Reason Core Security
Authority:
VeriSign, Inc.

Valid from:
6/12/2013 8:00:00 AM

Valid to:
6/13/2014 7:59:59 AM

Subject:
CN="Reddoor media group co.,Ltd", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Reddoor media group co.,Ltd", L=Taipei, S=Taipei, C=TW

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
07044f2cdd35722b453856e51abefe92

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.ReddoormediagroupcoLtd.O, PUP.Crossrider.ReddoormediagroupcoLtd.R, PUP.Crossrider.BHO.S, PUP.Crossrider.ReddoormediagroupcoLtd.Z, PUP.Crossrider.ReddoormediagroupcoLtd.BB, PUP.Crossrider.ReddoormediagroupcoLtd.U, PUP.ReddoormediagroupcoLtd.V
100.00%

VIPRE Antivirus
Crossrider, Threat.4789396
77.78%

Malwarebytes
PUP.Optional.AdLyrics, PUP.Optional.PlusHD.A, PUP.Optional.FreeHDSportTV.A, PUP.Optional.HDvidCodec.A, PUP.Optional.CrossRider
44.44%

Trend Micro House Call
TROJ_GE.F3B93B38, TROJ_GEN.R0C1H07JO13, TROJ_GEN.F47V0702, TROJ_GEN.F47V0726, TROJ_GEN.R0C1H05JL13, TROJ_GEN.F47V0406, TROJ_GEN.F47V1113
44.44%

McAfee Web Gateway
Artemis!2B105B20ABB8, Artemis!2162966379BC, Artemis!09E1271B51C6, Artemis!1EFC1A91DC2A, Artemis!2F343D4CD8C2, Artemis!A4AA7F78B9B6
44.44%

ESET NOD32
Win32/Packed.ScrambleWrapper (variant), Win32/Toolbar.CrossRider (variant), Win64/Toolbar.Crossrider (variant)
44.44%

herdProtect (fuzzy)
a variant of f2bcf8654217100bbbdd95946de2130f1b8e93b1, a variant of fd65cfe78f044bf8d29b5b1a0940a968d9841233, a variant of c8f97f5b218322b6aa219662c941a3c878726990, a variant of 6ab94def9d392431283906e7efbf0c205821fd05, a variant of 30dc51631b7e52c00b4fad42051f893d7d863154, a variant of e4b225bfdbf1d7eb0fe7f497d47d07f76dced8bb, a variant of 87e1b4153d7d8157615852b550191526bfcd976a
44.44%

McAfee
Artemis!2B105B20ABB8, Artemis!2162966379BC, Artemis!09E1271B51C6, Artemis!1EFC1A91DC2A, Artemis!2F343D4CD8C2, Artemis!A4AA7F78B9B6
38.89%

Dr.Web
Trojan.Crossrider.6, Trojan.Crossrider.7, Trojan.Crossrider.1
38.89%

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud), Win32.Troj.Lyckriks.cw.(kcloud)
33.33%

10 / 68    (Adware)
pingle savebar-buttonutil64.dll  (4b68b316258b14cf746531c25cb3082d)

8 / 68      (Adware)
pingle savebar-buttonutil.dll  (2580ffab253ff061e0d50167619c4c04)

8 / 68      (Adware)
pingle savebar-helper.exe  (12a8dcc3ce69e4a220377f98afd754f3)

8 / 68      (Adware)

3 / 68      (Adware)

7 / 68      (Adware)
pingle savebar-buttonutil.exe (Pingle SaveBar by Reddoor)  (2280197861858c6b09f61455379ab394)

10 / 68    (Adware)
pingle savebar-bho64.dll (Pingle SaveBar by Reddoor)  (dde3aecacde72a0c41b6792242ac3e96)

1 / 68      (Adware)
pingle savebar-buttonutil64.dll  (ec835a8102f0080136ee916d577cad7e)

2 / 68      (Adware)
pingle savebar-buttonutil.dll  (a8e763b96c35d8c8033baf8d5ea6b0a7)

23 / 68    (Adware)
pingle savebar-helper.exe  (3c9e66fc919a2b72cd1b2bfd5813d791)

4 / 68      (Adware)

19 / 68    (Adware)

13 / 68    (Adware)
pingle savebar-buttonutil.exe (Pingle SaveBar by Reddoor)  (b8c82a1b847d67296a802724ddf4822c)

19 / 68    (Adware)
pingle savebar-bg.exe (Pingle SaveBar by Reddoor)  (5863aa4b76db9bca4814f04580a1a41d)

2 / 68      (Adware)
pingle savebar-bho.dll (Pingle SaveBar by Reddoor)  (6758b4313720283959091d20c9163cb4)

28 / 68    (Adware)
pingle savebar-bho.dll (Pingle SaveBar by Reddoor)  (a9623fddb4093f83b30021f96668ae82)

8 / 68      (Adware)
pingle savebar-bg.exe (Pingle SaveBar by Reddoor)  (bbc697e4a0e956e5268e05248c23aa3f)

6 / 68      (Adware)
pingle-savebar.exe (Pingle SaveBar by Reddoor)  (2b105b20abb8d53ee38798804fe9aad5)

The following publishers (by Authenticode signature organization name) are related.

Remove Reddoor media group co.,Ltd Malware - Powered by Reason Core Security
* Note, the details and description above are based on the code signing digital signature issued to Reddoor media group co.,Ltd by VeriSign, Inc. on June 12, 2013 with the serial number '07044f2cdd35722b453856e51abefe92'.