redple

Publisher Information

redple is a software publisher located in SEOUL, Gyeonggi-Do in Korea*. Thre are 2 additional code signing certificates issued to this publisher.
Remove redple Malware - Powered by Reason Core Security
Authority:
Thawte, Inc.

Valid from:
6/9/2011 9:00:00 AM

Valid to:
7/9/2012 8:59:59 AM

Subject:
CN=redple, O=redple, L=SEOUL, S=GYEONGGI-DO, C=KR

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
5d6354ab4a1ccfb51cce9fb3da2d595c

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
Threat.Win.Reputation.IMP, PUP.redple (M)
66.67%

Trend Micro House Call
TROJ_GEN.RCBZ1JS, TROJ_GEN.F47V0723, TROJ_GEN.F47V1202
50.00%

Comodo Security
UnclassifiedMalware
50.00%

Avira AntiVirus
TR/Rogue.8024417, TR/Gendal.206016, ADWARE/Kraddare.306800
50.00%

ESET NOD32
probably unknown NewHeur_PE, Win32/Adware.Kraddare.GH (variant)
50.00%

McAfee
Artemis!3FC3CEEF959B, Artemis!F9517EA444AA
33.33%

K7 AntiVirus
Trojan, Trojan
33.33%

K7 Gateway Antivirus
Trojan, Trojan
33.33%

avast!
Win32:PUP-gen [PUP], Win32:Adware-CNB [PUP]
33.33%

Dr.Web
Trojan.PWS.Kpo.70, Trojan.Adkor.83
33.33%

8 / 68      (PUP)
multicodecup.exe (multicodec update by redple)  (f9517ea444aa5e777a3762dbc126816a)

4 / 68      (PUP)
MultiCodecopen.exe (MultiCodec by redple)  (83119d40d6e4bd8be013fab4f5525c7f)

1 / 68      (PUP)
multicodecband.dll (multicodecband.dll by REDPLE)  (53459bf5a23b849bd5ceffbcd05f15a0)

2 / 68      (PUP)
hka.dll (hka.dll by redple)  (d3409d5ba88d286d1f8d94533f1f6853)

6 / 68      (Malware)
powerpcsetup_fileget.exe (by redple)  (88e1aa6e60da0587388d04e49a36881e)

22 / 68    (PUP)
MultiDownloadInstall.exe (by redple)  (3fc3ceef959b901a126ee825dfb09c70)

Downloads URLs for files signed by redple.

22 / 68    (PUP)

The following websites host and distribute files published by redple.

The certificates below are also signed by redple.

2753DC079C467EDDB3E2DA78A3F1219C  (May 12, 2010 to Jun 12, 2011)

3337EE85FD2D60CCDC03FD2C1811AE0F  (May 06, 2009 to May 07, 2010)

Remove redple Malware - Powered by Reason Core Security
* Note, the details and description above are based on the code signing digital signature issued to redple by Thawte, Inc. on June 09, 2011 with the serial number '5d6354ab4a1ccfb51cce9fb3da2d595c'.