Refog Inc.

Publisher Information

Refog Inc. is a software publisher located in Alexandria, Virginia in the United States*. The publisher primarily developes software that can be classified as adware. Thre are 2 additional code signing certificates issued to this publisher.
Authority:
VeriSign, Inc.

Valid from:
2/6/2010 1:00:00 AM

Valid to:
2/7/2012 12:59:59 AM

Subject:
CN=Refog Inc., OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Refog Inc., L=Alexandria, S=Virginia, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
2c65f10795394990a2209ce7972cfbac

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Refog, PUP.Installer.Refog, PUP.Refog.Installer (M), PUP.Refog (M)
100.00%

VIPRE Antivirus
Refog Inc., KGB Keylogger
61.36%

McAfee
Keylog-Refog, Artemis!29FF8524F8D2
52.27%

Microsoft Security Essentials
MonitoringTool:Win32/KGBKeylogger, MonitoringTool:Win64/KGBKeylogger, MonitoringTool:Win32/Mipko, MonitoringTool:Win32/RefogKeylogger
50.00%

McAfee Web Gateway
Keylog-Refog, Artemis!29FF8524F8D2
47.73%

ESET NOD32
Win32/Monitor.MIPKOEmployeeMonitor.AA (variant), Win32/KeyLogger.Refog (variant), Win32/KeyLogger.Refog.615, Win64/Monitor.MIPKOEmployeeMonitor.AD, Win32/Agent.DSGBADH (variant)
47.73%

IKARUS anti.virus
MonitoringTool, not-a-virus:Monitor.Win32.KGBSpy, APPL, not-a-virus:Monitor.KGBKeylogger
45.45%

avast!
Win32:KeyLogger-ARU [PUP], Win32:Refog-A [PUP], Win32:PUP-gen [PUP], Win32:KeyLogger-AQR, Win32:KeyLogger-AQR [PUP]
45.45%

Avira AntiVirus
SPR/Tool.KGBKeylogger.112, SPR/MIPKOEmployeeMonitor.AC.7, SPR/KGBKeylogger.B, SPR/Tool.KGBKeylogger.46, SPR/KeyLogger.CO
36.36%

Clam AntiVirus
PUA.Packed.ASPack, Trojan.KGBKeylog-2, Trojan.KGBKeylog-1, Trojan.KGBKeylog-4, Trojan.Kgbkeylog-5
34.09%

1 / 68      (PUP)
refog keylogger.exe (Keylogger by Refog)  (571cb62d252ac4df1771a71a9f2109dc)

1 / 68      (PUP)
mpk.exe  (354ac0a97e6a741064d672f130fa9e98)

1 / 68      (PUP)
mpkview.exe  (bef51b80944ffe9a011b2dbb9beeff06)

1 / 68      (PUP)
mpk.exe  (a7d4cc29a10ca1bc852c9ae078451b0c)

1 / 68      (PUP)
mpk.exe  (be12a89aa149fa78416826528e40e3d7)

1 / 68      (PUP)
mpk.dll  (67dc6a9e2eed28aade0d55fcb2afab7c)

1 / 68      (PUP)
kgb-spy-4.11.exe (REFOG Personal Monitor by REFOG)  (516c452471f39e341bfda6137c6bc4f0)

1 / 68      (PUP)
kgb-spy-4.11.tmp  (5b5c2e048dfe3262830f9a737552fea9)

1 / 68      (PUP)
mpk64.dll  (023ab5130116100b8df9a4d2e859bf24)

1 / 68      (PUP)
mpk64.exe  (a8d970b5c4cc207ce440a648f6fbf588)

1 / 68      (PUP)
mpk64.dll  (db31af32e553ec45efcecfcc08869df0)

1 / 68      (PUP)
mpk.exe  (d09d1da1bdf0c0233cf4b9a7f829e47e)

1 / 68      (PUP)
mpkview.exe  (200b5e30ac58bdf359487d04abe77f35)

1 / 68      (PUP)
mpksrv.exe  (1288b307e5c3cda8666c91f6bfc77c9e)

1 / 68      (PUP)

1 / 68      (PUP)

2 / 68      (PUP)
refog_setup_kl_611.exe (REFOG Keylogger by Refog)  (76d8e9a17d9b5c9ee404b08285f31ad7)

6 / 68      (PUP)
mpkview.exe  (bb0a27b8814d05b740d07faf5b1371b1)

21 / 68    (PUP)
refog_setup_pm_703.exe (Personal Monitor by Refog)  (39f0a0e8187b329ac4b2cc1b4bc6bb9f)

18 / 68    (PUP)
mpk.exe  (3ac4bdf2f5d5b09f38703785c3a8dc80)

17 / 68    (PUP)
mpk.dll  (29ff8524f8d2ff4da4124586e1dcbdbd)

18 / 68    (PUP)
mpk.exe  (1c1602422881ffb86196aa57d2199ce4)

10 / 68    (PUP)
mpkview.exe  (f88fa9051267074153875e42eaddc4bb)

17 / 68    (PUP)
mpk.exe  (f0bbe1351ecdf1e1c599f1aa499f288d)

13 / 68    (PUP)
refog_setup_kl_643.exe (Keylogger by Refog)  (3c99fdc6833752e7d598e8cb305ed071)

21 / 68    (PUP)
8258716_setup.dat (REFOG Free Keylogger by REFOG)  (4e943ed477fbc36461fbc2db5e29db42)

14 / 68    (PUP)
mpk.exe  (069fd5f31e86d9c6d41b358f502bc7e2)

22 / 68    (PUP)
refog_setup_kl_703.exe (Keylogger by Refog)  (d30d12750fce950646243bbe2f0e1cf6)

3 / 68      (PUP)

23 / 68    (PUP)

 
Latest 30 of 44 files

The certificates below are also signed by Refog Inc..

7FF3DAF8E8B0D4A05A226B85F1054E87  (Feb 03, 2013 to Mar 05, 2016)

1FC4489003E01028139915C2D888675C  (Dec 11, 2011 to Feb 05, 2013)

* Note, the details and description above are based on the code signing digital signature issued to Refog Inc. by VeriSign, Inc. on February 06, 2010 with the serial number '2c65f10795394990a2209ce7972cfbac'.