Refog Inc.

Publisher Information

Refog Inc. is a software publisher located in Alexandria, Virginia in the United States*. The publisher primarily developes software that can be classified as adware. Thre are 2 additional code signing certificates issued to this publisher.
Remove Refog Inc. Malware - Powered by Reason Core Security
Authority:
VeriSign, Inc.

Valid from:
2/6/2010 1:00:00 AM

Valid to:
2/7/2012 12:59:59 AM

Subject:
CN=Refog Inc., OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Refog Inc., L=Alexandria, S=Virginia, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
2c65f10795394990a2209ce7972cfbac

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Refog, PUP.Installer.Refog, PUP.Refog.Installer (M), PUP.Refog (M)
100.00%

VIPRE Antivirus
Refog Inc., KGB Keylogger
61.36%

McAfee
Keylog-Refog, Artemis!29FF8524F8D2
52.27%

Microsoft Security Essentials
MonitoringTool:Win32/KGBKeylogger, MonitoringTool:Win64/KGBKeylogger, MonitoringTool:Win32/Mipko, MonitoringTool:Win32/RefogKeylogger
50.00%

McAfee Web Gateway
Keylog-Refog, Artemis!29FF8524F8D2
47.73%

ESET NOD32
Win32/Monitor.MIPKOEmployeeMonitor.AA (variant), Win32/KeyLogger.Refog (variant), Win32/KeyLogger.Refog.615, Win64/Monitor.MIPKOEmployeeMonitor.AD, Win32/Agent.DSGBADH (variant)
47.73%

IKARUS anti.virus
MonitoringTool, not-a-virus:Monitor.Win32.KGBSpy, APPL, not-a-virus:Monitor.KGBKeylogger
45.45%

avast!
Win32:KeyLogger-ARU [PUP], Win32:Refog-A [PUP], Win32:PUP-gen [PUP], Win32:KeyLogger-AQR, Win32:KeyLogger-AQR [PUP]
45.45%

Avira AntiVirus
SPR/Tool.KGBKeylogger.112, SPR/MIPKOEmployeeMonitor.AC.7, SPR/KGBKeylogger.B, SPR/Tool.KGBKeylogger.46, SPR/KeyLogger.CO
36.36%

Clam AntiVirus
PUA.Packed.ASPack, Trojan.KGBKeylog-2, Trojan.KGBKeylog-1, Trojan.KGBKeylog-4, Trojan.Kgbkeylog-5
34.09%

1 / 68      (PUP)
refog keylogger.exe (Keylogger by Refog)  (571cb62d252ac4df1771a71a9f2109dc)

1 / 68      (PUP)
mpk.exe  (354ac0a97e6a741064d672f130fa9e98)

1 / 68      (PUP)
mpkview.exe  (bef51b80944ffe9a011b2dbb9beeff06)

1 / 68      (PUP)
mpk.exe  (a7d4cc29a10ca1bc852c9ae078451b0c)

1 / 68      (PUP)
mpk.exe  (be12a89aa149fa78416826528e40e3d7)

1 / 68      (PUP)
mpk.dll  (67dc6a9e2eed28aade0d55fcb2afab7c)

1 / 68      (PUP)
kgb-spy-4.11.exe (REFOG Personal Monitor by REFOG)  (516c452471f39e341bfda6137c6bc4f0)

1 / 68      (PUP)
kgb-spy-4.11.tmp  (5b5c2e048dfe3262830f9a737552fea9)

1 / 68      (PUP)
mpk64.dll  (023ab5130116100b8df9a4d2e859bf24)

1 / 68      (PUP)
mpk64.exe  (a8d970b5c4cc207ce440a648f6fbf588)

1 / 68      (PUP)
mpk64.dll  (db31af32e553ec45efcecfcc08869df0)

1 / 68      (PUP)
mpk.exe  (d09d1da1bdf0c0233cf4b9a7f829e47e)

1 / 68      (PUP)
mpkview.exe  (200b5e30ac58bdf359487d04abe77f35)

1 / 68      (PUP)
mpksrv.exe  (1288b307e5c3cda8666c91f6bfc77c9e)

1 / 68      (PUP)

1 / 68      (PUP)

2 / 68      (PUP)
refog_setup_kl_611.exe (REFOG Keylogger by Refog)  (76d8e9a17d9b5c9ee404b08285f31ad7)

6 / 68      (PUP)
mpkview.exe  (bb0a27b8814d05b740d07faf5b1371b1)

21 / 68    (PUP)
refog_setup_pm_703.exe (Personal Monitor by Refog)  (39f0a0e8187b329ac4b2cc1b4bc6bb9f)

18 / 68    (PUP)
mpk.exe  (3ac4bdf2f5d5b09f38703785c3a8dc80)

17 / 68    (PUP)
mpk.dll  (29ff8524f8d2ff4da4124586e1dcbdbd)

18 / 68    (PUP)
mpk.exe  (1c1602422881ffb86196aa57d2199ce4)

10 / 68    (PUP)
mpkview.exe  (f88fa9051267074153875e42eaddc4bb)

17 / 68    (PUP)
mpk.exe  (f0bbe1351ecdf1e1c599f1aa499f288d)

13 / 68    (PUP)
refog_setup_kl_643.exe (Keylogger by Refog)  (3c99fdc6833752e7d598e8cb305ed071)

21 / 68    (PUP)
8258716_setup.dat (REFOG Free Keylogger by REFOG)  (4e943ed477fbc36461fbc2db5e29db42)

14 / 68    (PUP)
mpk.exe  (069fd5f31e86d9c6d41b358f502bc7e2)

22 / 68    (PUP)
refog_setup_kl_703.exe (Keylogger by Refog)  (d30d12750fce950646243bbe2f0e1cf6)

3 / 68      (PUP)

23 / 68    (PUP)

 
Latest 30 of 44 files

The certificates below are also signed by Refog Inc..

7FF3DAF8E8B0D4A05A226B85F1054E87  (Feb 03, 2013 to Mar 05, 2016)

1FC4489003E01028139915C2D888675C  (Dec 11, 2011 to Feb 05, 2013)

Remove Refog Inc. Malware - Powered by Reason Core Security
* Note, the details and description above are based on the code signing digital signature issued to Refog Inc. by VeriSign, Inc. on February 06, 2010 with the serial number '2c65f10795394990a2209ce7972cfbac'.