Rubar LLC

Publisher Information

Rubar LLC is a software developer located in Road Town, British Virgin Islands in IO*. The company is a primary distributor of unwanted software. There is one additional code signing certificate issued to this publisher.
Remove Rubar LLC Malware - Powered by Reason Core Security
Authority:
The USERTRUST Network

Valid from:
3/11/2011 6:00:00 AM

Valid to:
3/11/2012 5:59:59 AM

Subject:
CN=Rubar LLC, O=Rubar LLC, STREET=Drake Chambers, L=Road Town, S=British Virgin Islands, PostalCode=3347, C=IO

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
00ca8932396c68cd1f800624ea59dc28c6

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Rubar.L, PUP.Rubar.H, PUP.Service.Rubar.S, PUP.Toolbar.Rubar.F, PUP.Rubar.S, PUP.Rubar.J, PUP.Installer.Rubar.U, PUP.Rubar.P, PUP.Rubar.Toolbar (M), PUP.Rubar.Installer (M), PUP.Rubar (M)
100.00%

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud), VIRUS_UNKNOWN, Win32.Troj.Generic.(kcloud)
65.00%

Trend Micro House Call
TROJ_GEN.F47V0308, TROJ_GE.AB7A481A, TROJ_GEN.F47V1231, TROJ_GEN.F47V0805, TROJ_GEN.R0C1H07HU14, TROJ_GEN.RC1H1GR, TROJ_GEN.RC1H1AP, TROJ_GEN.F47V0728
60.00%

Kaspersky
not-a-virus:WebToolbar.Win32.Rubar
60.00%

Malwarebytes
PUP.RuBar
40.00%

Baidu Antivirus
Adware.Win32.Rubar
40.00%

Antiy Labs AVL
RiskWare[WebToolbar:not-a-virus]/Win32.Rubar, WebToolbar/Win32.Rubar.gen
40.00%

Dr.Web
Adware.Toolbar.225, Adware.Toolbar.249, Adware.Bho.3909, Trojan.Click2.31207
35.00%

VIPRE Antivirus
Trojan.Win32.Generic
30.00%

Avira AntiVirus
TR/Dropper.Gen
30.00%

1 / 68      (Adware)
rubarupdateservice.exe  (f0b876c415f840500072a6a5b5363dcc)

1 / 68      (Adware)
toolbar.exe  (00ca2f9f4b0df37191c8bce38f6f684f)

1 / 68      (Adware)
toolbar.exe  (ceb3d5a84bebb036b664716c2ba18a0a)

1 / 68      (Adware)
musicbar.exe  (39736369fc81fe56cecb14e7a96cbcee)

1 / 68      (Adware)
rubar.dll (Rubar toolbar by Rubar)  (5cae9bece8db821057ac423249fa28d0)

1 / 68      (Adware)
rubar.dll (Rubar toolbar by Rubar)  (df4ad4386acf83278ca7a15ee1b8c99e)

6 / 68      (Adware)
msihelper.dll (msihelpe)  (f5e117b2103d6e4a0aad9c7dae7209d1)

17 / 68    (Adware)
toolbar.exe  (c16e80ee940db955e6eb476e7a0af276)

10 / 68    (Adware)
defender_setup.exe  (6216454c94f108669d9ef8055c8c2205)

16 / 68    (Adware)
defender_setup.exe  (0510430c69bc1797a62e809d81448b6d)

16 / 68    (Adware)
77892840-sample  (31b9126fa9eaabb866b8b7e6bdaa8b66)

10 / 68    (Adware)
otherbit3-x_setup_v2.exe  (279ee2ee101aa06eb40d01b13b093838)

12 / 68    (Adware)
toolbar.exe  (d595b8ba8fb5fcb545c941aeb959cbb6)

16 / 68    (Adware)
msihelper.dll  (2531fae81e52ad5e2edebcfcec11ad05)

5 / 68      (Adware)
rubarengine.exe (Rubar Engine by Rubar.ru)  (b157c579f30e6ae344af32a7e54d4bc2)

4 / 68      (Adware)
rubarupdateservice.exe (Rubar Update Service by Rubar)  (91ebf0524636c3ae9ba05de9765a678d)

3 / 68      (Adware)
rubar.dll (Rubar toolbar by Rubar)  (95d8493bbb75ce8d4f8d4f89a3ed365f)

7 / 68      (Adware)
rubarupdateservice.exe  (f5fae82aa0ce947136ec82c1cb1b35fc)

21 / 68    (Adware)
toolbar.exe  (749e3eeee2690701b764dcdca51cea1c)

6 / 68      (Adware)
rubarengine.exe (Rubar Engine by Rubar.ru)  (b9f548dfaa13067db9dbae014108549c)

The following certificate is also signed by Rubar LLC.

00C22459F5347786485AA2DFC13115BA17  (Dec 28, 2009 to Dec 29, 2010)

Remove Rubar LLC Malware - Powered by Reason Core Security
* Note, the details and description above are based on the code signing digital signature issued to Rubar LLC by The USERTRUST Network on March 11, 2011 with the serial number '00ca8932396c68cd1f800624ea59dc28c6'.