SIAD

Publisher Information

SIAD is a software publisher located in Kangnam-gu, Seoul in Korea*. A majority of the programs developed by the company can be classified as adware or other potentially unwanted programs. Thre are 3 additional code signing certificates issued to this publisher.
Remove SIAD Malware - Powered by Reason Core Security
Authority:
Thawte, Inc.

Valid from:
8/1/2012 9:00:00 AM

Valid to:
8/2/2013 8:59:59 AM

Subject:
CN=SIAD, O=SIAD, L=Kangnam-gu, S=SEOUL, C=KR

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
67ea27332727640170a0539a5745d745

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Kaspersky
not-a-virus:AdWare.Win32.Kraddare
83.33%

avast!
Win32:Malware-gen, Win32:Adware-gen [Adw], Win32:PUP-gen [PUP], NSIS:Malware-gen [Trj], Other:PUP-gen [PUP]
50.00%

Avira AntiVirus
SPR/Tool.153628, Adware/Rogue.194568, Adware/Kraddare.ht.2, TR/Spy.887344, TR/Agent.232176
50.00%

Vba32 AntiVirus
Trojan.Fosniw, suspected of Trojan.Downloader.gen.h
50.00%

IKARUS anti.virus
Win32.AdWare, not-a-virus:AdWare.Win32.Kraddare, Trojan.Win32.Spy
41.67%

AhnLab V3 Security
PUP/Win32.WindoGuide, PUP/Win32.Kwinstart, Win-PUP/Helper.Kwinstart.232176, Win-PUP/Helper.Kwinstart.232176.B
33.33%

Reason Heuristics
PUP.SIAD (M)
33.33%

VIPRE Antivirus
Kraddare, Backdoor.Win32.Ircbot.gen, Trojan.Win32.Generic
33.33%

Trend Micro House Call
ADW_KRADDARE
33.33%

Trend Micro
ADW_KRADDARE
33.33%

1 / 68      (PUP)
linkdoumi.exe (linkdoumi)  (2edafe3117e5a0b189fa8c0cfd441108)

15 / 68    (PUP)
setup_jamong_silent.exe  (b296c02f6d942d5314a65c15147ea5da)

11 / 68    (PUP)
setup_jamong_silent.exe  (ecc408f35aef9c81b11e6eaf7b448482)

9 / 68      (PUP)
setup_fineapple_silent.exe  (f3566b224c646261dd1f2fa999b576b6)

5 / 68      (PUP)
kwinstartagent.exe  (855f5308c9eafd05f0f79dfc7d7cb93b)

4 / 68      (PUP)
kwinstart.exe  (d2a06c73c28bc9c9b9a7ca9b42873c99)

15 / 68    (PUP)
kwinso_uninstall.exe  (4a74099e59a491aa69499fb5f3fd76ac)

4 / 68      (PUP)
linkdoumivb.dll  (1a2b04c3ad5bc9ffc17116200fe70e7c)

6 / 68      (PUP)
linkdoumiv.exe  (b580c994b299fc3e6b412bda0b40ffc3)

13 / 68    (PUP)
linkdoumiagentv.exe  (25039a172c2c3aba7074900475f2d5d2)

14 / 68    (PUP)
linkdoumi.exe (linkdoumi)  (cac02ec24c0c227f76e93631b144419b)

5 / 68      (PUP)
kwinstartvb.dll  (b2569ae4dd967ff6a87d2ca325346765)

The certificates below are also signed by SIAD.

746E3FB5BDC7FC48081092F38968826B  (Oct 30, 2014 to Oct 30, 2016)

3B7192356B8F6D522CB98EA56A4E5D26  (Aug 01, 2013 to Sep 01, 2014)

381CE30ED8472A4E13661E6BC55432C5  (May 30, 2011 to May 30, 2012)

Remove SIAD Malware - Powered by Reason Core Security
* Note, the details and description above are based on the code signing digital signature issued to SIAD by Thawte, Inc. on August 01, 2012 with the serial number '67ea27332727640170a0539a5745d745'.