home

South Star Financial Co Limited

Publisher Information

South Star Financial Co Limited is a software developer located in Belize City, Belize in BZ*. There is one additional code signing certificate issued to this publisher.
Authority:
Thawte, Inc.

Valid from:
11/26/2012 1:00:00 AM

Valid to:
2/1/2014 12:59:59 AM

Subject:
CN=South Star Financial Co Limited, O=South Star Financial Co Limited, L=Belize City, S=Belize, C=BZ

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
52f8ec3e72e1ef69ffefe57e1a54df45

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.SouthStarFinancialCoLimited.P, PUP.SouthStarFinancialCoLimited.H, PUP.SouthStarFinancialCo.Installer (M), PUP (M)
100.00%

ESET NOD32
Win32/Toolbar.BitCocktail (variant)
60.00%

Sophos
BitCocktail
50.00%

K7 AntiVirus
Unwanted-Program , Trojan
40.00%

NANO AntiVirus
Trojan.Win32.Ramnit.cqrxvz, Riskware.Win32.SysTreak.dhtlrh
40.00%

Trend Micro House Call
TROJ_GEN.F47V1209, TROJ_GEN.F47V1128, TROJ_GEN.F47V1024, TROJ_GEN.F47V1120
40.00%

McAfee
Artemis!59A75395714D, Artemis!B9DBC29A3607
20.00%

Malwarebytes
PUP.Optional.VbatesHelper.A
10.00%

Bkav FE
W32.Clod057.Trojan
10.00%

ESET NOD32
Win32/Toolbar.Perion.J potentially unwanted application
10.00%

1 / 68      (Adware)
setup__563.exe (by Southstarco)  (80cf6e29415bf126203d7ed08c5cedb1)

1 / 68      (Adware)
extensionupdate.exe (by Southstarco)  (0ab66673a6e91dc7760e603290e883fd)

5 / 68      (Adware)
extensionupdate.exe (by Southstarco)  (1bf9221102be77681d9c803e1abb7ed8)

1 / 68      (Adware)
extensionupdate.exe (by Southstarco)  (33f223665bef0860ecdae96dbf50343a)

2 / 68      (Adware)
extensionupdate.exe (by Southstarco)  (332d2d66bdef783692bf133e397ca5f4)

3 / 68      (Adware)
extensionupdate.exe (by Southstarco)  (6d43da8558d0abd62a54c7c8985b4cd9)

8 / 68      (Adware)
extensionupdate.exe (by Southstarco)  (b9dbc29a36076c232a5b69b3b2e54d87)

4 / 68      (Adware)
v-bates.exe (by Southstarco)  (461226cdae3c6b198192b9aee30d3c05)

7 / 68      (Adware)
v-bates.exe (by Southstarco)  (59a75395714d9eb20c747806185e1368)

8 / 68      (Adware)
extensionupdate.exe (by Southstarco)  (3a8e2369d7ad6582a92bb048d1b1b53d)

Downloads URLs for files signed by South Star Financial Co Limited.

7 / 68      (Adware)
http://cdninst.com/offers/.../v-bates.exe  (59a75395714d9eb20c747806185e1368)

4 / 68      (Adware)
http://vzbucket.appscion.com/.../v-bates.exe  (461226cdae3c6b198192b9aee30d3c05)

8 / 68      (Adware)
http://cdninst.com/offers/.../v-bates.exe  (3a8e2369d7ad6582a92bb048d1b1b53d)

The following websites host and distribute files published by South Star Financial Co Limited.

vzbucket.appscion.com

cdninst.com

The following certificate is also signed by South Star Financial Co Limited.

282440A02852AD67749E9D6A83BC0812  (Jan 31, 2012 to Jan 31, 2013)

The following publishers (by Authenticode signature organization name) are related.

Banyan Tree Technology Limited

Boxore OU

Skytouch Technology Co., Limited

Visual Tools

NOSIBAY

Beijing AmazGame Age Internet Technology Co., Ltd.

Kimahri Software inc.

Onekit Internet S,L

Safe Download Limited

SIEN S.A.

Denco Limited

ReSoft LTD.

TUTO4PC COM INTERNATIONAL SL

DealPly Technologies Ltd

Denco Limited

Linksicle

Crawler, LLC

fassurun

ALLMYAPPS

Xaven

Buzzdock LLC

JDI BACKUP LIMITED

PriceGong Software Ltd

Aedge Performance BCN, S.L.U.

One Installer LLC

Conduit Ltd.

Smart Apps

Woolik technologies ltd

Wajamu

Wajam

30 of 32 publishers

* Note, the details and description above are based on the code signing digital signature issued to South Star Financial Co Limited by Thawte, Inc. on November 26, 2012 with the serial number '52f8ec3e72e1ef69ffefe57e1a54df45'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.