home

Supersoft

Publisher Information

Supersoft is a software developer*. The company is a primary distributor of unwanted software. Thre are 2 additional code signing certificates issued to this publisher.
Authority:
Supersoft

Valid from:
9/30/2012 1:56:38 PM

Valid to:
1/1/2040 5:29:59 AM

Subject:
CN=Supersoft

Issuer:
CN=Supersoft

Serial number:
6b50254a40c7cfb14a405056b8f04272

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Supersoft.a, PUP.Supersoft.I, PUP.Supersoft.J, PUP.Supersoft.G, PUP.Supersoft.C, PUP.Supersoft (M), PUP.Supersof (M), PUP.Supersof.Installer (M), PUP (M)
100.00%

MicroWorld eScan
Trojan.GenericKD.1762473, Gen:Variant.Strictor.55699, Trojan.GenericKD.1738643, Gen:Variant.Kazy.417301, Trojan.GenericKD.1765676
10.00%

Bitdefender
Trojan.GenericKD.1762473, Gen:Variant.Strictor.55699, Trojan.GenericKD.1738643, Gen:Variant.Kazy.417301, Trojan.GenericKD.1765676
10.00%

Emsisoft Anti-Malware
Trojan.MSIL.Injector, Gen:Variant.Strictor.55699, Trojan.GenericKD.1738643, Gen:Variant.Kazy.417301, Trojan.GenericKD.1765676
10.00%

G Data
Trojan.GenericKD.1762473, Gen:Variant.Strictor.55699, Trojan.GenericKD.1738643, Gen:Variant.Kazy.417301, Trojan.GenericKD.1765676
10.00%

McAfee
RDN/Generic.dx!ddz, PWSZbot-FXD!681F358CA491, PWSZbot-FAAY!8CFDA3E111B3, PWSZbot-FXD!9ECC4740ACE9
8.00%

Malwarebytes
Trojan.Inject, Trojan.Agent.CMOGen, Spyware.Password
8.00%

Kaspersky
Trojan.MSIL.Crypt, Trojan.MSIL.Citron, HEUR:Trojan.Win32.Generic
8.00%

Lavasoft Ad-Aware
Trojan.GenericKD.1762473, Gen:Variant.Strictor.55699, Trojan.GenericKD.1738643, Trojan.GenericKD.1765676
8.00%

Sophos
Mal/Cleaman-B, Troj/Zbot-IOM, Troj/MSIL-VZ
8.00%

1 / 68      (Adware)
only working.exe (Cisco PEAP Module)  (acce5df03a6595689f7648d7922e1ea1)

1 / 68      (Adware)
mscinet.exe  (dae1aa24cadf63dcb4b15149fb8dea90)

1 / 68      (Adware)
updd.exe  (c46107216662cadb737d9879f3f2c773)

1 / 68      (Adware)
iuznffnsdlo.exe (Windows Application Verifier Automation DLL by Microsoft)  (5a037f6495c2d8acaf7d6458d51401a8)

1 / 68      (Adware)
alxu.exe  (b9fe180dd264f3e3809366e189eeb709)

1 / 68      (Adware)
msxidx.exe (Cisco PEAP Module)  (2846168fe020db3f7a9dc88878874262)

1 / 68      (Adware)
msilrmn.exe  (f166e8c80ccbd5407a02a67a063527cf)

1 / 68      (Adware)
84427 (CiscoEAPLEAP.dll by Cisco LEAP Module)  (ad26d111e2bf74f08f93e2080b842e23)

1 / 68      (Adware)
27495  (c9f75d921502ea2589d58acd8485290e)

1 / 68      (Adware)
20958  (7460c6335392f4bed4fb1fe6265ffa24)

1 / 68      (Adware)
microsoft.com (Sysinternals autoruns by Sysinternals - www.sysinternals.com)  (036896a54e867c5e47fba774e70a7694)

1 / 68      (Adware)
22ee.tmp.exe (Supersoft FAST-EAP Module by Supersoft)  (34474b64cc1566e016aafd98a62e99cb)

1 / 68      (Adware)
setup.exe  (2fbd58e6febb5bedd39fbb44c34b8349)

1 / 68      (Adware)
1skkkkkkk.exe (Supersoft FAST-EAP Module by Supersoft)  (bb191b37d1174a367eba5c0bd92a4422)

1 / 68      (Adware)
apijcajxv.exe  (1e9b8abfc79273c435bd722d5055a2c5)

1 / 68      (Adware)
odoaztybt.exe (Cisco PEAP Module)  (b5fe5f4da599c662e6ea4dcd33b6c12c)

1 / 68      (Adware)
img_000032773_372i‮gpj.scr  (4c12e6567b5643f885db9551c45a43d1)

1 / 68      (Adware)
49165 (Sysinternals autoruns by Sysinternals - www.sysinternals.com)  (ae530a3da1be79a7ea041f3c8163d667)

1 / 68      (Adware)
client.exe (Cisco PEAP Module)  (bf71549ed20d7545475a8f3b0705a55d)

1 / 68      (Adware)
trz7f2d.tmp  (698161330e38284acaf160236463bf45)

1 / 68      (Adware)
idel.exe (Product by Company)  (c8d2dba546be80b8e158ecbe102fd436)

1 / 68      (Adware)
hodae.exe (Product by Company)  (a331548813c3b1b0d6f0d30221e20da8)

1 / 68      (Adware)
unpacker.exe  (1e102c883a665641496185f62bb916f0)

1 / 68      (Adware)
newupdate23.10.03.exe (Sysinternals autoruns by Sysinternals - www.sysinternals.com)  (ddda52f8567ee165f4eae11c5b004655)

1 / 68      (Adware)
setup2.exe (Auto Installer 2014 by Ufasoft)  (3e23442101579f4c569e0cfc2b3bdaef)

1 / 68      (Adware)
setup2.exe (Auto Installer by Ufasoft)  (4ab08ebbaafb7a108ced829729e7b4cf)

1 / 68      (Adware)
pwmdgnu.exe  (38cf24a3faa63408b7105b461fcbfaec)

1 / 68      (Adware)
pj28airk4.exe  (731e447aa9d6201331fd3b85c48e8db3)

1 / 68      (Adware)
abbyv.exe (Product by Company)  (f31ad44825f6fc14b1858d3bbc4addb6)

1 / 68      (Adware)
svchost.exe (Aurora by Firefox and Mozilla Developers)  (fae313752329c9c6b11ac6d56ac94621)

 
Latest 30 of 65 files

Downloads URLs for files signed by Supersoft.

1 / 68      (Adware)
https://www.sendspace.com/pro/.../ejia4k  (setup.exe)

29 / 68    (Adware)
http://s1.directxex.com/.../n8Aem42Ip5QiVv3EHPTk1NKlQxr_2ZAK4NJQIxgknvbSch7u4qUz13i4ckZzTH0Z9jL5-zdcgLM_4FHl_rQRfIZycCXaffgh0Dqe  (po.exe)

The following websites host and distribute files published by Supersoft.

s1.directxex.com

www.sendspace.com

The certificates below are also signed by Supersoft.

27460396612D7EAA4D445ED4EF63F927  (Jul 02, 2013 to Jan 01, 2040)

5DF17E3294AE15A84BC25820234104E8  (Sep 28, 2002 to Dec 31, 2039)

The following publishers (by Authenticode signature organization name) are related.

Artur Kozak

Sergey Petrov

Shlomy Golani

Daneil Jemoch

Oleh Aleksyuk

Stanislav Kabin

Moshe Caspi

Itzhak Shternberg

Roman Malinenko

Nadav Kashtan

Kaydar LLC

Edward Kosar

* Note, the details and description above are based on the code signing digital signature issued to Supersoft by Supersoft on September 30, 2012 with the serial number '6b50254a40c7cfb14a405056b8f04272'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.