home

trustedadssvc.exe

PrivDog Browser Extension

Adtrustmedia, LLC

The application trustedadssvc.exe by Adtrustmedia has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
AdTrustMedia  (signed by Adtrustmedia, LLC)

Product:
PrivDog Browser Extension

Description:
PrivDog Service

Version:
1.7.0.12

MD5:
23385880561fecb7a1c640ad1636cd41

SHA-1:
cbcbafa7c0718ef04eed26a84630047ce18b8b43

SHA-256:
2e44b0b90603481fd669416d19123ab88a3b102dc32124fdeb40f3d5f8af8ce5

Scanner detections:
1 / 68

Status:
Potentially unwanted

Explanation:
Displays advertising 'Trusted Advertisements' in the user's web browser in pages that normally would not show ads. Ads from AdTrustMedia are indicated by "AT-M Ad" displayed on the bottom right of the advertisement.

Analysis date:
5/10/2024 7:23:46 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Adtrustmedia.N
14.2.22.6

File size:
582.2 KB (596,136 bytes)

Product version:
1.7.0.12

Copyright:
Copyright © AdTrustMedia 2012-2013. All rights reserved.

Original file name:
trustedadssvc.exe

File type:
Executable application (Win64 EXE)

Language:
English (United States)

Common path:
C:\Program Files\adtrustmedia\privdog\1.7.0.12\trustedadssvc.exe

Digital Signature
Signed by:
Adtrustmedia, LLC

Authority:
COMODO CA Limited

Valid from:
11/11/2012 6:00:00 PM

Valid to:
11/12/2013 5:59:59 PM

Subject:
CN="Adtrustmedia, LLC", O="Adtrustmedia, LLC", STREET="41 Watchung Plaza #330", L=Montclair, S=New Jersey, PostalCode=07042, C=US

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
7739F0D7E1D6C302E4AA8B647D9C7F52

File PE Metadata
Compilation timestamp:
10/21/2013 9:09:52 AM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
6144:pIRHd7/fyNpQ6aWVhpYvWxm7E2Qr7kgmGDtcRzm+eVd1KW7TBdUBpOh8jS38xRR9:aZpT6djxt2QrGGAyVr7THUBJbDD

Entry address:
0x48E5C

Entry point:
48, 83, EC, 28, E8, 5F, 04, 00, 00, 48, 83, C4, 28, E9, 26, FD, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, 66, 66, 0F, 1F, 84, 00, 00, 00, 00, 00, 48, 3B, 0D, A9, 51, 02, 00, 75, 11, 48, C1, C1, 10, 66, F7, C1, FF, FF, 75, 02, F3, C3, 48, C1, C9, 10, E9, D9, 04, 00, 00, CC, FF, 25, B2, 95, 00, 00, CC, CC, 48, 89, 5C, 24, 10, 44, 89, 44, 24, 18, 48, 89, 4C, 24, 08, 56, 57, 41, 54, 48, 83, EC, 40, 49, 8B, F1, 41, 8B, F8, 4C, 8B, E2, 48, 8B, D9, FF, CF, 89, 7C, 24, 70, 78, 0F, 49, 2B, DC, 48, 89, 5C, 24, 60, 48...
 
[+]

Entropy:
5.9057

Code size:
323.5 KB (331,264 bytes)

Remove trustedadssvc.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.