rss reader-bho.dll

Log-Tech Communications LTD

This web browser extension uses the Crossrider toolbar creation and distribution platform. The module rss reader-bho.dll by Log-Tech Communications has been detected as adware by 28 anti-malware scanners. It is installed within the context of Internet Explore as a BHO (Browser Helper Object) under the name ‘CrossriderApp0010595’. This file is typically installed with the program Rss Reader. This is the Browser Helper Object (BHO) for the Crossrider web browser platform for Internet Explorer. Instead of utilizing a traditional IE Toolbar, it installs a BHO in the browser in order to manage the functionality of the addon.
Publisher:
Rss Reader  (signed by Log-Tech Communications LTD)

Product:
Rss Reader

Description:
Rss Reader BHO

Version:
1.1.153.23

MD5:
80333570720e605bd872fae28bb43e38

SHA-1:
dfe7ee55d8f69351142fbde1cac70c2a8c3a8ae6

SHA-256:
cef5dfeceb9db08110607b37dd86c291bec52e736ea480239bbd13e8417d3fb9

Scanner detections:
28 / 68

Status:
Adware

Explanation:
The software may change the browser's home page and search provider settings as well as display advertisements.

Note:
Crossrider is the owner of a platform that enables the creation of cross-browser extensions by developers but is not the owner of this detected application. The owner/publisher of this file is Log-Tech Communications LTD.

Analysis date:
11/23/2024 10:37:16 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Adware.Generic.611579
931

Avira AntiVirus
Adware/CrossRid.qona
7.11.144.160

AVG
Generic5
2015.0.3497

Baidu Antivirus
Adware.Win32.Lyckriks
4.0.3.14718

Bitdefender
Adware.Generic.611579
1.0.20.995

Bkav FE
W32.Clodd68.Trojan
1.3.0.4613

Comodo Security
ApplicUnwnt
17306

Dr.Web
Trojan.Crossrider.7
9.0.1.0111

Emsisoft Anti-Malware
Adware.Generic.611579
8.14.07.18.12

ESET NOD32
Win32/Toolbar.CrossRider (variant)
8.9151

Fortinet FortiGate
Adware/Lyckriks
7/18/2014

F-Secure
Adware.Generic.611579
11.2014-18-07_6

G Data
Adware.Generic.611579
14.7.22

herdProtect (fuzzy)
2014.7.18.12

IKARUS anti.virus
not-a-virus:AdWare.Win32.Lyckriks
t3scan.2.2.29

K7 AntiVirus
Riskware
13.174.10455

Kaspersky
not-a-virus:AdWare.Win32.Lyckriks
14.0.0.3542

Malwarebytes
PUP.Optional.WeDownload.A
v2014.07.18.12

McAfee
Adware-AddLyrics
5600.7153

MicroWorld eScan
Adware.Generic.611579
15.0.0.597

NANO AntiVirus
Riskware.Win32.Lyckriks.cqrozn
0.28.0.59492

Panda Antivirus
Suspicious file
14.07.18.12

Reason Heuristics
PUP.Crossrider.BHO.O
14.5.19.1

Sophos
Generic PUA GA
4.95

Trend Micro House Call
TROJ_GEN.R0C1H07JO13
7.2.199

Trend Micro
TROJ_GEN.R0CBC0EKI13
10.465.18

Vba32 AntiVirus
AdWare.Lyckriks
3.12.24.3

VIPRE Antivirus
Crossrider
24196

File size:
590 KB (604,176 bytes)

Product version:
1.1.153.23

Copyright:
Copyright 2011

Original file name:
Rss Reader.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\rss reader\rss reader-bho.dll

Digital Signature
Authority:
COMODO CA Limited

Valid from:
8/1/2013 3:00:00 AM

Valid to:
8/2/2015 2:59:59 AM

Subject:
CN=Log-Tech Communications LTD, OU=my-centrals.com, O=Log-Tech Communications LTD, POBox=50412, STREET=Hamered 29, L=Tel Aviv, S=Ha-Merkaz, PostalCode=50412, C=IL

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
06160AFA468E63FA151CF62BC4D36BEF

File PE Metadata
Compilation timestamp:
8/12/2013 12:44:08 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
12288:z1SkF27hRMjXzOTPNMs5KbIioB/6c3Y1UozaY1FEGTXL3nHdPlan:z1Sq27hKjXzOTh5KbIioB/6c3Y1U1Y1P

Entry address:
0x4836D

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, AC, B1, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, 8B, FF, 55, 8B, EC, 8B, 45, 08, 85, C0, 74, 12, 83, E8, 08, 81, 38, DD, DD, 00, 00, 75, 07, 50, E8, 99, AF, FF, FF, 59, 5D, C3, 8B, FF, 55, 8B, EC, 83, EC, 10, A1, F8, 4B, 08, 10, 33, C5, 89, 45, FC, 8B, 55, 18, 53, 33, DB, 56, 57, 3B, D3, 7E, 1F, 8B, 45, 14, 8B, CA, 49, 38, 18, 74, 08, 40, 3B, CB, 75, F6, 83, C9, FF, 8B, C2, 2B, C1, 48, 3B, C2, 7D, 01, 40, 89, 45, 18...
 
[+]

Code size:
402 KB (411,648 bytes)

Internet Explorer BHO
Display name:
CrossriderApp0010595

CLSID:
{11111111-1111-1111-1111-110111051195}

CLSID name:
Rss Reader


The file rss reader-bho.dll has been discovered within the following program.

Rss Reader  by Rss Reader
About 4% of users remove it
 
Powered by Should I Remove It?

Remove rss reader-bho.dll - Powered by Reason Core Security