rss reader-bho.dll

Log tech communications LTD

This web browser extension uses the Crossrider toolbar creation and distribution platform. The module rss reader-bho.dll by Log tech communications has been detected as adware by 32 anti-malware scanners. It is installed within the context of Internet Explore as a BHO (Browser Helper Object) under the name ‘CrossriderApp0010595’. This file is typically installed with the program Rss Reader. According to Microsoft Security Essentials, this AddLyrics variant installs itself as a Chrome extension, an Internet Explorer add-on, and a Firefox plug-in and displays advertisements in the browser, and also display the lyrics to songs viewed on YouTube.
Publisher:
Rss Reader  (signed by Log tech communications LTD)

Product:
Rss Reader

Description:
Rss Reader BHO

Version:
1.1.153.19

MD5:
90b6b19efd01d4edbb0b4ce182b97f2e

SHA-1:
fed4f5d6ec8c04f3f48b7b8e59fa20cc04d4b029

SHA-256:
ba9894e62d3e86e74737a2f398c0f811da181abb510a516962c6354365eb36b0

Scanner detections:
32 / 68

Status:
Adware

Explanation:
The software may change the browser's home page and search provider settings as well as display advertisements.

Analysis date:
11/23/2024 7:53:54 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Gen:Adware.Plush.1
872

AhnLab V3 Security
Adware/Win32.Lyckriks
2013.11.12

Avira AntiVirus
ADWARE/Adware.A.2400
7.11.120.238

AVG
Generic5
2015.0.3350

Baidu Antivirus
Trojan.Win32.Toolbar
4.0.3.14915

Bitdefender
Gen:Adware.Plush.1
1.0.20.1290

Bkav FE
W32.Clodd68.Trojan
1.3.0.4415

Comodo Security
ApplicUnwnt
17253

Dr.Web
Trojan.Crossrider.1
9.0.1.0258

Emsisoft Anti-Malware
Gen:Adware.Plush
8.14.09.15.12

ESET NOD32
Win32/Toolbar.CrossRider (variant)
8.9065

Fortinet FortiGate
Adware/Lyckriks
9/15/2014

F-Secure
Gen:Adware.Plush.1
11.2014-15-09_2

G Data
Gen:Adware.Plush
14.9.24

IKARUS anti.virus
AdWare.PlusHD
t3scan.1.6.1.0

K7 AntiVirus
Unwanted-Program
13.176.11907

Kaspersky
not-a-virus:AdWare.Win32.Lyckriks
14.0.0.3247

Malwarebytes
PUP.Optional.PlusHD.A
v2014.09.15.12

McAfee
Artemis!67061E2E081E
5600.7006

Microsoft Security Essentials
1.163.1557.3

MicroWorld eScan
Gen:Adware.Plush.1
15.0.0.774

NANO AntiVirus
Riskware.Win32.Lyckriks.cqrozn
0.28.0.57029

nProtect
Trojan-Clicker/W32.Lyckriks.594280
14.04.28.01

Panda Antivirus
PUP/PlusHD
14.09.15.12

Qihoo 360 Security
Win32/Virus.Adware.81c
1.0.0.1015

Quick Heal
AdWare.Lyckriks.lw (Not a Virus)
9.14.14.00

Reason Heuristics
PUP.Crossrider.BHO.O
14.9.15.16

Sophos
Generic PUA HJ
4.98

Trend Micro House Call
TROJ_GEN.R092H07JV13
7.2.258

Trend Micro
TROJ_GEN.R0CBC0DJQ13
10.465.15

Vba32 AntiVirus
AdWare.Lyckriks
3.12.24.3

VIPRE Antivirus
Crossrider
23512

File size:
727 KB (744,472 bytes)

Product version:
1.1.153.19

Copyright:
Copyright 2011

Original file name:
Rss Reader.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\rss reader\rss reader-bho.dll

Digital Signature
Authority:
COMODO CA Limited

Valid from:
12/30/2012 9:00:00 PM

Valid to:
12/31/2013 8:59:59 PM

Subject:
CN=Log tech communications LTD, OU=my-centrals.com, O=Log tech communications LTD, POBox=50412, STREET=29 Hamered st, L=Tel-Aviv, S=Outside United States, PostalCode=68125, C=IL

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
0C69FCFCB80FDD4B184F5A443312B967

File PE Metadata
Compilation timestamp:
4/29/2013 9:36:03 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
12288:QKRbkxRcnp7Lx4fntyvePSgOrvsu++/Lq1gWdmVfKTBlhi4BG1zNyZ:1RbkxA7Lx4fntyvEOxHL0gkm4TBlIzNS

Entry address:
0x4A8AD

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, AC, B1, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, 8B, FF, 55, 8B, EC, 8B, 45, 08, 85, C0, 74, 12, 83, E8, 08, 81, 38, DD, DD, 00, 00, 75, 07, 50, E8, DB, B4, FF, FF, 59, 5D, C3, 8B, FF, 55, 8B, EC, 83, EC, 10, A1, E0, 4D, 0A, 10, 33, C5, 89, 45, FC, 8B, 55, 18, 53, 33, DB, 56, 57, 3B, D3, 7E, 1F, 8B, 45, 14, 8B, CA, 49, 38, 18, 74, 08, 40, 3B, CB, 75, F6, 83, C9, FF, 8B, C2, 2B, C1, 48, 3B, C2, 7D, 01, 40, 89, 45, 18...
 
[+]

Code size:
515 KB (527,360 bytes)

Internet Explorer BHO
Display name:
CrossriderApp0010595

CLSID:
{11111111-1111-1111-1111-110111051195}

CLSID name:
Rss Reader


The file rss reader-bho.dll has been discovered within the following program.

Rss Reader  by Rss Reader
About 4% of users remove it
 
Powered by Should I Remove It?

Remove rss reader-bho.dll - Powered by Reason Core Security