home

SOSVirus

Publisher Information

SOSVirus is a software publisher located in Valence, France*. Thre are 6 additional code signing certificates issued to this publisher.
Authority:
SOSVirus

Valid from:
2/23/2015 3:43:20 PM

Valid to:
2/22/2017 3:43:20 PM

Subject:
CN=g3n-h@ckm@n, OU=26, E=gen-hackman@hotmail.fr, O=SOSVirus, L=Valence, S=France, C=FR

Issuer:
CN=g3n-h@ckm@n, OU=26, E=gen-hackman@hotmail.fr, O=SOSVirus, L=Valence, S=France, C=FR

Serial number:
00c0d287

Status:
Inconclusive detections from multiple engines

Scan engine
Details
Detections

Zillya! Antivirus
Trojan.Bladabindi.Win32.43997, Trojan.Agent.Win32.554423
44.00%

Clam AntiVirus
Win.Trojan.Agent-908782
28.00%

Rising Antivirus
PE:Trojan.Win32.Injector.fw!1075357566, PE:Backdoor.Win32.Gbod.b!1075358427, PE:Backdoor.Win32.Gbod.b!1616603[F1]
28.00%

Bkav FE
W32.HfsAtITA
20.00%

Kaspersky
Trojan.Win32.Reconyc, UDS:DangerousObject.Multi.Generic, Trojan.Win32.Scar
20.00%

Trend Micro House Call
Suspicious_GEN.F47V0422, Suspicious_GEN.F47V0516, Suspicious_GEN.F47V0518, Suspicious_GEN.F47V0521
16.00%

Vba32 AntiVirus
AdWare.MSIL.DomaIQ
12.00%

Baidu Antivirus
Trojan.Win32.Reconyc
8.00%

Fortinet FortiGate
W32/Reconyc.ESCH!tr, W32/Reconyc.ERBN!tr
8.00%

Qihoo 360 Security
HEUR/QVM10.1.Malware.Gen
8.00%

0 / 68
sctraymenu.exe (by g3n-h@ckm@n)  (9d74cf8207b351cfaa9cea3167a2661f)

0 / 68
adsfix.exe (by SosVirus)  (459fbf5e826b050ca42a4b08d9e2763b)

0 / 68
adsfix.exe (by SosVirus)  (ad64624cb616e8d11e7416a58175e806)

0 / 68
adsfix.exe (by SosVirus)  (9f4c242cdd0fa0d527492d5456898b59)

0 / 68
adsfix_protect.exe  (8418c0eb10d16c704d6aade46cad821b)

0 / 68
adsfix.exe (by SosVirus)  (b1c266c4a9b006f5e62fe3530a4182b5)

0 / 68
adsfix.exe (by SosVirus)  (6003adda5a2c96313033b2632d76d967)

1 / 68
adsfix.exe (by SosVirus)  (d6c37ba58c9c7fe0d8dec3ca73bba7eb)

2 / 68      (inconclusive)
adsfix.exe (by SosVirus)  (26d6cbbe3ebf3ad66e7fb55095f2293b)

1 / 68      (inconclusive)
start-cleaner_1.0.0.2.exe (by g3n-h@ckm@n)  (36c9893281acda8585897356f7c0ab38)

0 / 68
adsfix.exe (by SosVirus)  (af4d4ba4a26e4b19d952590b2739e650)

0 / 68
adsfix_2_05.08.2015.4.exe (by SosVirus)  (08dbe5029c9d35806d2fb60ddbb8bd3e)

0 / 68
adsfix.exe (by SosVirus)  (a6ff58ee74ce432daa91d7ed0eceed5a)

0 / 68
qfgbbc58.exe (by SosVirus)  (552ba59503aab206a6530c0878455815)

0 / 68
adsfix.exe (by SosVirus)  (528fbd4f6483c7eba0653761b3f59ead)

2 / 68
adsfix_2_27.06.2015.3.exe (by SosVirus)  (416d3102fe8fad8109bbd8204d42b17e)

1 / 68
adsfix.exe (by SosVirus)  (d4bde92783a790a1d9a1280900a4c70e)

0 / 68
adsfix.exe (by SosVirus)  (d76033c43821746edb1115f34f1c76d1)

1 / 68      (inconclusive)
adsfix.exe (by SosVirus)  (bda099330b5f7e1a8813e293e79559ac)

0 / 68
sctraymenu.exe (by g3n-h@ckm@n)  (e810ae96413a7c982cd9a212bf1182b4)

4 / 68      (inconclusive)
adsfix_2_07.08.2015.2.exe (by SosVirus)  (53c6e1e35f10d45ab0165ded8eb757cc)

1 / 68
adsfix.exe (by SosVirus)  (efb00bd5521042ade1677860b746919b)

0 / 68
adsfix_2_25.07.2015.1.exe (by SosVirus)  (6577a945db60baafb5f92d415d665992)

0 / 68
adsfix.exe (by SosVirus)  (85b91c52fb9d4c4f9d9f5cc745c3c9f5)

1 / 68
adsfix.exe (by SosVirus)  (163b97f2f4d2bde6382773a240d0f575)

0 / 68
adsfix_2_23.08.2015.1.exe (by SosVirus)  (8a0744c09eb42eeffd60682da2812d7b)

0 / 68
adsfix_2_29.06.2015.1.exe (by SosVirus)  (ec63eb79d3e0b0d577223508afa25098)

0 / 68
adsfix_2_30.07.2015.1.exe (by SosVirus)  (923e0e5fb167ec4ccbb18d2fed874f6a)

11 / 68    (Malware)
adsfix_2_17.08.2015.1.exe (by SosVirus)  (1c2b352eb4e72157637900d0ee28b3de)

2 / 68
adsfix_2_09.08.2015.2.exe (by SosVirus)  (96d065064cbd74e600b04b823cb405ea)

 
Latest 30 of 115 files

Downloads URLs for files signed by SOSVirus.

0 / 68
https://toolslib.net/downloads/finish/20/get/.../  (adsfix_2_16.08.2015.3.exe)

0 / 68
http://www.telecharger.sosvirus.net/download/.../?wpdmdl=125  (adsfix.exe)

0 / 68
https://toolslib.net/downloads/finish/20/get/.../  (adsfix_2_05.08.2015.4.exe)

0 / 68
http://www.telecharger.sosvirus.net/download/.../?wpdmdl=125  (adsfix.exe)

0 / 68
https://toolslib.net/downloads/finish/20/get/.../  (adsfix_2_29.06.2015.1.exe)

1 / 68
https://toolslib.net/downloads/finish/109/get/.../  (start-cleaner_1.0.0.5.exe)

2 / 68
https://toolslib.net/downloads/finish/20/get/.../  (adsfix_2_09.08.2015.2.exe)

0 / 68
https://toolslib.net/downloads/finish/20/get/.../  (adsfix_2_02.09.2015.1.exe)

2 / 68
https://toolslib.net/downloads/finish/20/get/.../  (adsfix_2_10.08.2015.1.exe)

The following websites host and distribute files published by SOSVirus.

toolslib.net

www.telecharger.sosvirus.net

The certificates below are also signed by SOSVirus.

049D58E8  (Jun 30, 2016 to Jun 30, 2018)

4A75CFE56B31FD2178DCAEA9  (Feb 23, 2017 to Feb 24, 2018)

046E4126  (Jan 05, 2016 to Jan 04, 2018)

030675ED  (Nov 26, 2015 to Nov 25, 2017)

0379618C  (Feb 24, 2015 to Feb 23, 2017)

00D813F6  (Feb 24, 2015 to Feb 23, 2017)

The following publishers (by Authenticode signature organization name) are related.

ToolsLib

Cedric Le Bozec

Alex Dragokas

think-cell Software GmbH

GlassWire

BrightFort LLC

Bleeping Computer, LLC.

AVAST Software a.s.

DotCash Limited

* Note, the details and description above are based on the code signing digital signature issued to SOSVirus by SOSVirus on February 23, 2015 with the serial number '00c0d287'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.