home

Xionix

Publisher Information

Xionix is a software publisher located in Provo, Utah in the United States*. Thre are 4 additional code signing certificates issued to this publisher.
Authority:
Thawte Consulting (Pty) Ltd.

Valid from:
11/17/2008 1:00:00 AM

Valid to:
11/14/2009 12:59:59 AM

Subject:
CN=Xionix, OU=SECURE APPLICATION DEVELOPMENT, O=Xionix, L=Provo, S=Utah, C=US

Issuer:
CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:
6537f88142a3518f779f1055fac264ad

Status:
Inconclusive detections from multiple engines

Scan engine
Details
Detections

ESET NOD32
multiple threats, Win32/Adware.RegDefense application
75.00%

Boost by Reason
Optional.Xionix
50.00%

Sophos
PUA 'PsKill' (of type Hacktool)
50.00%

McAfee
Artemis!409CBE406656
25.00%

0 / 68
RExit.exe (RExit)  (941b6a1e204b11a38e85a337e2a8e3ca)

0 / 68
RDListener.exe (RDListener)  (845991304cb8996fd34d718827ffa5de)

0 / 68
Logger.dll (Logger)  (ddf23950fda76881cbf189da1a55425a)

0 / 68
DataStore.dll (DataStore)  (5d08c77461b83abb0d1845bb64e25889)

0 / 68
regdefense.exe (Registry Defense by Xionix)  (fe0430606dc40ccb8ecfae616e7ea068)

0 / 68
RExit.exe (RExit)  (df0301f1f22c4f0581cc0134eba997b0)

1 / 68      (inconclusive)
regserve.exe (RegServe by Xionix)  (d592c4232996b2ebb718897de9689db0)

0 / 68
regdefense-setup.exe (RegDefense by Xionix)  (6f62335ffade1fee61279bcceec6e596)

0 / 68
regdefense.exe (Registry Defense by Xionix)  (67b8cedf49611d42be36ec4fc9a5866c)

0 / 68
RDListener.exe (RDListener)  (f9f6f9521a4a0249a239385b10d0f818)

0 / 68
stub.exe  (efb9d247c04d9d187c92081391e08009)

0 / 68
silentremover.exe  (cc609b4a0d25755a6ed5b188d174f552)

0 / 68
Restorer.dll (Restorer)  (b741955eba61b8188f86e488343d9ffd)

0 / 68
RegistryDefense.exe (RegistryDefense)  (21ac64253a6d1869072ee08f837ce60d)

0 / 68
RDStarter.exe (RDStarter)  (285b8cb783456e6528a4494be2f01f10)

0 / 68
RDListener.exe (RDListener)  (725d713d04d97ecb803ca828aafbe4fe)

0 / 68
RDAgent.exe (RDAgent)  (c8f06af287b434c2abfef57a37cd228a)

0 / 68
QueuedTextBox.dll (QueuedTextBox)  (c5765e8ef9813da6629966e30c842174)

0 / 68
PCheckbox.dll (PCheckbox)  (7bddfa6ed951cb464aa8bd0450b6b91d)

0 / 68
Logger.dll (Logger)  (d5eb08980867fd5e8745a9d82bfa125d)

0 / 68
Analyzers.dll (Analyzers)  (e3018c1ec8c451b9873bb2103488ea52)

0 / 68
RDListener.exe (RDListener)  (f072dc4158b307a5157b6c6062fcca45)

3 / 68      (inconclusive)
regdefense 4.1.1.4.exe (Registry Defense by Xionix)  (409cbe4066566c60ff387876143fb5a4)

0 / 68
RDStarter.exe (RDStarter)  (4566233e1345b4089ee5b075ac7108aa)

0 / 68
773072-registrydefense.exe (Registry Defense by Xionix)  (744abc7a4183f1e457c9691b2d633607)

0 / 68
stub.exe  (0d991d8ba44cc49e69c515f839afa648)

0 / 68
Startuper.exe (Startuper)  (83b8e88851b1b469e00cd2a63f0b2f51)

0 / 68
sr.exe (sr)  (7f2659b4c64aa3325d759198bc39a8d7)

0 / 68
silentremover.exe  (1b87d52e8b140d962179f9f76015df5f)

0 / 68
Restorer.dll (Restorer)  (eebd1c95d0f38d37c76cc6c00f17c69a)

 
Latest 30 of 114 files

The certificates below are also signed by Xionix.

13027E07FE6BBFF6FCCBD99DF64B35BF  (Nov 07, 2012 to Nov 13, 2013)

6705FE563A0DEC1681709E30EC888DEC  (Oct 03, 2011 to Nov 12, 2012)

1C7E45922618DA4C7E36358ED8E0D06D  (Nov 22, 2010 to Nov 13, 2011)

2CAD7A38062AF58EB4D47711E35160C7  (Oct 13, 2009 to Nov 13, 2010)

* Note, the details and description above are based on the code signing digital signature issued to Xionix by Thawte Consulting (Pty) Ltd. on November 17, 2008 with the serial number '6537f88142a3518f779f1055fac264ad'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.