home

VideosToDVD.exe

Videos To DVD Converter

Greentree Applications SRL

The application VideosToDVD.exe by Greentree Applications SRL has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This file is typically installed with the program Free Videos To DVD V 4.0.0 by KoyoteSoft Inc.. While running, it connects to the Internet address 94.31.0.160.IPYX-076665-ZYO.above.net on port 80 using the HTTP protocol.
Publisher:
Koyote Soft  (signed by Greentree Applications SRL)

Product:
Videos To DVD Converter

Version:
4.00

MD5:
8b878c686c71b9ccc715484bc3ef9410

SHA-1:
3b08fac7c4906c29afa3817651c3ef7393424bcd

SHA-256:
83c8d26155b7a17a0746a408a93f5ad636391061d395e7ed0526371c6dca5d77

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/27/2024 4:17:25 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Optional.GreentreeApplicationsSRL.L
14.4.2.3

File size:
1.1 MB (1,202,040 bytes)

Product version:
4.00

Copyright:
Koyote Soft

Trademarks:
Koyote Soft 2011

Original file name:
VideosToDVD.exe

File type:
Executable application (Win32 EXE)

Language:
French (France)

Common path:
C:\Program Files\free videos to dvd\videostodvd.exe

Digital Signature
Signed by:
Greentree Applications SRL

Authority:
VeriSign, Inc.

Valid from:
6/23/2011 8:00:00 PM

Valid to:
6/23/2012 7:59:59 PM

Subject:
CN=Greentree Applications SRL, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Greentree Applications SRL, L=Bucharest, S=Bucharest, C=RO

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
55A7F018B18D4B6488FE25E1E6D2AF31

File PE Metadata
Compilation timestamp:
6/30/2011 8:42:22 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
12288:wccxB2BJeLTDc1Po7Wb8a61v92zvmdEQB94SnM:Kn2B8ToKvozvmdEa4B

Entry address:
0x2C38

Entry point:
68, 30, 72, 48, 00, E8, EE, FF, FF, FF, 00, 00, 60, 00, 00, 00, 30, 00, 00, 00, 58, 00, 00, 00, 40, 00, 00, 00, E1, C5, 67, A6, 85, 12, CC, 47, 99, F4, 80, 29, E7, AA, 11, 12, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 2D, 43, 30, 30, 30, 2D, 4D, 6F, 76, 69, 65, 73, 54, 6F, 44, 56, 44, 00, 7D, 23, 32, 2E, 4D, 6F, 76, 69, 65, 73, 20, 54, 6F, 20, 44, 56, 44, 20, 43, 72, 65, 61, 74, 6F, 72, 00, 32, 5C, 00, 74, 64, 6F, 6C, 65, 32, 2E, D8, 00, 00, 00, A8, 00, 00, 00, 00, 00, 00, 00, 02, 00, 00, 00, 02, 00, 00, 00...
 
[+]

Entropy:
6.8414

Developed / compiled with:
Microsoft Visual Basic v5.0/v6.0

Code size:
1.1 MB (1,171,456 bytes)

The file VideosToDVD.exe has been discovered within the following program.

Free Videos To DVD V 4.0.0  by KoyoteSoft Inc.
Publisher's description - “Free Videos To DVD is a video conversion software to convert and burn your videos to DVD. Create a menu in a few clicks, backup your videos to DVD playable on any home DVD player is really easy with this freeware.”
www.koyotesoft.com/indexEn.html
55% remove it
 
Powered by Should I Remove It?

The executing file has been seen to make the following network communications in live environments.

TCP (HTTP):
Connects to 94.31.0.25.IPYX-076665-ZYO.above.net  (94.31.0.25:80)

TCP (HTTP):
Connects to 94.31.0.160.IPYX-076665-ZYO.above.net  (94.31.0.160:80)

Remove VideosToDVD.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.