Roman Ershov – 18% Detection Rate Says VirusTotal

Welcome! Just wanted to give you the heads up on files digitally signed by Roman Ershov.

Roman Ershov pop up

The certificate is issued by Certum Code Signing CA. Mr Ershov appears to be located in Russia.

Roman Ershov certificate

The reason I’m writing this blog post is that the Roman Ershov file is detected by many of the anti-malware progams at VirusTotal. Avast classifies Download.exe as Win32:FakeDownload-G [PUP], Avira names it TR/Crypt.XPACK.Gen, Microsoft classifies it as SoftwareBundler:Win32/InstalleRex and VIPRE classifies it as MultiPlug (v).

Roman Ershov anti-virus report

Did you also find a Roman Ershov file? What kind of download was it?

Thanks for reading.