home

Beijing ELEX Technology Co., Ltd.

Publisher Information

Beijing ELEX Technology Co., Ltd. is a software developer located in Beijing, China*. The company is a primary distributor of unwanted software.
Authority:
GlobalSign nv-sa

Valid from:
5/21/2014 3:40:26 AM

Valid to:
5/22/2015 3:40:26 AM

Subject:
CN="Beijing ELEX Technology Co., Ltd.", O="Beijing ELEX Technology Co., Ltd.", L=Beijing, S=Beijing, C=CN

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121cc12e1df8bce90f8edd596848dcca894

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.BeijingELEXTechnologyCo.L, PUP.BeijingELEXTechnologyCo.Q, PUP.BeijingELEXTechnologyCo.K, PUP.BeijingELEXTechnologyCo.G, PUP.ELEX.BeijingELEXTechnologyCo (M), PUP.ELEX.BeijingE (M)
100.00%

Malwarebytes
PUP.Optional.SearchHijacker.A
68.75%

Rising Antivirus
PE:Worm.Rebhip!1.64F0
62.50%

McAfee
Artemis!FEC3A8922794, Artemis!1FF999240B54, Artemis!E3F23F812A29, Trojan.Downloader-FAGU!C677AB0CB3BD, Artemis!A9FCE87BF311, Artemis!494D36327842
62.50%

Dr.Web
Adware.Mutabaha.56, Adware.Mutabaha.59, Adware.Mutabaha.64
62.50%

AVG
Downloader.Generic13, Trojan horse Downloader.Generic13.CLXD, Malin
62.50%

Baidu Antivirus
Adware.Win32.ELEX, Trojan.Win32.WPM
56.25%

Agnitum Outpost
PUA.ELEX, Riskware.Agent
50.00%

Trend Micro House Call
Suspicious_GEN.F47V0717, Suspicious_GEN.F47V0701, Suspicious_GEN.F47V0710, Suspicious_GEN.F47V0716, Suspicious_GEN.F47V0724
50.00%

Fortinet FortiGate
Adware/ELEX, Riskware/Elex
50.00%

1 / 68      (Adware)
unt4682.tmp.exe (718_epom2)  (2c2083fe6e9f1c071cc5d2c984baa681)

1 / 68      (Adware)
vtt_v9.exe (704_vtt)  (857e7291d1ad67f0de358ab4f4255dde)

1 / 68      (Adware)
8286276249 (558_imx)  (7349fbea0b3464448356d8850f125573)

1 / 68      (Adware)
04d929ae-058f-4fd0-947c-e29442a15a1f (692_profr)  (05daaf39ba2305af67e1e2a84abde358)

1 / 68      (Adware)
goplayer.exe (eDownload Module)  (b8547951cc643b9a9fb343dc728520f4)

10 / 68    (Adware)
39de0acb-5595-418a-8d58-6d967dd8db83 (804_profr_v9 by File Syn)  (494d36327842a90c82fb567483154d98)

29 / 68    (Adware)
mp3_v9.exe (598_mp3)  (ef18b39ff3e64eae5d6e59051c7c7722)

8 / 68      (Adware)
july22_cor_v9.exe (771_cor_v9 by File Syn)  (1f8b8fc86cab564ca24e31b033598614)

14 / 68    (Adware)
unt28cb.tmp.exe (716_epom)  (46202e9a81658895164005413ea858b4)

13 / 68    (Adware)
july15_cor_www.v9.com.exe (674_cor)  (943086c2db01c8d3225e1ac7e4ebed1a)

12 / 68    (Adware)
v9_1607-d5e7d5d7.exe (736_slbnew)  (a9fce87bf311d1e6da929e98e8ed593f)

17 / 68    (Adware)
mp3_v9.exe (791_mp3_v9 by File Syn)  (c677ab0cb3bdac6c0eeed382b4944fc4)

13 / 68    (Adware)
untd825.tmp.exe (717_epom1)  (517c0b58dfd5fadab813bda5d73d7058)

20 / 68    (Adware)
toolbar616268099.exe (629_exp)  (7da03aeab5a4ac048bcf82c41807c4e3)

20 / 68    (Adware)
v9_0107-d59f8641.exe (615_slbnew)  (1ff999240b54e158bcb8ee661f36d10f)

20 / 68    (Adware)
tz4cnweb.is0.exe (624_irs)  (4ed094bfe43f94efc8de9697aee2b357)

The following publishers (by Authenticode signature organization name) are related.

Ma Lin

Liyan Liu

* Note, the details and description above are based on the code signing digital signature issued to Beijing ELEX Technology Co., Ltd. by GlobalSign nv-sa on May 21, 2014 with the serial number '1121cc12e1df8bce90f8edd596848dcca894'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.