Hefei Zhimingxingtong Software&Technology Co., Ltd.

Publisher Information

Hefei Zhimingxingtong Software&Technology Co., Ltd. is a software developer located in Hefei, Anhui in China*. The publisher primarily developes software that can be classified as adware.
Authority:
GlobalSign nv-sa

Valid from:
10/29/2013 10:07:05 AM

Valid to:
10/30/2014 10:07:05 AM

Subject:
CN="Hefei Zhimingxingtong Software&Technology Co., Ltd.", O="Hefei Zhimingxingtong Software&Technology Co., Ltd.", L=Hefei, S=Anhui, C=CN

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
11219e374b1001ffc6b983b5de082d65401a

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.HefeiZhimingxingtongSoftwareTechnologyCo.FF, PUP.HefeiZhimingxingtongSoftwareTechnologyCo.O, PUP.Installer.HefeiZhimingxingtongSoftwareTechnologyCo.O, PUP.HefeiZhimingxingtongSoftwareTechnologyCo.Q, PUP.HefeiZhimingxingtongSoftwareTechnologyCo.DD, Threat.Win.Reputation.IMP, PUP.HefeiZhimingxingtongSoftwareTechnologyCo.X, PUP.HefeiZhimingxingtongSoftwareTechnologyCo.K, PUP.ELEX.HefeiZhimingxingtongSoftwareTechnologyCo, PUP.ELEX.HefeiZhimingxingtongSoftwareTechnologyCo (M)
90.00%

Baidu Antivirus
Adware.Win32.ELEX, Adware.Win32.Elex, Adware.Win32.Downware, Virus.Win32.Patched.$dj
88.00%

Dr.Web
Adware.Mutabaha.53, Adware.Mutabaha.56, Adware.Mutabaha.58, Adware.Mutabaha.54, Adware.Mutabaha.59, Win32.Wplugin.1
80.00%

Trend Micro House Call
TROJ_GEN.F47V0606, Suspicious_GEN.F47V0717, Suspicious_GEN.F47V0703, Suspicious_GEN.F47V0702, Suspicious_GEN.F47V0701, TROJ_GEN.F47V0531
76.00%

Fortinet FortiGate
Riskware/Elex, Adware/ELEX, W32/Wplug.A
74.00%

Agnitum Outpost
Riskware.Agent, PUA.ELEX, Win32.Slugin.A
72.00%

AhnLab V3 Security
PUP/Win32.Amonetiz, Win32/Slugin.C
72.00%

ESET NOD32
Win32/ELEX.AJ (variant), Win32/ELEX.AQ (variant), Win32/ELEX.AL (variant)
70.00%

Malwarebytes
PUP.Optional.SearchHijacker.A, PUP.Optional.Skytech.A
66.00%

Rising Antivirus
PE:Worm.Rebhip!1.64F0, PE:Trojan.Win32.Generic.174DA63F!390964799, PE:Win32.Agent.ey!1474842
66.00%

1 / 68      (PUP)
nsbfr_qone8.exe (392_nsbfr)  (bbbca44b05e3fb4480ccee3396614d70)

1 / 68      (PUP)
443_pjr_www-sweet-page-com.exe (443_pjr)  (5768675513a41e45f1b15443e985dfb6)

1 / 68      (PUP)
nsbes_omiga-plus.exe (484_nsbes)  (207cbd3ef2f997a87b56877d4ffad2bb)

12 / 68    (PUP)
bdo_omiga-plus.exe (499_bdo)  (6ea85317dc311301e92bbc7926e841a2)

24 / 68    (PUP)
may25_383sweet-page.com.exe (383_cor)  (751e4f913602d81e7e82ff522ffa2662)

24 / 68    (PUP)
june8sweet-page.com.exe (383_cor)  (1f8564e22ae58cbd643fc1eddedfaf94)

27 / 68    (PUP)
july1st_www.sweet-page.com.exe (588_cor)  (9527d37996e0b5ba36b2fcdc96698f06)

25 / 68    (PUP)
14.7_cor_www.sweet-page.com.exe (673_cor)  (14679a693c5a7ad8826dfca15327abe9)

17 / 68    (PUP)
smt_sweet-page.exe (475_smt)  (bd47db93a03b324233c9319e4b584b48)

44 / 68    (Adware)
uninstallmanager.exe (Skytech by Skytech Co.)  (40d63f6ac85b1d709ff903039aae05c2)

12 / 68    (PUP)
bdo_omiga-plus.exe (551_bdo)  (7c25215b59e79de9b516e35cb391fcb4)

27 / 68    (PUP)
wpc_istart123.exe (644_wpc)  (ebe134e9b3e7e82ac21186053002a15a)

16 / 68    (PUP)
lly_webssearches.exe (677_tugs)  (b08f2918f90d173343c4fa992a7f8f6d)

18 / 68    (PUP)
lly_omiga-plus.exe (676_tugs)  (8edae0367befb83ffde9b7c85963ee7f)

12 / 68    (PUP)
nsbfr_omiga-plus.exe (485_nsbfr)  (f3211958934d924d298d35ec7ea5d686)

44 / 68    (Adware)
uninstallmanager.exe (Skytech by Skytech Co.)  (91624851f9f7abd09f2322efa4ea07b4)

4 / 68      (Adware)
mailupdate.exe (Skytech by Skytech Co.)  (bfa913e38b0d4ab800623bca16ac51e4)

28 / 68    (PUP)
664_imx_www.istart123.com.exe (664_imx)  (26cbe181b95ab5f9da8e644a357f13cc)

13 / 68    (PUP)
ild_omiga-plus.exe (473_ild)  (d7e85f83a5d36950a6969bcac6d5f698)

13 / 68    (PUP)
529_bxk_istart.webssearches.com.exe (529_bxk)  (af3ac2bd79a178712e867562b1d49e1f)

25 / 68    (PUP)
istart_soft_partner.exe (653_tt4u)  (fec3a892279444a9a56b0e39e297c609)

24 / 68    (PUP)
sfpsnew1_omiga-plus.exe (593_sfpsnew1)  (39f27e45ee01d09f21d19e58c90a02d7)

24 / 68    (PUP)
mp3_omiga-plus.exe (597_mp3)  (e8a2f28442835a87eff9117bf0d77689)

14 / 68    (PUP)
smt_omiga-plus.exe (671_smt)  (e13d91363ee57088c23e875f3ed3766f)

10 / 68    (PUP)
657_sof_www-sweet-page-com-10-07-14.exe (657_sof)  (f11a0245bf4cf66547b84ca1cee19588)

24 / 68    (PUP)
590_wpc.exe (590_wpc)  (0d5c00622c5c811c9b014d79ddda1d98)

11 / 68    (PUP)
lly_omiga-plus.exe (655_tugs)  (ee3ff8b9add5470cf4afdbfd86f634ac)

4 / 68      (PUP)
amt_webssearches.exe (648_amt)  (9cb9eb1ebaf28a758285195c504bc712)

24 / 68    (PUP)
617_bro_istart_webssearches_com.exe (617_bro)  (344af3b2de9b07af211549efe02517f0)

11 / 68    (PUP)
567_pjr_istart-webssearches-com.exe (567_pjr)  (9880ee62293c0e34033b60395fb779c8)

 
Latest 30 of 120 files

Downloads URLs for files signed by Hefei Zhimingxingtong Software&Technology Co., Ltd..

24 / 68    (PUP)
http://i1.superstoragemy.com/.../590_wpc.exe  (0d5c00622c5c811c9b014d79ddda1d98)

14 / 68    (PUP)

The following publishers (by Authenticode signature organization name) are related.

* Note, the details and description above are based on the code signing digital signature issued to Hefei Zhimingxingtong Software&Technology Co., Ltd. by GlobalSign nv-sa on October 29, 2013 with the serial number '11219e374b1001ffc6b983b5de082d65401a'.