Qiwang Computer

Publisher Information

Qiwang Computer is a software developer located in Nanning, Guangxi in China*. The company is a primary distributor of unwanted software. There is one additional code signing certificate issued to this publisher.
Authority:
VeriSign, Inc.

Valid from:
6/16/2008 2:00:00 AM

Valid to:
6/14/2011 1:59:59 AM

Subject:
CN=Qiwang Computer, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Qiwang Computer, L=Nanning, S=Guangxi, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
19e46bdb66ff71931fe43db54f76be4f

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.QiwangComputer.Installer (M), PUP.QiwangComputer (M)
100.00%

Dr.Web
Program.AdvPcTweak.2, riskware program Program.AdvPcTweak.2
16.00%

ESET NOD32
Win32/PerfectUninstaller potentially unsafe (variant), Win32/PerfectUninstaller (variant)
14.00%

Norman
RegistryEasy.I, RegistryEasy.HX, W32/RegistryEasy.BA
12.00%

McAfee
Artemis!1AA48D9ECBFC, Artemis!9BAF13722221
10.00%

McAfee Web Gateway
Artemis!Trojan, Artemis!9BAF13722221
10.00%

Trend Micro House Call
Suspicious_GEN.F47V1203, Suspicious_GEN.F47V1210, Suspicious_GEN.F47V0827
10.00%

Fortinet FortiGate
Misc/SpywareCease
8.00%

AVG
Generic
6.00%

Clam AntiVirus
Trojan.FakeAV-753
6.00%

1 / 68      (Adware)
pu.exe  (cab08dfe348ba82a22a63b8ac4581bc1)

8 / 68      (Adware)

1 / 68      (Adware)
pu.exe  (ebda9be8189952207c2087df7cf6365e)

1 / 68      (Adware)
registryeasy.exe  (c98d58b280d29b280e803235451922ff)

10 / 68    (Adware)

1 / 68      (Adware)
reggenius.exe (RegGenius.exe by RegistryGenius.com)  (8dcba867d7003677b4a1b97eda791e4b)

1 / 68      (Adware)
pu.exe  (24716b4afb9fffd992fe9de1eac5900c)

9 / 68      (Adware)

1 / 68      (Adware)

6 / 68      (Adware)

6 / 68      (Adware)

1 / 68      (Adware)
advanceddefrag.exe  (af4e4eb482a3c6a4ec70c3728701baf2)

8 / 68      (Adware)

1 / 68      (Adware)
pu.exe  (a33c875601cbe553b7c74ac3376861c1)

8 / 68      (Adware)

1 / 68      (Adware)
advanceddefrag.exe  (2d26796129125cb8ffe75c82c79a877e)

1 / 68      (Adware)
ADAUTO.exe (TODO: <Product name> by TODO: <Company name>)  (727a74615c3ad625b64392f09a676c75)

1 / 68      (Adware)
registryeasy.exe (Registry Easy by CheeseSoft)  (06a6e654096fb0a23338c198f914d534)

1 / 68      (Adware)
pu.exe  (4b756eb9eea6f5d0156bb149d3f6a59c)

1 / 68      (Adware)
update.exe (by Cheese Software)  (67f2b51aa76829c7f9d2ab0f30c122cc)

1 / 68      (Adware)
su.exe  (65e9d462247918ca79eeb359a2d19605)

1 / 68      (Adware)
fu.exe (by Cheese Software)  (b4469299afe6867009e5f5a0f0ba12f3)

1 / 68      (Adware)
pu.exe  (20cd8c03eb5cdceed75e69bbccad30ec)

1 / 68      (Adware)
pu.exe  (a0304607d684b3ce73ac9b5bda7ed846)

9 / 68      (Adware)

1 / 68      (Adware)
pu.exe  (2229c3bc0bc22faad403f74da06e8a22)

1 / 68      (Adware)
advanceddefrag.exe  (a5f40fbc257a37b21d719983e3d3742e)

1 / 68      (Adware)
registryeasy.exe (Registry Easy by CheeseSoft)  (b79f50531cb51f62bb820900141075fe)

1 / 68      (Adware)
pu.exe  (f54401f2b0b86ba05f7516aa3deec966)

1 / 68      (Adware)
vulnerability.dll (GetActMsg Dynamic Link Library)  (26ce1bbd240098f643dc7c5398788384)

 
Latest 30 of 522 files

The following certificate is also signed by Qiwang Computer.

502228010CFCE690E807AB1A1A2A72B9  (May 30, 2007 to May 30, 2008)

* Note, the details and description above are based on the code signing digital signature issued to Qiwang Computer by VeriSign, Inc. on June 16, 2008 with the serial number '19e46bdb66ff71931fe43db54f76be4f'.