home

Qzoneinteractive

Publisher Information

Qzoneinteractive is a software publisher located in Gwangjin-gu, Seoul in Korea*. A majority of the programs developed by the company can be classified as adware or other potentially unwanted programs. Thre are 3 additional code signing certificates issued to this publisher.
Authority:
Thawte, Inc.

Valid from:
11/14/2011 9:00:00 AM

Valid to:
11/14/2012 8:59:59 AM

Subject:
CN=Qzoneinteractive, OU=EC Team, O=Qzoneinteractive, L=Gwangjin-gu, S=Seoul, C=KR

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
51790de8cff3fb8e48d3e671f9021d0b

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Qzoneinteractive (M), PUP.Qzoneint (M), PUP.Qzoneint.Installer (M), PUP (M)
100.00%

1 / 68      (Malware)
adhelp_cocoa.exe  (1aa4478125001455343de29dc453ee1c)

1 / 68      (Malware)
aeeto.exe  (9659145d23c0f82b4473cb04cc9494bc)

1 / 68      (Malware)
FWTAlert.exe (FWTAlert Module)  (e433b0646756db3ae4078000021bb3c9)

1 / 68      (Malware)
FreeWebToonCtrl.dll  (572ef9e4869ba2e5f7bc744153ec1faf)

1 / 68      (Malware)
FWTHostSvc.exe (FWTHostSvc Module)  (8b0f07b6aa7d77aa52cfbfe5e65c9a81)

1 / 68      (Malware)
PrivChkUpdate.exe (PrivChkUpdate Module)  (c450ed0ca9bc70871823e0e1423c8339)

1 / 68      (Malware)
obbang.exe  (33688da63fcc8e22173fbcdae6fa732e)

1 / 68      (Malware)
fwt_admin.exe  (1c8721067047391b319ad14c516a49ef)

1 / 68      (Malware)
e7320ea2-7be7-42ec-ba89-b594a493de11.exe  (8f76ce4bb09c22ccd9021fb970d3a099)

1 / 68      (Malware)
c14b919d-ff50-45b0-846d-717d790f53af.exe  (e5b11913a003ca9a263e880acdf2af34)

1 / 68      (Malware)
38fd5a76-967e-4b39-9a22-b6177ebc3115.exe  (da7ac3f93da4da4b9d7f0179cc69eaf6)

1 / 68      (Malware)
joyn.exe  (2bcbaf30c94e578186e2f6b37ec544df)

1 / 68      (Malware)
hongga.exe  (7b7590eda344ec1f014e268a3f971e5c)

1 / 68      (Malware)
cloudpop.exe  (9caf13173b48ba71f20513b93d71734c)

1 / 68      (Malware)
uninstall_tostpop.exe  (2cc90b040e1a6eb51f769ff376440533)

1 / 68      (Malware)
FWTAlert.exe (FWTAlert Module)  (6be24082758b74fdee67862709fe39c6)

1 / 68      (Malware)
hibar.exe  (016e8742586cb029aa614e17790b4608)

1 / 68      (PUP)
PrivChk.dll  (9ae39bcfd20014064c162b70d413c278)

1 / 68      (PUP)
cloudpop_.exe  (b9e84b5f38da36708694c2b7c53232a9)

1 / 68      (PUP)
QuickZone.exe (QuickZone Module)  (b1ca1fd7b8e799e8b61cf7ad67b123e4)

1 / 68      (PUP)
adhelp.exe  (e472f54b2f27c247c768d560f31b6802)

1 / 68      (PUP)
privchksvc.exe  (90f36529d71e61bb7270647444717dd4)

1 / 68      (PUP)
fwtchksvc.exe  (f80750d0d88cfca01b048cdd94db25ef)

1 / 68      (PUP)
FWTUpdate.exe (FWTUpdate Module)  (5c39b43381f43b4a0d6656133cc5f1ac)

1 / 68      (PUP)
QZoneRemove.exe (QZoneRemove Module)  (9582872f6dd56cc35047f311ee949803)

1 / 68      (PUP)
QZDownMgr.dll  (04d63e71218e41f85b529d98209b7368)

1 / 68      (PUP)
QuickZone.exe (QuickZone Module)  (4b3e722e8e2ab0896c20a070e62947ce)

1 / 68      (PUP)
IEQZone.dll  (dcdc6226576235ce885ecc43fbb1a9a6)

1 / 68      (PUP)
tmp00000009  (63adc10bab8200fcc2a165a331d3b4eb)

1 / 68      (PUP)
freeman.exe  (232f7f2d487726b72c06dc9d6357641a)

 
Latest 30 of 78 files

The certificates below are also signed by Qzoneinteractive.

07F8FA305F2BC9DE492EE1D748E01DDE  (Dec 15, 2014 to Feb 14, 2016)

0ED8386A77DD8C93F3CA811C375EA680  (Nov 30, 2013 to Dec 31, 2014)

7F237568BB838B3E163705A7365EEC19  (Nov 03, 2012 to Dec 04, 2013)

* Note, the details and description above are based on the code signing digital signature issued to Qzoneinteractive by Thawte, Inc. on November 14, 2011 with the serial number '51790de8cff3fb8e48d3e671f9021d0b'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.