home

Shanghai Bo Yi Information Technology Co. Ltd.

Publisher Information

Shanghai Bo Yi Information Technology Co. Ltd. is a software publisher located in Shanghai, China*. Thre are 3 additional code signing certificates issued to this publisher.
Authority:
VeriSign, Inc.

Valid from:
3/15/2012 8:00:00 AM

Valid to:
3/20/2015 7:59:59 AM

Subject:
CN=Shanghai Bo Yi Information Technology Co. Ltd., OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Shanghai Bo Yi Information Technology Co. Ltd., L=Shanghai, S=Shanghai, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
3bdc743ade918e2ec09f3a9fdd929776

Status:
Inconclusive detections from multiple engines

Scan engine
Details
Detections

Comodo Security
TrojWare.Win32.Amtar.KNB
77.78%

ESET NOD32
Win32/Packed.NoobyProtect (variant), Win32/Packed.NoobyProtect.E suspicious (variant)
77.78%

VIPRE Antivirus
Trojan.Win32.Generic
66.67%

Rising Antivirus
PE:Malware.XPACK-LNR/Heur!1.5594
66.67%

AVG
Win32/Heur
55.56%

Norman
Bumrat.B, Genetik.AD
44.44%

IKARUS anti.virus
Virus.Win32.Heur
44.44%

Avira AntiVirus
TR/Crypt.XPACK.Gen3, TR/Spy.1941504.17
22.22%

Fortinet FortiGate
PossibleThreat
22.22%

avast!
Win32:Evo-gen [Susp], Win32:Malware-gen
22.22%

7 / 68      (Malware)
gethwid.exe (Safengine)  (e36853a94519807ec28f7683c060c0a8)

0 / 68
读机器码.exe (Safengine)  (4861a7a04d1ac66f5db2a79f03dd8856)

0 / 68
fkwin.dll  (ccbd4ee592376ff7af7f2f4017c8815d)

0 / 68
bhgui.exe (bhws by CHINA)  (1a58bf0beb7e180fc48f508ca4df3c69)

0 / 68
sekeygensdk.dll (Safengine)  (7a4ff65ba678d7b8284cec42782f0378)

0 / 68
sekeygen.exe (Safengine)  (cd401b55d0d2842b45bda0fa40551c72)

0 / 68
cdclient.dll (CheatDefender by Safengine)  (8ad7033bd10435509c50f557a294062b)

0 / 68
gethwid.exe (Safengine)  (a7bdf6d76fe0e60bc0f7c010bc28e605)

0 / 68
bhgui.exe (bhws by CHINA)  (80ed5edf425a300e66e5722929db211c)

0 / 68
sekeygensdk.dll (Safengine)  (4cf40e59abddd6d2b88496d5c44f97dd)

0 / 68
xqatom.exe  (c5e07f4b0d85e67aba64c6ebc4fb8d3d)

9 / 68      (Malware)
雷特字幕注册机.exe (Safengine)  (7838757499b3157bee946a845b1be660)

0 / 68
xqatom.exe  (bdd7a75a083abbd003a1b470d8e0d186)

0 / 68
apocalypse_sse.exe  (f2b01fdd690cc68e1afc463004b91c90)

0 / 68
apocalypse_nosse.exe  (842e5d7ff3cad7fe7da54365d67a48a3)

0 / 68
bhgui.exe (bhws by CHINA)  (faf392b38dc93e1dbcd30665f6001021)

0 / 68
bhgui.exe (bhws by CHINA)  (7434f287a78fb01a886f4d77219e1f25)

8 / 68      (inconclusive)
shielden.exe (Shielden by Safengine)  (d52f569e7480521b509a28aaf99a2a3e)

0 / 68
fkwin.dll  (d4dbd2aa4810eb71bc3027c19331eeff)

4 / 68      (inconclusive)
bhgui.exe (bhws by CHINA)  (a37a10d98556632030f1f16c38f2a0b8)

8 / 68      (Malware)
sekeygen.exe (Safengine)  (d85e86f3cbfbac312318b65240cdc83f)

10 / 68    (PUP)
apo.exe  (555a55638ea7e1a44affde571d4fbe96)

5 / 68      (inconclusive)
bhgui.exe (bhws by CHINA)  (a23755bb9b31ae7bc784898a8f916a21)

1 / 68
sekeygensdk.dll (Safengine)  (8da1dd6697039464d35bf5a00758815f)

The certificates below are also signed by Shanghai Bo Yi Information Technology Co. Ltd..

3C189CE4860D33BA864357F925B5D8F8  (Mar 30, 2015 to Apr 29, 2018)

747257F202E9C962C91B4EDA689D5DBB  (Feb 07, 2014 to Mar 20, 2015)

01FA8E38157B9CB8ED36AD5D4C976E6A  (Mar 20, 2011 to Mar 20, 2012)

* Note, the details and description above are based on the code signing digital signature issued to Shanghai Bo Yi Information Technology Co. Ltd. by VeriSign, Inc. on March 15, 2012 with the serial number '3bdc743ade918e2ec09f3a9fdd929776'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.