home

WangYue HuDong Cultrue Media (Beijing) Co.,Ltd.

Publisher Information

WangYue HuDong Cultrue Media (Beijing) Co.,Ltd. is a software developer located in Beijng, Beijing in China*. There is one additional code signing certificate issued to this publisher.
Authority:
WoSign eCommerce Services Limited

Valid from:
4/23/2012 11:37:28 AM

Valid to:
4/25/2013 7:40:03 AM

Subject:
E=wyhdcn@gmail.com, CN="WangYue HuDong Cultrue Media (Beijing) Co.,Ltd.", O="WangYue HuDong Cultrue Media (Beijing) Co.,Ltd.", L=Beijng, S=Beijing, C=CN

Issuer:
CN=WoSign Class 3 Code Signing CA, O=WoSign eCommerce Services Limited, C=CN

Serial number:
010ebcd1c4f3b9

Status:
Inconclusive detections from multiple engines

Scan engine
Details
Detections

avast!
Win32:PUP-gen [PUP]
55.56%

Quick Heal
TrojanDownloaderAPT.Drixed.r4, (Suspicious) - DNAScan
44.44%

G Data
Win32.Adware.Skycn
44.44%

Dr.Web
Trojan.KillProc.21457, Trojan.PWS.LDPinch.12250, Trojan.PWS.LDPinch.12251
33.33%

Comodo Security
Application.Win32.CloverPlus.AE
22.22%

ESET NOD32
Win32/TaojinStar.K trojan
22.22%

McAfee
Artemis!FCDAC6C45B80, Artemis!D2AC278C6DF1
22.22%

Avira AntiVirus
TR/ATRAPS.Gen2
22.22%

Fortinet FortiGate
PossibleThreat.SB!tr.dldr
11.11%

Vba32 AntiVirus
Trojan.Genome.airxm
11.11%

0 / 68
Skycn.exe  (5a7d209767f74135fd63d02cf5fc851d)

0 / 68
skycn_1.2.1.exe  (331dc5a1c17dae5177548bb23d551d08)

3 / 68      (Malware)
daohang4841.exe  (d2ac278c6df126b485cc3bf17670e0d1)

0 / 68
data.dll  (f78524b9f92d02cda157d7fbf32bcf05)

0 / 68
PcOL.exe  (3ddf6ec0abdd0871f2d9b4dadd57f638)

0 / 68
helper.exe  (e8c441959cad848918915cce06b4b9bc)

0 / 68
AtlOcx.DLL (AtlOcx Module)  (d05bbd3c875e7f31270a67085bedce5c)

0 / 68
pcol.exe  (8cfa8766eb06c92f5ed5c694e835a689)

0 / 68
qicaihe.exe (by qicaihe.com.cn)  (811e8a0d292d0894dd96333c79e28cd0)

0 / 68
qicaihe.exe (by qch.mtvkan.com)  (cbe54dae022f0f53cf9c608456403955)

0 / 68
FPlayer.exe (by qch.mtvkan.com)  (f31c19a7b1c3aba6e80f7b6eb77e8766)

5 / 68      (PUP)
directx_repair.zip_1.exe  (4f695d3455a3f832eff3c3af930e65fd)

3 / 68      (Malware)
taobaodaogou.exe  (fcdac6c45b806371ff380cca999e6acd)

0 / 68
skycn_1.2.9.exe  (4a6d5a8a9cee271af627c7f442730219)

0 / 68
Skycn.exe  (2c0e43a35d3e9883a37cd047063e2298)

0 / 68
Skycn.exe  (e8b4eac2311105a3ece84acbfd2aec9a)

0 / 68
helper.exe  (0d0e7308cc8b8576f1191ca711cc5114)

0 / 68
Skycn.exe  (e9fc19ae3566e02a9ec64bf41e90edda)

0 / 68
data.dll  (515b2104759ccb7069c164d7cf6c3115)

0 / 68
qicaihe.exe (by qicaihe.com.cn)  (d10ca30014a15278063a6dbc74f29fa1)

0 / 68
helper.exe  (56aca0c5bb224b5c253f143e203d853b)

0 / 68
FPlayer.exe (by qicaihe.com.cn)  (4efd382dbb1e8463d629524af3e26a10)

0 / 68
Skycn.exe  (66b95d330e2fed728d756f2161a5c0f2)

0 / 68
Skycn.exe  (2ffbb6e3b5fc25279993933f91a5cb42)

0 / 68
SkyATL.dll (skycndown by skycn.com)  (8177512732e0ad2a3e55bb2f215b5c56)

0 / 68
helper.exe  (a671c819099bcca3076924f69309a950)

3 / 68      (PUP)
skycn_1.2.1.exe  (f969112a018c14a4de8c451d443cf490)

0 / 68
pcol_1.1.0.exe  (0fdcaf888f54b45fcc81878e6c6256e7)

0 / 68
install.exe  (c15a58224909aaab7b1debb44f412a5e)

0 / 68
data.dll  (92249b7f5683193224df38afa32c23d7)

 
Latest 30 of 44 files

Downloads URLs for files signed by WangYue HuDong Cultrue Media (Beijing) Co.,Ltd..

0 / 68
http://ftp-idc.pconline.com.cn/2def73cfd6d2f086b384bc1d0279484c/pub/download/.../pcol.exe  (8cfa8766eb06c92f5ed5c694e835a689)

3 / 68      (inconclusive)
http://tk.wangyuehd.com/soft/.../KMPlayer.zip_4.exe  (b9683e2cf6f37b0965d17f37973c24d0)

The following websites host and distribute files published by WangYue HuDong Cultrue Media (Beijing) Co.,Ltd..

tk.wangyuehd.com

The following certificate is also signed by WangYue HuDong Cultrue Media (Beijing) Co.,Ltd..

13325C6A84EED2  (Apr 23, 2013 to Apr 25, 2014)

* Note, the details and description above are based on the code signing digital signature issued to WangYue HuDong Cultrue Media (Beijing) Co.,Ltd. by WoSign eCommerce Services Limited on April 23, 2012 with the serial number '010ebcd1c4f3b9'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.